Network Engineer Security Clearance
Resume:
STEVEN D. HARRIS
**** ******* ***** ** ********, MD 21044
Home: 410-***-****, Cellular: 301-***-****
****************@*****.***
Security Clearance: Top Secret/SCI/CIA Lifestyle (Full Scope) Polygraph adjudicated: May 2021
U.S. Navy, Information’s System Technician E-6 (Retired)
PROFESSIONAL EXPERIENCE
Oracle Cloud Network Engineer
Sequoia INC
Reston, VA October 2023 – August 2024
Supports Oracle’s government customers, and responsible for Daily operations of production environments, including systems and databases, supporting critical business operations.
Perform administration and analysis for multiple production environments and recommend new and novel solutions to improve availability, performance, and supportability.
Resolved an average of 30+ technical support tickets per day, Utilizing Prometheus, Grafana, and Insight Automated Tools.
Worked Tier3 issues, Troubleshot and resolved, OSPF, BGP PEER and Neighbor issues on: Juniper, Cisco and Arista Network devices.
Network Engineer
NT Concepts
Vienna, VA January 2023 – October2023
Experience configuring Data Center and Service Provider routers, switches, and firewalls.
Perform installation, configuration, customization, and training for SolarWinds products on-site and remotely with clients globally.
Ability to work collaboratively across multiple disciplines.
Planned and executed prioritized projects work including selecting appropriate methods to achieve project objectives.
Contributed to the engineering solutions development, and implementation of Google Distributed Cloud Hosted (GDCH) infrastructure.
PROFESSIONAL EXPERIENCE
Service Operations Engineer
Oracle America, Inc
Sterling, VA February 2022 – January 2023
Perform daily Change and Configurations Management on Oracle Cloud Infrastructure for over 200 service teams worldwide using DevOps, Grafana & Canaries Graphs, and Jira Ticketing System.
Participate in Daily (NOC) Network Outage Chats as a Scribe (Documenting all participants actions) or Incident Commander (Coordinator of Teams actions to include Tier3 on-call status, and or Commercial Techs various stage through mitigation of incidents)
Collaborate with Security and Architecture teams to ensure alignment with enterprise architecture standards and governance processes.
Assist in the development of cloud-focused tooling to allow technology teams to utilize cloud services.
Interact in a cooperative and professional manner, with all levels of employees, vendors and/or clients, in a team environment.
PROFESSIONAL EXPERIENCE
Network Security Engineer
WINDWARD Consulting Group
Chantilly, VA March 2019 – November 2021
Provide Daily Network Security Engineering for VIP Customer
Support Cisco Email Security Appliances (C190) for customer, designing filter, DLP, and encryption profiles based on business needs.
Perform routine network security, and targeted firewall reviews on: NGFW (Next Generation Fire Wall) CISCO FRP-4100 Security Appliance, looking for software vulnerabilities, as well as design flaws leaving customers vulnerable.
Design and support Site-2-Site and Remote Access VPN solutions on Cisco 5500 FW.
Experience with configuration/integration/troubleshooting of network access devices(switches/routers/firewalls) into Cisco ISE (Identity Service Engine) and F5 Load Balancing
Knowledge/Experience with Stealth Watch.
Conduct Network Security Testing with ixia Perfect Storm P60 Gig Platform, and Citrix NetScaler (NSSDX-14100)
Performed Cisco ASA Configurations via ASDM Management Access to include (Inbound, Outbound, ACL rulesets, necessary PKI Certification Updates, and IOS Updates
Knowledge/Experience with Stealth Watch.
Responsible for creation of user accounts, password assignments, password resets, and Group assignments via Active Directory.
PROFESSIONAL EXPERIENCE
Network Engineer
TEKMASTERS, LLC
Chantilly, VA May 2017 – March 2019
Design and implementation of customer infrastructure. Technologies included EIGRP, OSPF, BGP, MPLS VPNS, QoS and Multicast.
Performed Tier3 O&M (Operations & Maintenance) support on PIX ASA (5505, 5510, 5515, 5545, 5550, and 5585) firewalls for VIP Client.
Performed IOS and CatOS upgrades in response to various Cisco bugs.
Troubleshot and coordinated the replacement of failed router, switch, and ASA hardware with Cisco TAC.
Implemented security policies using ACL, Firewall, NAT, IPSEC, SSL, VPN, IPD/IDS, AAA
(TACACS+RADIUS).
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
Provided IPAM (Internet Protocol Address Management) IP assignment.
Maintained basic and advanced DNS administrative services utilizing VMware Horizon Client, along with WMware ESXi Setup and Install.
