Thaddeus S. Gaston
**** ***** ****** **** • Cleveland Heights, Ohio 44112
216-***-**** • ***********@*******.***
OBJECTIVE
Networking and Security Engineer with over 15 years of experience seeking to leverage a diverse background in design, deployment, management and troubleshooting of large enterprise networks.
EXPERIENCE
Network Engineer October 2015-July 2016
IBM Watson (formerly Explorys) 8501 Carnegie Ave. Cleveland, Ohio 44106 As Network Engineer I am responsible for day-to-day management, operation and troubleshooting of the IBM Watson Health Data Center and Headquarters networks. Focused on Big Data within Health Care the Data Center network is designed based on a Spine/Leaf architecture comprised of 200+ Arista Networks and Cisco Systems switches. Cloudera 5 Hadoop provides the distributed file system for computing spanning hundreds of Linux and Windows servers and virtual machines. My experience includes: Data Center Network Integration, Operations and Troubleshooting:
Installed, configured, administered and troubleshot Arista 7250QX, 7050TX, and 7048T switches. Performed software and API upgrades.
Configured and managed Layer-2 technologies; VLANs, Spanning Tree, Trunking and Mlag. And
Configured and managed Layer-3 technologies; IP Routing, OSPF and Virtual Routing and Forwarding.
Installed and Configured Splunk Frowarder and Management API for SFLOW, LANZ, Network Topology and Switch Inventory telemetry.
Managed and administered the Data Center network using Cloudvision (Jabber client), SNMP, NTP, SSH, and ACLs.
Configured and integrated Cisco 3500 series switches for management network. Firewall Configuration, Administration and Troubleshooting:
Managed and configured Cisco ASA 5580 and 5555 Firewalls. Including configuration and testing of Site-to-Site IPSec VPNs, Remote Access VPN, ACL management, NAT, and DMZ network integration.
Created detailed drawings of NAT configuration and Site-to-site VPN networks using Microsoft Visio.
VoIP Network Configuration, Administration and Troubleshooting:
Configuration, administration and troubleshooting of VoIP network consisting of Cisco 3750G switches, FreePBX and Polycom phones.
Configured and deployed Polycom VVX500, SoundStation and IP7000 IP Phones
Managed FreePBX Linux-based phone system.
Troubleshooting of phone issues using tcpdump and Wireshark. Wireless Network Configuration, Administration and Troubleshooting:
Configuration, administration and troubleshooting of 2.4Ghz/5Ghz Aruba Networks wireless network. Consisting of Aruba 7024 Wireless controllers and 225 series Access Point.
Configured and tested certificate-based authentication, access-control policies (per SSID), Firewall configuration and High-Availability features. Sr. Network Security Analyst January 2005-January 2009 Computer Sciences Corporation 3170 Fairview Park Falls Church, VA 22042 As Sr. Network Security Analyst I advised a large Ohio-based regional healthcare organization. I was responsible for ensuring that the business objectives of the organization were aligned with the security operations at an architectural and operational level. I lead a team of 3 security administrators and collaborated with the Network Engineering team to ensure compliance with Information Security policy and standard operating procedures. 2
Notable accomplishments are as follows:
Authored the University Hospitals Information & Technology, Information Security Team Charter which was a catalyst for formally instituting the Information Security Program for University Hospitals of Cleveland
Authored the Enterprise Network Security Architecture which defined the principles and operational framework for the UH Network Team
Authored the Enterprise Security Domain Architecture Plan which defines the operational vision and strategy for Network Security till 2008. Noted by the Chief Technology Officer as the best technology architecture plan submitted amongst the other technology domains
Designed and deployed University Hospitals “World-Class DMZ” to support enhanced security technologies including: Firewall, Network Intrusion Prevention, URL Filtering, Internet Content Filtering and scalable network architecture
Lead Security Analyst for project “OneNet” which will be the foundation for University Hospitals to become a Cisco Medical Grade Network accommodating a highly-available converged data, voice and video network.
