CERTIFICATIONS

Cisco CCNA (Active# CSCO********), CCENT, Network+, A+,

CCNA Security / ForgeRock

CISSP Candidate (in progress)

Former IBM & Deloitte Network Engineer,

Cisco Routers/Switch/ASA Firewalls & Checkpoint Firewalls

Security Memberships: ISSA Middle Tennessee

Infragard (FBI) Nashville

EXPERIENCE

Cyber Security Architecture Manager / Security Architect

10/2016 –Present

Hewlett-Packard Enterprise Services (Legacy ES)

DXC Technology

Gainwell Technology

Promoted, maintained, collaborated on intergration of Identity, Authorization, Account Access systems and its interaction with Active Directory/AAA environments with ForgeRock, OIAM, and other environments.

Created and updated current Enterprise and Cloud Security map and framework. Co-created current cloud security architecture framework diagrams, modelling, and architectural documentation repository in AWS (Amazon) and Azure (Microsoft).

Created first Security Architectural Checklist for TennCare. Created draft and current modelling for GRC repository and risk registry flow. Created and/or maintained Internet Addressing /Enterprise System/Environment Inventory Framework (Sparx,Prolaborate, Archer).

Collaborated with Security Operation on Archer, Keylight (GRC), Service Now CMDB interconnection and inventory aggregation.

Created first TennCare External and internal site VPN inventory and audit(s) with appropriate responses.

Created and maintained security architectural requirement framework with functional and non-functional responses.

High interaction with TennCare and STS Enterprise Architects and Architects at every level and domain.

Co-created Password Complexity policy.

Responded and created initial architectural responses and agency defenses for SSA, multiple SOC 2 and 3 Types I and II, SSAE-16/18, multiple big four accounting audits with required security architectural responses.

Created responses, drafted changes, and provided input for security architectural roadmap and its maturity.

Created initial and co-created current cloud cybersecurity architectural boundary and its definitions.

High interaction with Governance, Risk, and Compliance regarding Cybersecurity architectural responses to the security operations, privacy, and compliance owners and vendors at all levels.

Collaborated and represented Security Architecture at the Architural Review Board meeting with Chief Security Officer, his deputies, and all other enterprise architects.

Provide architectural responses to System Security Plans, System Architectural Design Documents (SADD), and any other required review or responses opportunities where a response from security architecture was needed.

Maintain list of Architectural/Engineering System Design Packages/Build Books and maintained distribution as required inside the agency.

Maintained information flow of Architectural/Engineering System Design Packages/Build Books to and from TennCare to the State of Tennessee (STS) and other departments as information exchange was necessitated by need-to-know with appropriate level of access.

Provided security architectural guidance regarding OIAM, IAM, PAM, IDAM, and Forgerock,as well as similar or equivalent Access/Identity environments.

Provided security architectural requirements regarding OIAM, IAM, PAM, IDAM, and Forgerock and principals requiring guidance.

Provided security architectural guidance for compliance for domains and controls refering to NIST 800-53 Rev. 4

and 5, IRS guidance, ITIL, TOGAF, COBIT, and SABSA best practices.

Created hundreds of architectural diagrams as requested or required.

Led vendor meetings and provided vendor security guidance as required or necessitated by compliance.

Created security architectural repository with KPMG.

Provided security architectural responses to Privacy repository as requested.

Co-created and maintained data classification models for security architecture for governance and system security plan purposes as requested.

created NASPO security architectural guidance for TennCare as requested. Created RACI for TennCare, CSVs, and CASB environments as requested.

Co-created AWS architectural boundary design environments and checklists.

Co-created Azure architectural boundary design environment and checklists.

Keylight repository security architectural inventory and component enhancement.

Completed Learning and Company/Vendor Certifications or training:

AWS Certified Solutions Architect - Associate Architecture Course

AWS Associate Solutions Architect - Security Architecture Certified

DXC Security - CRA Overview - Cyber Reference Architecture

Azure Security and Monitoring

Predictive Analytics & Big Data

Digital Industry & Analytics Foundations

Digital Industry & Analytics - Foundational Knowledge Resources

Open Source - DXC Course

HIPPA Privacy Essentials

Security Awareness

SANS Secure the Human - Data Security

SANS Secure the Human - Hacked

SANS Secure the Human - Passwords

SANS Secure the Human - Malware

SANS Secure the Human - Social Engineering

SPARTANS - White Belt 3.0

Standards of Business

Thinking Digital - The Right Mindset

Cisco CCNA Route and Switch

Cisco CCENT

Cisco CCNA Security

Network +

A+

CISSP (in progress)

CCNP Security (in progress)

TOGAF (in progress)

Security Architectural and Governance Principal 2/2016 – 10/2016

BMI – Broadcast Music Incorporated

Qualys VM, Vulnerability Management assessment and remediation. Compiling Vulnerability information to report to all platforms. Manage vulnerability reports and teams. Security policy management and implementation. Malware/virus detection and removal. Advanced threat detection and remediation. Implementing security best practices in an enterprise environment. Systems Administration (client/server management tools). CarbonBlack (Bit9) administration. Tighten endpoint security (Group Policy, Client Firewall, etc.). Palo Alto Firewall monitoring, Infrastructure security assessment and remedation.