Execute Monitoring, Configuration Management, and Trend Analysis on Cisco Devices
Utilizing (Solar Winds Network Node Manager (NNM). Devices are as follows: CISCO Nexus 5596, 2248, 5548, and 6001 CISCO
Catalyst 2960, 4948, 3700, 3560, Cisco ASA 5505, 5510, 5515, 5545, 5550, and 5585, CISCO 7710, and JUNIPER J6350, JMX900.
Successfully implemented EOL project alias 'End of life equipment' assigned as per CISCO guidelines in live environment.
PROFESSIONAL EXPERIENCE
Staff Consultant/Network Engineer
JACOBS FEDERAL NETWORK SYSTEMS (Advanced Projects) Formerly
Verizon FNS Reston, VA May 2005 – May 2017
Completed COMSEC Manager’s Course and/ COMSEC Custodian Course (NSA IAEC 2112)
Responsible for the safeguarding and controlling of Communications Security (COMSEC), Controlled Cryptographic Items (CCI),
and keying materials across multiple locations.
Configure, Install, Perform Tier3 & 4 O&M (Operations & Maintenance) Support on the following Encryption devices: KG-
345, KG-245X, 245A’s, KG-175D’s and KG-175A’s OS (Operating Systems) 3.5v5 – 4.1v1
Troubleshoot complex LAN/WAN infrastructure including routing protocols OSPF, and EIGRP
Developed and implemented SOP’s (Standard Operating Procedures) to support Day to Day operational functions.
Periodically field trouble calls from remote customers to assist in the operations of their COMSEC equipment
Utilize the COMSEC Accounting Reporting Database System (CARDS) to process all inbound and outbound COMSEC Key, equipment,
and Crypto destruction
Participate in technical interchanges and vendor briefs to understand future developments of COMSEC equipment and translate that into an
equipment management and technology strategy.
Performed Tier3 O&M (Operations & Maintenance) support on PIX ASA (5550) firewalls for VIP Client.
Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPD/IDS, AAA(TACACS+RADIUS)
Provided DHCP (Dynamic Host Configuration Protocol) IP assignment.
Execute Monitoring, Configuration Management, and Trend Analysis on Cisco and Juniper Devices utilizing HPOV (Hewlett Packard’s
Open View Network Node Manager (NNM) and CISCO Works. Devices are as follows: CISCO Catalyst 2950, 3560, 3750, 5000, CISCO
Edge device 7609-s, CISCO ASR 1006, CISCO MGX8800, and JUNIPER J6350, JMX900.
LAN\WAN\Install Tier2 O&M (Operations & Maintenance) Technical Team Lead.
Presently providing High Level WAN / LAN Engineering, O&M (Operations & Maintenance) for prestigious Northern, VA client.
Principal LAN-Wan Technologist / Networks Administrator
RAYTHEON, NGA (Special Project) Bethesda Md May 2004 – May 2005
Establishes and provide WAN/LAN Architectural Designs using NETVIZ 7.0 hierarchical, data embedded/depicted graphics.
Maintain technical Proficiency in various areas of network and computer hardware and software interconnection and interfacing, such as routers, multiplexers, hubs, bridges, gateways, cryptographic equipment, and ATM switches.
Effective communicator able to explain complex concepts and ideas to technical or non-technical individuals.
Mentor additional staff on monitoring and troubleshooting techniques.
Perform Peregrine's Service/Asset Center; call management, problem resolution, and problem escalation functions.
Assist in implementing and administering the automated information system (AIS) security plan
and polices as a (ISSR) Information System Security Representative.
Principle Technical Support Engineer / Sr. Multi Disciplined Engineer II
RAYTHEON, NGA (WAN TEAM) Washington Navy Yard March 2003 – May 2004
Provide knowledgeable, technical support for the Washington Navy Yard (WNY) Wide Area Network (WAN)
and provide on-hands training to WAN team members.
Responsibilities include implementation and network modernization to transition users from existing legacy networks to new Gigabit
Ethernet infrastructure, coordinating installation activities, ST&E testing, and maintenance of the equipment
Located in the communications facility.
Perform fault isolation in a timely manner, and corrective maintenance on a variety of communications equipment
to include Timeplex Multiplexers, Cornet Matrix switch, DS-0, DS-3, and various types of circuits and cryptographic
equipment to include: KG-95’s, KIV-19’s, OC3, OC12, and OC48 Fastlanes and Taclanes.
Thorough knowledge of analog circuitry, data electronic theory practices, and wiring termination techniques to install
and interface various communications systems.
Conduct Tier one trouble shooting, and configuration of 3200 series Routers.
SME (Subject Matter Expert) of NETVIZ 7.0 Diagram Graphics.
Technical Consultant / Network Technician
CTGi, NSA, NOC (Network Operations Center) Ft. Meade MD May 2002 – March 2003
Execute Monitoring and Configuration management of various classified and unclassified networks using HP-Openview Network Node Manager and WhatsUpGold software.
