Engineer Design
Resume:
BRIAN FAVER
******@*****.***
QUALIFICATIONS:
I have been working in the technology field for over 27 years, and I have worked in both large and small-scale environments, handling all manner of operations to ensure stability of the network, and security of the enterprise. I have administered many operating systems including Linux (RedHat Enterprise, CentOS, Fedora, SuSE), AIX, BSD (Free and Net), Solaris, and Windows. I have extensive knowledge of networking systems. I'm a specialist with Checkpoint Firewall-1, Provider-1, and the GAIA operating system. As well as F5 hardware utilizing LTM, GTM (DNS), APM, and ASM modules. I have experience with Cisco firewalls, Fortinet products, and Juniper firewalls, along with Tufin, Indeni, Redseal, and Forescout audit/analysis systems. I’ve performed vulnerability and penetration testing using Metasploit, Core Impact, Wireshark, Nmap, as well as scripted tools. I have deep knowledge of industry standard programs including BIND, Sendmail, IIS, Apache, Exchange, etc. I am skilled in most major network services such as DNS, LDAP, DHCP, FTP, SNMP, POP, SMTP, IMAP, user and group administration and permissions. As well as system and network security, ACLs, IDS/IPS as a module or as a service, log file monitoring and maintenance, and network configuration/maintenance. I have experience scripting in PERL, Python, Shell (C, bourne, and korn), Powershell, HTML, CGI, tcl, expect, sed and awk.
WORK EXPERIENCE:
Vandis Inc, - New York, NY Nov 2019 – Present
Network Architect / System Integration
Created SOW/BOM docs for new implementations of NaaS and SaaS across AWS, Azure, and GCP cloud infrastructures.
Implemented hybrid network F5 load balancing for a large hospital system.
Atos Managed Services - New York, NY Mar 2019 – Oct 2019
Network Architect – Network Security
Designed new data centers for CNA insurance company in Aurora (Chicago) and Pittsburgh.
Performed security audit on internal networks using Nexpose and Tripwire for VITA
Created reusable automation scripts in Python, Terraform, and Powershell for use in AWS.
Implemented cloud-based infrastructure and linked into existing networks for VITA.
Shearman & Sterling - New York, NY Mar 2016 – Mar 2019
Lead Network Engineer/Architect – Checkpoint/Citrix/F5
Designed and deployed four new global data centers, migrated all traffic and systems to the new data centers and cloud infrastructures.
Created a network topology based on risk assessment with segmented zones and DMZs.
Upgraded all Checkpoint firewalls and management/logging systems from R77.30 to R80.10.
Enabled IDS/IPS, DLP, and URL filtering at the edge layers of the new infrastructure.
Migrated thousands of systems across five data centers from Sumologic to Splunk via syslog for data and logging analytics using clusters of search heads and indexers.
Created scripts in Python and Terraform to quickly stand up cloud networks and systems.
Performed penetration testing on new data centers using Metasploit, Nmap, and Core Impact tools.
Columbia University - New York, NY Dec 2015 – Feb 2016
Senior Network Engineer – University IT
Upgraded software for F5 LTM and GTM systems to bring them up to date.
Migrated existing messaging platform to Exchange 2016 using F5 iApps.
Implemented monitoring system and remote high-speed logging of load balancer infrastructure.
Verizon Managed Services - CapitalOne - Cary, NC Jun 2013 – Nov 2015
Lead Specialist – Security Services
Engineered solutions through Capital One’s networks as projects and applications demand.
Troubleshot network and application issues through firewalls and load balancers.
Participated in firewall council meetings to help ensure integrity and longevity of the security systems.
Redesigned multiple data centers edge and internal firewalls using Checkpoint Firewall-1 on GAiA OS, as well as Cisco ASAs.
Assessed overall health of network and security status through a process of penetration testing, hardware and software review, and application integrity checks.
Atos Managed Services – New York, NY Jan 2013 – Jun 2014
Network Architect – Cisco/Checkpoint/F5
Engineered complex network designs for the McGraw-Hill/Standard & Poor’s infrastructure.