Lead a pilot and evaluation of Cisco’s Monitoring, Analysis, and Response System
(MARS) (a Security Information and Even Management System) Sr. Network Security Engineer March 2003- January 2005 TelSource Corporation 8237 Dow Circle, Strongsville, OH 44136 As Sr. Network Security Engineer I was the senior advisor to a large educational institution. I lead the team of security and network operations personnel of an enterprise data center. Noteable accomplishments are as follows:
Lead security operations team in the development of security policies, processes and procedures resulting in “Systems Security Policy Handbook”
Developed Incident Response procedures and recommendations for Incident Response Team
Evaluation, testing, and design of Intrusion Prevention System for improved Data Center security and overall improved security posture
Deployed enterprise wide anti-virus system to 10,000+ nodes to reduce network and system exposure to viruses, trojans and worms resulting significant cost savings and improved security posture
Implementation of remote access VPN services
Security operations analysis and recommendation to improve security operations reporting and metrics gathering
Hardened perimeter security and DMZ network
Design and implementation of central WLAN management solution for 300+ access points
Sr. Systems Engineer August 2002-December 2002
Trend Consulting Services 35353 Curtis Blvd. St 201, Eastlake, OH 44095 As Sr. Systems Engineer I was an account Engineer for enterprise clients in varying industries. My accomplishments are as follows:
Created technology analysis and ROI for a Wireless versus Long Range Ethernet solution for a regional hospitality firm
Implemented Frame-relay to Site-to-site VPN migration producing cost savings for an international manufacturing firm
Implemented a firewall in support of a Frame-relay to Site-to-site VPN migration for a national advertising firm
Conducted WLAN site-survey and WLAN design for a non-profit organization
Conducted WLAN training class for clients
Implemented firewall and remote access VPN solution for a financial firm 3
Sr. Systems Engineer July 2001-August 2002
ComWavz 15513 County Road 16, Bluffton, OH 45817
As Sr. Network Engineer I lead a team of network operations personnel of a new Data Center. I consulted with the CEO and CIO to ensure the tactical implementation of a start-up Wireless Internet Service Provider network infrastructure. My accomplishments are as follows:
Designed Head-end/Backbone growth and redundancy planning
Designed Public/Private IP address architecture
Implemented regional Wireless WAN/ISP infrastructure
Created support and operation management processes and procedures
Implemented Traffic and Bandwidth engineering for improved customer traffic flow
Advised on improved installation procedures and operation logistics
Research and Development of Wireless VoIP solution with CTO and CIO
Consulted with Sr. Network Security Engineer on improved network security Systems Engineer November 1998-July 2001
FrontWay/Sarcom 8200 Sweet Valley Dr, Valley View, OH 44125 As a Systems Engineer I supported Account Managers and Business Development Managers in responding to client requests for IT solution. We ensured clients implemented the correct technologies for aligned with the appropriate technology. Notable projects include: Token Ring to Ethernet Migration for a Fortune 500 Insurance company.
Validating the logical design for performance, manageability and expansion
Design and validated IP address architecture
Created parallel network plan for migration period
Tested and verified new equipment (core switches and IDF switches)
Created configuration scripts to streamline configuration of new equipment
Migrated network core, distribution and access devices to Ethernet switches Remote Source Route Bridging (RSRB) to Data-Link Switching+ (DLSW+) Migration for a fortune 500 Insurance company.
Validated approach to RSRB to DLSw+ migration for 60+ sites
Design scripts for configuration changes
Verify operations of DLSw+ operations
Documented network changes
Support of Cisco 7513 core router, AS5300 RAS, and Cisco 2500 routers Network traffic and performance analysis for a regional publishing company
Packet capture and analysis
Complete traffic analysis and issues spotting
Documented recommendations for improving network design and performance Cisco Instructor September 1999-September 2000
Unified Technology Center 2415 Woodland Ave, Cleveland, OH 44115 As a Cisco Instructor at Cuyahoga Community College’s UTC campus I was an Instructor for Cisco CCNA/CCNP level curriculum.
Created class syllabus and course descriptions
Designed lab exercises and final hands-on exams
Provided recommendation for improved course design and lab equipment 4
EDUCATION
World Islamic Sciences and Education University P.O. BOX 1101, Amman, Jordan 11947
September 2012-February 2015 B.A. Islamic Jurisprudence and its Foundations Al al-Bayt University P.O. BOX 130040, Al-Mafraq, Jordan 25113
September 2009-2012 B.A Islamic Jurisprudence and its Foundations Cuyahoga Community College 2900 Community College Dr., Cleveland, OH 44115
August 2002-May 2003 Recording Arts Technology
Cuyahoga Community College 4250 Richmond Rd., Highland Hills, OH 44122
September 1998 Computer Information Science Program University of Akron 381 Buchtel Common, Akron, OH 44325
August 1992-January 1993 College of Business Administration (Undergraduate) Shaw High School 15320 Euclid Ave., East Cleveland, OH 44112
June 1992 College Prep