Performed Sun UNIX System Administrator functions on a variety of workstations Ultra’s 1 and II to include ensuring script files were ran for SLA (Service Level Agreements) on classified and unclassified networks.
Provided problem resolution and service request actions for desktop workstations, and laptops in ensuring connections to PH8000 Hubs for security measures.
Administered user accounts on classified networks
When requested by Intrusion detection security personnel NOC perform cyber threat functions.
Developed and implemented ST&E Testing, Risk and Vulnerability Assessment documentation to support operational duties.
Conducted Tier one trouble shooting and reconfiguration of PH8000 Hubs and 6509 routers.
Responsible for daily operation of LAN, Network Operating Center, provide technical leadership, train and mentor more junior technical staff.
Perform Remedy Queue Management, Queue Coordinator and problem resolution Coordinator functions in keeping abreast of outage and fixed actions that allow techs one centralized place to report.
Knowledgeable of the following protocols: TCP/IP/OSPF/CMIP/SNMP/and IPX.
Analytical problem-solver adept at identifying needs and developing actions plans to resolve issues.
NOVA Systems Administrator
EDGESOURCE, JITC (Joint Interoperability Testing Command) Indian Head, MD March 2002 – May 2002
Gathered, analyzed and composed technical information, technical documentation, wrote test plans, test procedures, documented discrepancies, and generated software change proposals to UNISYS Engineers for new Naval Hybrid message processing system.
Assist in technical project related to hardware, software, Sun Storage Array installation and upgrade of new NOVA System and ensured timely effort reporting to management.
Strong working knowledge of Windows 95, 98, 2000, NT, and UNIX operating systems.
Brief and train command-level personnel on all aspects of Nova operations.
Familiar with DITSCAP procedures and phases to include: SSAA, and C&A
Field Engineer/Network Analyst
CACI, NRO, EMOC (Enterprise Management Operations Center), Chantily, VA November 2001 – March 2002
Provide Risk and Vulnerability Assessment, monitoring and configuration management of various networks to include, Fiber-optic networks, IDNX (PROMINA), and Timeplex link2 networks using HP-Open view Network Node manager for a classified contractor.
Strong working knowledge of Sun Solaris UNIX, REMEDY, and TCP/IP.
Performed System Administration functions on Timeplex link-2 systems, and IDNX (PROMINA)
Network Controller
Computer Science Corporation, Department of State, Beltsville, MD April 2001 – December 2001
Monitor the operations of Diplomatic Telecommunications Service Global Network (DTS) and the International Voice Gateway (IVG) circuits.
Performs diagnostic testing and coordinate with remote facilities in the restoration of circuit failures.
Works from schematics, logic diagrams written and verbal descriptions, layouts, or defined plans.
Knowledgeable of electronic theory and practice, the use of schematic diagrams and test procedures, the operations of complex test equipment, and development of prototype circuits and components.
Conduct emergency, preventive, and corrective maintenance down to individual component level, upgrades, and installation of local communications equipment.
Install voice and data circuits traveling over various media.
Maintain documentation-detailing actions during troubleshooting circuit outages and installation/upgrades of circuits.
Assist numerous posts in troubleshooting aggregate, tail circuit, and voice circuit outages.
Establish INMARSAT links with numerous posts.
Performed ST&E Testing of numerous circuit installations and coordinate with various Embassies and Consulates for the removal of obsolete circuits and associated equipment.
Modify numerous data and voice circuits using available controllers, multiplexes, modems, etc.
Handle high volume of telephone calls and give assistance to fellow technicians and telephone carriers on a daily basis.
FAMILIAR with the following equipment and perform the following task as needed:
Run various shielded and unshielded cable (2 pair, 6 pair, and 12 pair, etc.)
Perform various cable terminations for industry standards, (RS-232, RS-530, RS-422, RS-449, and RJ-45).
Run FIBER OPTIC cable, splice and perform termination, Wire up MDF upon request.
Able to read schematic wiring diagrams, Program IDNX (PROMINA), GDC, TIMPLEX/Link 2t,
KG-194 (Internal circuit boards), and use Techtronic’s 4-trace Oscilloscopes.
