Network Engineer Cyber Security

Location:

Quincy, MA

Posted:

August 22, 2023

Contact this candidate

Resume:

Michael Christopher Meyer

** ******* ******

Quincy, MA 02169-1901

Phone: 617-***-****

*************@*****.***

https://www.linkedin.com/in/MCMeyer/

Cybersecurity architect with several years’ experience governance, compliance, strategy, policies, procedures, planning, designing, configuring, implementing, reporting, and fine-tuning Cloud networks, WAN, MAN, and LANs. Previous experience troubleshooting, monitoring, managing, testing, network operations center, client support, customer support, help desk, and sales engineering. Proven ability to define requirements, analyze business process, and make recommendations. Coordinates and troubleshoots all aspects of network functionality including performance, efficiency, speed, redundancy and resiliency. Communicate effectively with clients and vendors for project management.

skills

System Platforms: Microsoft Azure, AWS, GCP, Cisco Systems, Juniper Networks, Linux, Dell Networking

Hardware: Cisco ASA firewall, Palo Alto firewall, CheckPoint firewall, Juniper VPN, Juniper Netscreen, Netscout probes, sniffers, packet analyzers, BlueCoat proxy, Cisco routers and switches, F5 BigIP load balancers.

LAN Technologies: Gigabit Ethernet, Power over Ethernet, VLAN, ATM, 802.11 WLAN, FDDI, STP

WAN Technologies: MPLS, T3, Frame Relay, ATM, HDLC, PPP, HSSI

Network Protocols: TCP/IP

Routing Protocols: BGP, OSPF, EIGRP, IS-IS

Applications

Security, VPN, firewall, UNIX, Microsoft Visio, WireShark, Splunk, Tenable.io, CheckMarx, SonarQube, Netsparker, SolarWinds, SNMP, Nagios, MRTG, Cacti, IBM Tivoli NetView, Netcool, HP OpenView, Cisco Works for Switched Internetworks, What's Up Gold, Enterasys NetSight, Network Instruments Observer, Internetworking, Enterprise, Telecommunications, BlueCat DDI, Infoblox DDI, DNS, DHCP, IPAM, bind, gated.

Consulting Positions

1/2022-5/2023

Cybersecurity Engineer GRSi/NIH/NHLBI

Provided expertise in the development and implementation of robust security practices within Cloud environments. This included the development of a defined strategy to achieve the desired “to-be” state of cybersecurity within the multi-Cloud infrastructure by conducting in-depth “as is” assessments and providing recommendations to enhance security posture. Provided the necessary technical knowledge to effectively implement container and Kubernetes security best practices in operations. The technical environment includes Jenkins, Kubernetes, OpenShift, and other automation tools with deployment to hybrid Azure, AWS, GCP, and on-prem platforms.

Provided leadership in developing innovative service capabilities for Azure Cloud and in managing Azure capability projects. Delivered solutions using Agile methodologies. Monitored and reported to management on current and projected tasks.

Collaborated with business stakeholders and senior leaders to deliver on complex, enterprise-level initiatives that are a part of the company's overall strategic direction.

Recommended solutions using cloud services. Research into, and implementation of, new Azure tools to improve efficiency, performance, and cost-effectiveness.

Recommended end-to-end security ensuring best practices and ensuring the best practices are being used.

Working knowledge of supporting IT infrastructure technologies and standards including software & hardware life cycle, system configuration policies, security, hardening, High Availability, Disaster Recovery, etc.

Experienced with the planning, configuration, optimization, and deployment of Microsoft Azure solutions (IaaS, PaaS, VMs, AD, Automation, Monitor, Backup/recovery, etc.).

Developed expertise with browser security controls, application security standards such as OWASP ASVS/Top 10, CWE Top 25, and vulnerability handling and scoring with CVSS.

Provided understanding and knowledge of firewalls, VPNs, and remote access to servers, based on different user roles and access requirements. Take on board upgrading, installing, and configuring monitoring solutions for Azure for Windows and Linux servers. Recognize automation tools such as Chef, Jenkins, Git, or similar tools.