Refreshed F5 hardware and software in the existing and new data centers.
Responded to and mitigated security threats and attacks.
Provided subject matter expertise to new initiatives and existing issues.
Migrated WideIPs and VIPs from Mcgraw-Hill Financial to Education spinoff.
Oversaw introduction of standardized change processes for F5 changes within the network.
Planned and led Checkpoint hardware and software migration updated to Gaia OS.
Designed new LTM/GTM architecture in 3 countries for Disney visitor internet access product.
Wells Fargo & Co. – Chandler, AZ September 2013-Jan 2014
Architect Consultant – F5 Load Balancer Design
Redesign and refresh of the F5 load balancer infrastructure to modern hardware and OS.
Help design searchable database of all load balancer assets (VIPs, WIPs, pools, nodes, etc.).
Designed highly available email system (Exchange 2010) on LTM, GTM with APM tie in.
U.S. Federal Reserve - New York, NY Sep 2012 – Jan 2013
Senior Network Security Engineer
Designed highly secured infrastructure that acts as a service provider for an increasing number of complex e-commerce applications within the US government.
Implemented connectivity through many tiers of networks as the client requests on multiple vendors of firewalls and load balancers.
HP - Bank of America - New York, NY Apr 2011 – Nov 2012
Design Engineer
Part of a team that designed new F5 load balancer infrastructure based on availability and security requirements.
Assisted in migration of existing sites to new F5 systems, and integration of new designs into existing load balancer infrastructure.
Deployed three new F5 GTM sync groups used by the bank for high availability both globally and topologically.
Cablevision Systems Corp. - Bethpage, NY May 2001 – Jun 2013
Lead Infrastructure Systems Engineer / Security Engineer
Managed a dedicated team of engineers for infrastructure systems, network security and monitoring systems.
Designed, configured, deployed and maintained F5 load balancers running LTM/GTM software v4.x – v11.x.
Designed, configured, deployed and maintained Checkpoint Firewall-1 and Provider-1 (R55 through R75) in multiple data center environment on IPSO and GAIA.
Managed network and host security through multi layered approach consisting of Firewalls, IDS/IPS (Snort and Tripwire), Packet Filters, OS Hardening, Iptables, and Application Layer ACLs.
Scripting for day-to-day operations such as gathering stats and logs, system patching and maintenance, as well as system health reporting in Perl, ksh, tcl, and bash.
Built and maintained Cisco ASA firewall environment on 5510-5525 devices.
Designed server/application monitoring systems with Sun MC, HP Openview, Cricket, SiteScope, Nagios, RRD, and MRTG for application and system level errors. As well as using these tools to graph and forecast.
Ebeon Inc. - New York, NY Jan 2000 – Sep 2000
Design Engineer
Administration of Sun Solaris 7 and 8 on Enterprise class servers. (DNS, Checkpoint, Clearcase, Websphere, iPlanet, Apache).
Administration of Windows NT4 and 2000 Server environment, (DHCP, WINS, file and print serving, database, Exchange).
Administered AIX 4.3.3 on B80, and RS/6000 servers. (Tivoli, Siebel).
Administered Exchange 5.5 replicating servers over several domains in several countries.
Deployed and maintained Checkpoint Firewall-1 and VPN-1 in geographically diverse data centers.
Deployed and maintained Cisco ASA 5505 firewall and PIX VPN systems.
PDQ.net – Houston, TX Jan 1994 – Jan 2000
Systems Administrator
Administer, modify and maintain Microsoft Windows NT Server 4 on multiple servers for apps such as IIS, and Exchange.
Administered UNIX systems (Linux, BSD, AIX, Solaris 2.6) providing services such as DNS, HTTPS/FTP, Checkpoint firewalls.
Manage LAN security and network performance using firewalls, monitoring agents and software.
TCP/IP support and configuration in a LAN/WAN environment.
Responsible for the training of level 2 technical support representatives and support managers.
Contact this candidate