CERTIFICATION:
AZ-900 Microsoft Azure Fundamentals: Pursuing 2023
Oracle Cloud Essentials November 2022
INFOSEC Certification for Systems Administrators July 2021
Cisco NGFW (Next Generation Firewall March 2020
Cisco ISE (Identity Service Engine) Feb 2020
Cisco StealWatch Jan 2020
Implementing and Configuring Cisco Identity Service Engine v3.0 December 2019
SESA – Securing Email with Cisco Email Security Appliances Parts 1 & 2 2.1 October 2019
JUNIPER CTP (Circuit to Packet) Operations and Configuration March 2010
MPLS (Multi-Protocol Label Switching) Operations and Configuration Feb 2010
INFOSEC Certification for Systems Administrators April 2008
DIPLOMATIC TELECOMMUNICATIONS SERVICE Training Academy ATM Advanced Certification, August 2005
DIPLOMATIC TELECOMMUNICATIONS SERVICE Training Academy ATM Theory Certification, July 2005
NGA CND-ISSR: NATIONAL GEOSPATIAL-INTELLIGENCE AGENCY Computer Network Defense-Information’s System Security Representative, Sept 2004
Management Tools/Technical Knowledge and Competencies:
Citrix NetScaler (NSSDX-14100), and Nutanix
CISCO Devices: 2500, 2800, 2900, 3600, 3700, 3800, 4000, 6500, 7609-s, ASR 1001X,1006, and MGX8800. JUNIPER Devices: CTP-1004, 2000, J6360, and JMX900. MARCONI ATM: ASX 200BX/1000/1200/4000, BXR 48000, and SAFENET ATM Encryptor. Encryption Devices: SAFENET 345s, Red Eagle 245x-a, 175 A-Ds, Encryption Device Managers: GEMS (Ground Equipment Monitoring System), HAIPE (High Assurance Internet Protocol Encryptor), and SMC (Safenet Management Center)
NETVIZ-7.0 Diagram Graphics, Cryptographic Equipment (KIV-7, 19, KG-195, 194, 94, 84 A & C, 81,KWR-46T, and 46R, NES, KYV-5/ANDVT, KY-58, Crypto fill devices: KYK-13, KYK-15, Crypto tape reader: KOI-81, OC3, OC12, and OC48 (KG-75) FASTLANE, KG-175 TACLANE, ASX 1000/1200/4000 ATM Switch, CISCO (ONS 15454, 7200vxr, 4000, 3600, and 2500 series Routers), Catalyst Switch 2900 series XL, Canoga Perkins 2290 Fiber Modem, 2245 DS3 Fiber Modem, Timeplex Synchrony Cell Exchange CX-500 AC P/S, Packet Switching, CSU/DSU, T-1’s, and T- 3,, Built, Test and ran the following cables: 2, and 4 pair CAT five cable, 6, 8, 12, Coaxial, and UTP/Fiber Optic Cables, D250 T568/10Base T Tester, Firebirds 6000A, and 310, Digitech 2002 IDNX/PROMINA, ASCOM Timeplex link/2+ Digital (Data/Voice Multiplexer), MS Project, MS Office Suite, WinNT Workstation, XP, and MS-Dos, FORE Power Hubs 8000, HP OpenView, WhatsUp Gold, Remedy Trouble Ticket Tracking Software, Solaris Unix,, Multiplexers, Satellite Transmission Systems: (WSC-3, WSC6 SHF, Challenge Athena IIA and III commercial wide Band SHF, and AN/USC-38 Navy EHF SATCOM Terminals, Hewlett Packard 8563a Spectrum Analyzer, Receivers: R-1051G(HF), R-2368(HF), Transmitters: AN/URT-23(HF), WRT-2(HF), Antennas: HTOA (High Take Off Angle Antenna), RLPA(Rota table Log Periodic Directional Antenna), CM(Comical Monopole Antenna), IC(Inverted Cone Antenna).
EDUCATION
Cisco NGFW Training (Next Generation Firewall March 2020
Cisco Steal Watch training Jan 2020
CISCO ASA 5500 Series Adaptive Security Appliance Training Class, April 2014
Twenty-Years Naval Military Service converts to 35 college credits at Strayer, and John Hopkins University, Oct 2015
ICND (Interconnecting Cisco Network Devices) 1 Class Dec 2011
CCNA Class May 27 2010
ATM Advanced Training Class, August 2005
Cisco ONS 15454 SONET Training Class, July 2005
ATM Theory Training Class, July 2005
CCNA BOOTCAMP Training Class, Feb 2005
Enterprise ATM Switch Class, Dec 2004
Computer Network Defense Information Systems Security Representative (CND-1SSR) Class, Aug 2004
NETVIZ 7.0 Diagram Graphics Training Class, Dec 2003
Foundry Networks Training Class, Dec, 2002
Silk Worm Advanced Administration & Theory of Operation SW3250 for SAN (Storage Area Networks) Class, Oct, 2002
CorScan Operations & Matrix Maintenance/ Installation Training, (Cornet Matrix switch) Class, July 2001
SHF SATCOM TRAINING Class, Sept 1998
KG-194 OPERATOR/STAPPING Sept, 1998
Multilevel Mail Server REL 2.0 June 1996
Communication System Technician Training, and received NEC: 2318 (Technical Controller Operator) Dec, 1991
Contact this candidate