Network Management
Resume:
Simon Wei
647-***-****, ****.*****@*****.***
Summary of Qualification
Extensive knowledge and experience in the design and hand-on implementation of networking security and routing & switching, system & application support, performance analysis and testing technologies for various industries (Banking, Consulting, Transportation, Software
Development, Lottery and Gaming, Manufacturing). With experience in networking support, technical research, analysis and documentation, deployment and management of firewalls, Cisco infrastructure, Identity Services Engine (ISE), IPS/IDS, load balancers and more.
Dual CCIE certification (Routing and Switching/Security) and is available for an interview when requested.
Technical Skills and Knowledgebase
Internetwork:
WAN:
FR, PPP, ATM (kiosk), MPLS/VPN, ADSL
LAN:
Gigabit switch, QinQ, VTP/STP, Device/NET, EtherNet/IP, VLAN
Protocols:
OSPF, EIGRP, BGP, RIP(v1,v2), PIM DM/SM, IGMP, TCP/IP, NTP
Security:
ACLs, NAT/PAT, VPNs, IPS, IGMP snooping, AAA, Tacacs+/Radius, dot1x/EAP, WSA, CA
Wireless:
W LAN, 802.11a/b/g/n, Wi-Fi, WLC 5500, AP16xx, 26xx, WLC, WGB
Features:
DNS, MPLS, QoS, VRRP, GLBP, HSRP, VRRP, WCCP
Switching:
VLAN, VTP, STP, PVST+, RPVST+, Multicast Operations, Ether channels
Application:
TCP/ UDP, FTP, SSH, SFTP, TFTP, SNMP, Cisco IME / ASDM
Monitoring:
Wireshark, HP OpenView, MRTG, Sniffer Pro, Perfmon
Network Products:
Routers:
Cisco 25xx, 26xx, 29xx, 38xx,28xx, 36xx series; Bintec RS120/232, R4300
Switches:
Cisco Catalyst 35xx, 37xx, 45xx, 49xx, 65xx series, IE 3000; Allen-Bradley Stratix 6000/8000, Nexus 1000v / 5K
Appliances:
Cisco ASA55xx Firewall, CheckPoint R75, ACS, ISE, IPS / IDS, IP Telephony, F5 BIG-IP LTM, WSA, WLC
Programming and Application Tool skills:
Platforms:
Cisco IOS, Windows 2000/2003/2008 Active Directory / DNS / Exchange / DB Servers, Web Server IIS, Linux, Unix, Citrix, VMware Station / EXSi Server, NT4.0, Distributed I/O (DIO), Allen-Bradley SoftLogix5800, RSLogix™ 5000/500/5
Languages:
.NET, SQL, C/C++, VBScript, XML, TCL, HTTP/PHP, HTML
Education and Training
•Cisco Certified Internetwork - Security and Routing & Switching (CCIE #42684)
•Service Telecommunication Networking Infrastructure Training
•P.Eng - Mechanical and Electrical Engineering
•Bachelor Degree - Computing Numerical Control Engineering
Employment History
Senior Network Specialist Jun. 2012 – Present
CIBC Toronto,
•Conducting networking performance analysis activities and design following Enterprise Delivery Framework (EDF), S.L.A and Information Security Standard Requirement gathering, review of network related changes.
•Researched, designed, and implement LAN/WAN environment to test new solutions and existing configurations include multiple infrastructure implementations (HSRP,VRRP,WCCP), load balancing, EIGRP & OSPF integration, Firewall Security implementations, routing filtering, CA servers. DMVPN-to-GETVPM Migration
•Hand on POC testing of Infrastructure includes LAN/WAN edge, VPN, IP Telephony, wireless and security solutions and system evaluate load test, performance test strategies up to application layer, publish analysis reports, failover test.
•Performed deployment and management of Cisco firewall operations, DNS, Cisco Identity Services Engine (ISE) operations.
•Performed Network Security management using Cisco ISE (NAC) to control access to network resources and endpoint devices.
•Analyzing existing systems and new technology features introduced by different vendors for applicability to enterprise; identify system changes and configurations.