Security architect/Network Security Engineer 10/2015 –12/2015

ATT – Consulting company at Client (ATT / Lexmark) -Remote location

Cisco ASA VPN/Firewall, Router, and Switch knowledge. Checkpoint Provider 1 Firewall R76, R75.40 Gaia CMA knowledge and troubleshooting. Cisco ASA / VPN. Experience performing analysis of network security needs and contributing to design, integration and installation of hardware and software. Create and maintain Site to Site IPSEC VPNs Tunnels, Cisco and Checkpoint Firewalls. Create, maintain, and deploy Checkpoint and Cisco ASA firewall rules and policies. Experience analyzing, troubleshooting and correcting network problems remotely and on-site. Experience maintaining and administering perimeter security system firewalls.

Network Security Engineer / Security architect 5/2013–10/2015

CDI – Consulting company at Client (IBM / MICHELIN) -Remote location

Cisco ASA VPN/Firewall, Router, and Switch knowledge. Checkpoint Provider 1 Firewall R76, R75.40 Gaia CMA knowledge and troubleshooting. Juniper Firewall and VPN. OSPF/BGP knowledge. Experience performing analysis of network security needs and contributing to design, integration and installation of hardware and software. Create and maintain Site to Site IPSEC VPNs Tunnels, Cisco and Checkpoint Firewalls. Create, maintain, and deploy Checkpoint and Cisco ASA firewall rules and policies. Experience analyzing, troubleshooting and correcting network problems remotely and on-site. Experience maintaining and administering perimeter security systems such as firewall and intrusion detections systems.

Network Security Engineer 11/2012-4/2013

CPI – Consulting company at Client (HCA / Hospital Corporation of America)

Cisco ASA Firewall, Router, and Switch knowledge. Checkpoint Provider 1 Firewall R75.40 Gaia

CMA knowledge and troubleshooting. OSPF/BGP knowledge. Experience performing analysis of network security needs and contributing to design, integration and installation of hardware and software. Create and maintain Site to Site IPSEC VPNs Tunnels, Cisco and Checkpoint Firewalls. Create, maintain, and deploy Checkpoint and Cisco ASA firewall rules and policies. Experience analyzing, troubleshooting and correcting network problems remotely and on-site. Experience maintaining and administering perimeter security systems such as firewall and intrusion detections systems.

Network Technician 3 10/2011-11/2012

Cybera

Support and Implement Data Connectivity for Local Area Network (LAN), Wide Area Network (WAN) Systems, EVDO, Cellular, 3G/4G, and Dial Backup. Support Cisco based data infrastructure including the configuration. Troubleshooting of Cisco Routers, Switches, And Cybera Networking Routers and Firewalls. Troubleshooting of VLANs, SVI, BVI, QOS, and frame tagging on any type of Switch or Router. Troubleshooting of routing and routed protocols. Support information Security Infrastructure including Juniper VPN, Cisco ATM, VRFs in Juniper ERX/SRXS. Configure, troubleshoot, and support IPSEC and GRE Tunnels Over OpenVPN / SSL Transports. Extensive Troubleshooting of routing and routed protocols. Performed WAN connectivity for Internet/Intranet. Changed Cisco Router protocols to set up protocols for exterior/interior routes (Static, OSPF, and BGP).

Network and Security Engineer 7/2011–10/2011

Medical Reimbursements of America (MRA)

Oversee Day-To-Day Operation of Computer Networks including hardware/software. Support. plan, design and implement data connectivity for Local Area Network (LAN) and Wide Area Network (WAN) systems. Support Cisco based data infrastructure including the configuration and troubleshooting of Cisco routers, switches, and access points. Support information security infrastructure including Cisco VPN and ASA firewalls. Assist in providing network and remote connectivity hardware/software support. Maintain LAN user documentation including hardware/software applications, support logs and other related information; Research and recommend network hardware/software. Install, Configure, and Troubleshoot Cisco Switches (2900, 3500, and other series) VLAN, QOS (DSCP) and traffic marking, troubleshoot VOIP, and Monitor usage to ensure security of data and access privileges. Install, support and maintain both physical and virtual network servers and appliances.