6/2021-8/2021

Cyber Security Architect Consultant Saint Luke’s University Health Network

Senior firewall engineer consultant. Troubleshooting security issues, CheckPoint Software firewall configurations in Microsoft Azure cloud network and on premise datacenter. Collaborated with security team members.

Check Point Firewall system design, implementation, and configuration.

Microsoft Azure cybersecurity design, implementation, and support

Maintain LAN, WAN and server architecture

Install network security devices

Evaluate firewall policy and administration and the logging of this analysis

Test systems for vulnerabilities in hardware and software

To maintain VPNs, firewalls, email security, and web protocols

To create and maintain virus detection systems

To maintain web proxies and enterprise email

To create access controls to the datacenter settings

To produce design documentation for ad hoc access requests

3/2020-6/2021

Cyber Security Architect Consultant GRC National Grid

Security Technology Consultant served as a security lead/visionary and acted as an expert in many areas of security, describing in business terms the impact of security policies, standards, technology standards and architecture on the business. Provided security direction to the program/project(s) based on the business requirements and focus areas (Enterprise, CNI and Operational Technology). Interpreted high level business requirements and communicated them to highly technical security engineers; conversely, articulated highly technical issues to a non-technical business audience. Provided security requirements and ensured that the delivered solution was fit for purpose and effective when transitioned into service. Identified security services to be integrated into the overall solution and collaborated with the security tower teams to ensure implementation of the services.

Cloud-based security controls (secure web gateway, next gen firewall, cloud access security broker). Designing and managing security controls within service providers and the cloud.

Provided a security service steer to the program, on security related matters.

Formal input to projects during the start-up, requirements, and design stages to ensure that security has been considered and is appropriate.

Provided security related guidance during the build and testing stages of the projects.

Provided technical security input as required by the security policy development team.

Security review and design of complex application and technology architectures.

Coordination of technical design/review activities with various segments within the Security team.

Evaluation and maintenance of systems and procedures to safeguard internal information systems and databases.

Researching and recommendation/implementation of changes to procedures and systems to enhance security aligned with corporate policies

Representing the Security Team ensuring ease of engagement with Security during projects and major programs.

Accountable for ensuring that key risks and issues are identified, addressed and resolved in a manner that satisfies the business.

Accountable for ensuring residual risk is captured and owners are identified and accept the risks.

Continuous view toward standardization and process improvement with a view toward automation where possible.

9/2019-11/2019

Senior Cyber Security Consultant Advizex Rolta

Mass State Lottery client. Recommended specific network management and information assurance technology solutions and communicated results through well-written reports and high-quality briefings to the program office and other technical staff. Provided information systems engineering support for the gaming industry network. Assisted in the design, development, integration, testing and fielding of deployable network management and information assurance systems. Performed hands-on test and evaluation of products, supported analysis and developed network management and information assurance for gaming industry client.

SIEM evaluation, preparation, and collaboration

SolarWinds products for asset management, network discovery, mapping, and monitoring

IP Address Management reorganization planning

Cisco ISE, TACACS, and Active Directory network devices credential access planning.

Logs documentation and organization

5/2018-8/2019

Senior Network Engineer DDI Consultant Dell EMC

Responsible for all layers of the OSI model. Diagnosed complex issues related to network and application problems. Understood large enterprise network and cloud environments. Provided solutions that supported applications of all types (TCP, HTTP, UDP, FTP, etc.) to work on full proxy load balancers. Offered advice, direction, and support to other associates on the team. Articulated customer requirements and explain them to management and other team members.

Principal Duties and Responsibilities:

Built and supported DNS environments that support external and internal DNS name resolution.