•Perform preventative maintenance, including the installation of hot fixes and version upgrades, troubleshooting of global network consisting of Load balancing, WAN, LAN, VPNs, Firewalls, ISE, IP Telephony, IPS / IDS, F5 BIG-IP LTM.
•Consistently review network monitoring and performance technologies and make recommendations where applicable, web security, SNMP traps.
•Networking and Application performance issues troubleshooting and operation support.
•Reviewing and updating the baseline documentation for all networks include diagrams, IP address spreadsheet, and inventory of operational/spare equipment.
•Project coordination, strategic planning and operations, determine network load and performance statistics.
Network Performance Analyst Oct. 2011 - May. 2012
BMO Toronto,
•Hand-on implementation and configuration of testing network infrastructures and device includes Cisco switches, routers, firewalls.
•Performed software and hardware upgrades to maintain the high performance requirements of the Performance Testing environment.
•Conducted Network Performance tests, analysis results of financial management solution (FMS), Online Banking Business (OLBB) implementation in UAT with ALSCOM Citrix Servers.
Senior IT Analyst Mar. 2011 - Sep. 2011
O.L.G Toronto,
•Redesigned Cash Handling System (CHS) Back Office migration of AJM/CTR kiosks network, planned and staged network IP addressing for the SIT, UAT, DRP Environments, network usage monitoring and analysis.
•Designed and deployed VMWare ESXi 4.0 Server which is controlled by a Virtual Center server and created a test environment for the migrating to live system support in Cisco switches & routers environment.
•Participated in VPN integration project. Supporting and maintaining VPN configuration between Gaming Sites, worked with SP for deploying MPLS VPN for global network.
Network Support Engineer Apr. 2007 - Feb. 2011
Capitek Consulting Inc Toronto,
•Designed, Implemented and Supported Cisco Converged Plantwide Ethernet (CPwE) Enterprise networking projects for Bombardier, Global Wire, etc in EtherNet/IP environment installed RSLogix™ 5000/500/5.
•Network Design, Support, Implementation and Troubleshooting of complex Allen Bradley DeviceNet, Controller Area Network (CAN) based networks, Flex I/O system in addition to Network Security Audits, maximized functionality of network equipment (i.e. Cisco/HP routers, gateways, switches, etc.); monitor network implementation, providing support in an timely and accurate manner integrated security appliance (ASA / checkpoint firewalls, IDS, ARP snooping etc).
•Deploy patches and effectively implement and maintain ICAS LAN/WLAN network security framework includes IPS traffic inspection, Access Control Lists (ACLs), access restriction and tracking, dot1x/EAP, SNMP.
•Performed on-call duties, shift rotations, and support weekend work and on-site service when situations demand.
Network Service Engineer Aug. 2000 - Jan. 2007
Swiss Bystronic China,
•Designed and deployed Control System IP networking Migration to Enterprise Central Management System (CMS) for Foxconn (2k+ nodes) and provide network supports.
•Design small Cell/Area zones as a VLAN for Ethernet/IP devices, assign distribution switch as Root Bridge using RPVST+ or MSTP to better manage and optimize the traffic route.
•Use Internet Group Management Protocol (IGMP) snooping functions to control multicast traffic volume, preferably with the querier on the Layer-3 distribution switch.
•Configure DHCP server for IE switches to save significant configuration time during maintenance.
Network & System Administrator Aug. 1995 - Jul. 2000
Hitachi Elevator China,
•Migration Flexible Manufacturing System (FMS) to Industrial Automation & Control System (IACS) IP network infrastructure (50+ Cisco/Rockwell router/switch nodes/600+ PC seats).
•Applied IT network system supports includes Corporate Level(ERP, DB, Server Farms), Control Level(Control Gateway, CAN) and Device Level (DIO, DeviceNet, PLC, IP Nodes, VLAN access)
•Network integration, installation and implementation for CNC machine tools with RS-232 / Ethernet ports in the factory floor for remote management through Internet or LAN.
•Deploy Windows NT 4.0 Systems for EDS UG Design Application within Enterprise network.
•Implemented hard drive imaging system, decreasing warranty costs and turnaround time.
Contact this candidate