Independent Network Engineer 3/2010–7/2011

Self Employed

During this year, I performed work as an independent information technology network consultant. Although most of the clients were for-profit companies, some were non-profit. Endeavor Telecom, Field Solutions (or Visiontek), or myself for:

Church's Chicken (MPLS conversion project with Cisco Switch and router installation/configuration/troubleshooting), Charming Charlies (Infrastructure remediation and survey), Dollar General (DSL/T1 network service), Logan's Steakhouse (wireless infrastructure upgrade), Home Depot (wireless survey), Install Cisco switches and routers, as well as Infrastructure conversions for NCR/McDonalds, MPLS (with BGP) and router/switch install for Hewlett Packard for American Snuff Company in Clarksville, TN. I have also done extensive network consulting for two non-profits. One is the Nashville, TN public charter school - Drexel Preparatory Academy (www.drexelpreparatoryacademy.org) and GAP community development (www.gapcdr.org).

Network Support Engineer 12/2009- 3/2010

Community Health Systems

Provide Cisco network operations support and guidance resolving network issues. Assist peer subject matter experts, management, and customers on any network related issue that might encountered on the enterprise network. Installing, configuring, and maintaining site to site VPNs using Cisco CSM and ASDM on the ASA 5510 firewall running 7.2 software. Install, configure, and troubleshoot Cisco switches (2900, 3500, 4500, and 6500 series) and routers (various). Configure and troubleshoot for multiple hospital VLANs and trunks (802.1Q). Manage network tickets using Remedy, HP NAS (Opsware), EMC SMARTs, Cisco ACS, Cisco WCS, Citrix Netscaler, Juniper portal applications. Correct issues with LAN/WAN routers, switches, WAPs, and miscellaneous devices utilizing the Hospital and vendor networks. Troubleshooting of VLANs, SVI, BVI, QOS, and frame tagging on any type of Switch or Router. Extensive Troubleshooting of routing and routed protocols. Performed WAN connectivity for Internet/Intranet. Changed Cisco Router protocols to set up protocols for exterior/interior routers (RIP, OSPF, and BGP).

Network Engineer (Remote Support) 10/2009 – 1/2010

Santa Rosa Consulting for the client – IPASS

Network support for mainly small businesses. This would be WAN, routers, etc. The TAC Engineer position was a remote (WAN access) support environment which required interaction with the Customer Helpdesk or endpoint location for troubleshooting customer issues. It required a thorough knowledge of broadband connections (DSL and Cable) and either Enterprise or SOHO connectivity. Network administration experience was heavily utilized.

Cisco Network Engineer/Consultant OI&T – IRM 6/2009- 9/2009

Veterans Administration –– Vision Technologies Contractor

Tennessee Valley Health System (TVHS VISN9 – Region 3) Nashville Facility

Provide Cisco network operations experience and guidance resolving design and implementation issues. Assist subject matter experts, management, and customers on any network related issue that might encountered on the enterprise network. Install, configure, and support Fluke Netflow V. 9 traffic trending solution, Remediate SSH/TACACS on routers and switches as required. Upgrade all Cisco devices to proper IOS code levels. Backup IOS. Document VLANs and LAN/WAN IPs. Correct issues with LAN/WAN router, switch, WAPs, and miscellaneous devices utilizing the Hospital network. Administrate issues with Port Security. Provide guidance on wireless using Net Stumbler and wireless devices. Experience with Video Conferencing equipment (Tandberg and Polycom) and troubleshooting video conferencing protocols (i.e H.323). Provided engineering and support for their security and network infrastructure in areas of allowable security access for network equipment /users and security hardening for IOS vulnerability and access (created documentation and security docs).