Built and supported DNS environments that work with Global Domain registration vendors and ISPs

Built and supported DHCP environments across multiple sites and regions

Partnered with other network and engineering teams to solution load balancing infrastructure for cloud and datacenter environments

Provided L3 operational support for production F5 Network infrastructure: Local Traffic Manager (LTM), Global Traffic Manager (GTM)

Routinely applied broad knowledge of network-related processes and procedures to the completion of complex assignments

Served as a resource to others in the resolution of highly complex problems

Skills:

Experience with BlueCat, Infoblox, and BIND DNS Services Platforms

Advanced knowledge of Domain Name System (DNS), Dynamic Host Configuration Protocol (DHCP), and IP address management (IPAM)

DNS Security (DNSSEC), AWS Route 53, external DNS delegation zones, internal DNS forwarding zones, DKIM, SPF, DMARC, CAA, SRV, MX, TXT, BIMI, TSIG, HIP, SSHFP, and secure email records.

Linux system administration for BIND servers

Experience with F5 Networks BigIP DNS (GTM) and LTM

Experience diagnosing network problems using Wireshark, Fiddler, and other diagnostic tools

Advanced knowledge of network performance, hardware and software

Advanced knowledge of security issues and implications to network solutions

Advanced knowledge of network dynamic routing protocols: Border Gateway Protocol (BGP), Open Shortest Path First (OSPF), Enhanced Interior Gateway Routing Protocol (EIGRP)

Advanced knowledge of network WAN technologies: Multiprotocol Label Switching (MPLS), Virtual Private LAN Service (VPLS), IP SLA (Internet protocol service level agreement)

Advanced knowledge of Cisco Systems Products (routers and switches)

Advanced understanding of TCP/IP Networking including OSI Model

Effective communication skills within and outside team

2/2018-4/2018

Network Engineer Consultant Tufts New England Medical Center

Was responsible for configuring routers and switches (Cisco migrating to Dell), administering the checkpoint firewall environment, as well as deploying/administering/configuring the Aruba wireless environment. Supported a large enterprise environment in one centralized location. Senior level resource as the face of the networking team when it came to design and optimization of the network. Network equipment migration from Cisco equipment to Dell . Collaborative team player, comfortable with working on call, and helping with other server and network related tasks

11/2017-2/2018

Network Engineer Consultant Shutterstock Corporation

Worked with teams to provide detailed designs, guidance, and implementation of various aspects of physical and virtual application migrations.

• Responsible for network changes of a migration solution

• Understood the technical challenges and complexities that exist when migrating sometimes bespoke applications to completely different network infrastructures.

• Identified, understood, and quantified technical risk and advises on strategies to mitigate that risk.

• Ensured appropriate documentation was in place for transition into Operations

• Supported the PM in understanding the technical risks, dependencies and issues that exist, quantified these and the impact that they may had on the migration.

Technical Skills:

· F5 products, including iRule and iControl development

· Knowledge and proficiency in F5 ATM and Security technologies.

· Knowledge in TCP/IP networking and routing, services such as DNS, SMTP, and HTTP, *nix environment, switches, routers and firewalls in enterprise environments.

· Experienced with application level switching and web technologies such as web application firewalls and caching/compression.

· Experienced with WAN optimization technologies.

· Experienced with IPSec and/or SSL VPN technologies.

· Experienced with ZebOS, BIND, SSH daemons/clients, tcpdump, snoop, ethereal and other packet sniffing software or products.

12/2015-4/2017

Principal Network Design Architect Nuance Communications

Experienced Sr. Network Engineer in a Large-scale inter-Network environment. Proven complex network experience in design, administration, implementation, and troubleshooting of network related hardware both layer 2 and layer 3 devices/appliances.

Application Load Balancing with F5 Big-IP and Cisco ACE for external clients and customer facing networks. Migration from Cisco ACE to F5 LTM and DNS (GTM).

Provided analysis and redesign of the network to keep up with the changing needs of the organization. Delivered and collaborated on the design, implementation and support of network core routing, switching infrastructure, Remote Access, B2B VPN, and security services.

Provided tier 3 support and expert trouble resolution using SolarWinds Orion, Wireshark, and proprietary customized tools. Implemented SolarWinds LEM for tracking network changes.

Participated in the design, implementation and maintenance of new network products or services. Recommended enhancements to existing networking systems and infrastructure

Coordinated with remote datacenter contractors, cloud vendors, and internationally located engineers on large-scale network infrastructure projects. MS Azure cloud implementation for foreign clients. Compared benefits and restrictions with AWS owning information.