Network Team (DNOC Network Engineer/Analyst) 12/2007- 5/2009

Deloitte Network Operations Center (DNOC) – Deloitte Services, LLP

Network operations experience resolving any network related issue that might encountered on the enterprise network. Knowledge of Vendor and ISP operating and escalation procedures. Experience with diverse CPE such as: Routers, Switches, & CSU/DSUs, Cisco WAPs (RADIUS - Autonomous and LWAP in a Cisco WCS environment). Specifically: Configuration and troubleshooting Cisco and Nortel Switches and Routers. Working knowledge of the following; TDM, BGP/MPLS, OSPF, Frame Relay, ATM, IP, VPN. Required understanding and experience with layer 3 IP routing and VPN tunneling. Install, configure, and troubleshoot Cisco switches (2900, 3500, 4500, and 6500 series) and routers (various). Configure and troubleshoot for multiple office VLANs and trunks (802.1Q). Experience with Video Conferencing equipment (Polycom) and troubleshooting video conferencing protocols. Experience with local/remote physical layer testing standards for DS0s, DS1s, DS3, and physical layer transports. Troubleshooting of VLANs, SVI, BVI, QOS, and frame tagging on any type of Switch or Router. Extensive Troubleshooting of routing and routed protocols. Performed WAN connectivity for Internet/Intranet. Changed Cisco Router protocols to set up protocols for exterior/interior routers (RIP, OSPF, and BGP). Experience troubleshooting layer 1 xDSL problems with Carriers and/or ILECs. Experience with AIX Unix (Tivoli server) and Redhat Linux (Jabber server). Experience with an industry standard ticketing and monitoring system such as CA Service Desk, Microsoft MOM and SCOM tools.

Network Technician 11/2007- 12/2007

Pomeroy IT services, (for their client Tractor Supply)

Remotely managing and deploying software to wireless network devices in Tractor Supply’s Store network. Knowledge of Vendor and ISP operating and escalation procedures.

Implementation (Field) Network Engineer/Technician 1/2007- 10/2007

Total Solutions Group (TSG)

Bank of New York (Bank of New York Mellon) – PING Contract Tennessee Processing Center (TPC)

Installation, configuration, and troubleshooting of Bank of New York (TPC) Cisco routers & switches. Network graphical design/layout (using Visio) and documentation of infrastructure and facilities, rack and stack, configuration, analysis, LAN/WAN assessment, and remediation of remote and local Cisco equipment. Install, configure, and troubleshoot Cisco switches (2900, 3500, 4500, and 6500 series) and routers (various).

Implementation Coordinator/Technical Analyst (Field Network Engineer/Technician) 9/2005- 12/2006

HCA - Hospital Corporation of America

Department: Information Technology & Services (IT&S) Division – Technical Refresh Project

Installation of HCA Cisco routers & switches (4500 and 6509 or 6513 and various routers), network graphical design/layout and documentation of HCA medical facilities (40 hospitals in 16 states), configuration, analysis, LAN/WAN assessment, and remediation of remote and local hospital and

medical centers. Travel extensively (once or more per week) performing network integration/implementations. Install, configure, and troubleshoot Cisco switches (2900, 3500, 4500, and 6500 series) and routers (various).

Network Technician 3 - Department: Network Operations 3/2005- 9/2005

WebMD – EMDEON (Envoy/Healtheon) Willis Building – Command Center (NOC)

Troubleshoot Frame Relay, SNA (SNA2), X.25, SNA LU 6.2, and point-to-point circuits. Provide circuit status, troubleshooting, and monitoring for Cisco Core Routers (72XX and others). Monitoring Stratus, Data General AOS/VS, HPUX, AIX, and Solaris platforms. Monitoring BMC Patrol and Patrol Central Applications (SNMP information). Whats Up Gold and monitoring Racal CMS management system. Monitor DCE/DTE Matrix Switch and Datascope. Environment OS experience: HPUX OS.

Test Engineer (Network Engineer) 2/2004- 2/2005

Kineticom (subcontract for Trueposition ‘s Clients of Cingular and TMobile)

Administered SCOUT and EMS, WLG, Location Gateways, Service Mobile Location Gateways ( SMLC ), clients and servers for Cingular at Nashville, TN; Louisville, KY; Knoxville, TN; Raleigh, NC; Atlanta, GA (on Sun Blade / Netra / SunFire ) hardware. Assist field Cellular technicians with troubleshoot Nortel S8000 Base Station (BTS), Siemens, and Ericsson TDMA / GSM and PCS equipment. Developed spreadsheets and Access database for rapid understanding of realtime data reports (for local market use). Configured, Tested, Deployed Cellular / PCS / TDMA / GSM Gateway Processing units (LMUs are similar to PCs) interacting with Enterprise Solaris Servers (WLGs and SMLCs) with Oracle Database to Integrated XML application (SCOUT and EMS). Troubleshoot TCP/IP. Interacted with Celluar Deployment Techs, Switch Engineers and Drive Test Technicians to install 1500 (approximately) cell sites (LMUs) in states of TN, KY, NC, and GA.

Provided Engineering Reports, Spreadsheets, Databases and Statistics to Cingular and TruePosition for PSAP and 911 complience with FCC consent decree concerning Cingular and Tmobile. Performed Solaris scripting and Enterprise Systems administration skillset (Korn, csh, Bourne, and bash), UNIX Shell, PERL, and SQL scripting. Performed many Solaris (Unix) administration functions and technical documentation. Assisted Field teams with verifying survey information for cellsite / LMU data. Configured and Troubleshot Cisco / Router Switch Equipment on WAN / LAN connections.