Documented, implemented and maintained processes and procedures related to network service delivery via standards, policies and procedures. Change control, BOMs, TIDs, Visio network topologies, JIRA tickets, InfoBlox, and SharePoint document reserve.

Maintained accurate records of all maintenance, inventory, and security measures associated with the company’s data network for current support with vendors.

Experience with administration, implementation and troubleshooting of Cisco firewalls and Palo Alto firewalls. Migration from Cisco to Palo Alto firewalls.

VoIP and MPLS configurations using Cisco, Oracle, SBC, and TelcoBridge gateways.

7/2015-10/2015

Network Engineer Consultant Rue La La

Maintain and expand the network of Rue La La’s Production environment, corporate office and cloud environment. Performs tasks associated with IT infrastructure: switches, firewalls, routers, circuits, wiring and servers. Assesses business needs and makes purchasing recommendations for infrastructure equipment. Strong understanding of virtualized environments and their unique networking requirements. Experience with hosting in collocated environments

Experience with cloud based as well as hybrid public/private cloud infrastructures.

Analyzes non-standard technical requests and engineers solutions that meet business needs, adhere to security rules, interoperate well with existing systems, and stay within budget

Assesses and resolves technical issues associated with Cisco switches and routers, VOIP circuits, station cabling, wireless networking, and video conferencing equipment

Monitors and maintains the health, integrity, and performance of the enterprise network using a variety of industry standard tools

Manages hardware upgrades related to network infrastructure

Coordinates site visits with service providers

Writes and maintains technical designs and documentation

Performs project support as coordinator and lead as needed

Comfortable working as part of a larger tech team which includes DBAs, Sys Admins where communications and collaboration are key

Experience configuring and maintaining Palo Alto and Cisco firewalls

Experience supporting the unique requirements of a large retail warehouse

Experience with PCI compliant environments

Willingness to assume additional information “security” related responsibilities beyond what is already generally expected on a network engineer

Experience with various open source monitoring tools such as Nagios, OSSEC, SIEM, OPENMNS

1/2011-6/2015

Network Engineer Consultant Genzyme Corporation

Application Load Balancing with F5 Big-IP LTM, DNS (GTM), Cisco ACE, and Cisco CSS appliances.

Implemented Boston MAN project replacing legacy expensive WAN circuits with inexpensive dark fiber saving company significant telecommunication costs. Project manage medium size network related projects. Demonstrated ability to lead medium to large scale network implementation projects.

Wireless LAN infrastructure with Cisco WCS, WLC, WAPs, and monitoring

Provided tier 3 support and expert trouble resolution using Eye of the Storm, SolarWinds Orion, Wireshark, Cacti, and other tools.

Participated in the design, implementation and maintenance of new network products or services. Recommended enhancements to existing networking systems and infrastructure

Worked with contractors, vendors and other Engineers on medium and large-scale network infrastructure projects.

Maintained accurate records of all maintenance, inventory, and security measures associated with the company’s data network for current support with vendors.

Experience with administration, implementation and troubleshooting of Juniper Firewall and Checkpoint firewalls

Experience with WAN networking technologies; including MPLS, MetroEthernet. Proficiency with BGP and OSPF routing.

Proficiency in best practice network design in medium to large distributed enterprises

Excellent written and oral communications skills, as well as strong interpersonal and communication skills.

Experience working with the Cisco routers and switches such as Nexus series.

Experience with Cisco and Avaya VoIP solutions.

Professional Training

3D Security

Check Point Certified Security Expert R75, Check Point Security Administrator R75, Check Point Firewall, 2011

Enterasys Networks

Dragon Intrusion Defense, Netsight Management, Enterprise Management, Enterprise Routing and Switching, 2009

Cisco

CCNA Boot Camp 2000

Introduction to Cisco Router Configuration

Boston University Corporate Education Center

Unix System Administration certification program, 1998

Education

University of Massachusetts at Boston

Economics Major

Contact this candidate