Network Engineer 9/2003- 1/2004

Intellimark (subcontract for SBC-Southwestern Bell for EDS’ client -Bank of America and Integra Bank)

Upgraded Cisco routers, re-configured routers from CLI to upgraded IOS. Upgraded and re-configured router interface and IOS.

Network Engineer 11/2003-12/2003

Elite IT Corp. subcontract for Emageon (Medical Radiology Integrator)

Install, configure, and troubleshoot IBM Linux Server and configure Switch and cabling. Teleradiology/PACS (Picture Archiving and Communication System) experience: Installed new medical software server at St. Thomas Imaging Center (Smyrna Physician’s Building) which was Oracle Database on IBM Server running Linux. (System would send digital pictures of x-rays across Internet, receive medical information from medical equip and working with proprietary medical application. Which would store medical info on Oracle database.

Technical Services Engineer (Network Engineer) 6/2001-9/2003

Datatec Systems, Inc. (company based in Alpharetta, GA (Regional Center) and Fairfield, N.J.-Headquarters) Companies that was Datatec clients - State of Tennessee, Bellsouth, Best Buy, Cisco, EDS, AT&T, Lowes, Montana-Dakota Utilities, Farmers Insurance, Bank One, Wachovia, Home Depot, Lowes Hardware. Installed, Configured and Performed Troubleshooting on Cisco Routers and Switches. Performed LAN/WAN Surveys and WAN equipment inventories (State of TN, Home Depot, Bank One projects). Installed Customer Software. Installed Computers, SNA Host/Terminals, and Web Terminals (Thin Clients). Performed Troubleshooting analysis on T1 and DS0 (and CSU/DSU), ISDN,

and dialup circuits. Interacted with Telephony and Data providers. Performed WAN connectivity for Internet/Intranet. Changed Cisco Router protocols to set up protocols for exterior/interior routers (RIP, OSPF, and BGP). Utilized wireless device experience when installing wireless communication device at retail store (mobile PCs on carts) to transfer information from cart to network. Installed and Configured Cisco Aironet Equipment. Network migration: Re-engineered old network to new network for better data communication. Interacted with Help Desks. Installed and configured data cable, FDDI, and serial

physical hardware.

Systems Network Management Integration Professional (Network Engineer) 1996 - 2001

IBM

Installed, Configured, and Maintained TCP/IP & SNA/Frame Relay over IP networks. Installed & configured Cisco Routers.

Managed and engineered enterprise client platforms. Engineered, recommended, implemented SNA, Cisco, FRAME, LAN/WAN architectures and networks. Maintained service level agreements (SLA). Controlled investigating of root cause analysis (RCA). Reconfigured IBM WAN for local site using Cisco 3COM and IBM equipment. Performed project management and routine systems engineering work on Enterprise platforms. Installed, Configured, Maintained Linux/AIX/NT Servers, Gateways, Cisco Routers, Switches, Hubs. Implemented an enterprise gateway from the mainframe to the Internet/intranet. Assisted in implementing the infrastructure for an enterprise network for the entire IBM Corporation –Atlas (Tomcat) project. Used Network Analysis (Sniffer and Fluke LAN Analyzer) with PentaScanner for troubleshooting. Set up and maintained VLAN equipment. Added users to existing VLAN as well as creating VLAN(s)

Used Microsoft Project software to track tasks and projects. Managed platform in Brentwood. Tracked project tasks and company. Frame relay migration project- had to do capacity planning project. Performed extensive documentation surveys (Brentwood).

Computer Network Engineer (CE for IBM – TSS) 1995 – 1996

IBM

Repaired laptops for clients and internal customers. Developed primary enterprise escalation support for IBM Customer Engineer PET/2 system. Provided troubleshooting and problem determination for enterprise technician network.

Electronic Technician (Contract) 1993 - 1994

Packard Bell, Memphis, TN

Repaired and refurbished OEM electronics. Acknowledged as top technician due to engineering knowledge base.

Federal Aviation Administration, U. S. Department of Transportation 1990 to 1993

Memphis, Tennessee

Assisted Civil Engineers with airport projects. Made design changes. Assisted with project flow.

Assisted in developing interoffice information system. Contributed to large Environmental Impact Statements and Environmental Assessments for Cincinnati and Memphis.

EDUCATION

Tennessee State University - studied Electrical Engineering/Computer Science.

University of Memphis - continued Electrical Engineering and Computer Science studies.

Tennessee State University - Studied Information Technology

Contact this candidate