Senior Network Engineer
Resume:
Senior Network Engineer
******@*******.***
www.linkedin.com/in/paulzoitke
Technical Certifications/Education
CCNP (10939220)
CCNA-CCNA SECURITY-ITIL-MITEL-OSHA-COMPTIA SEC +
COMPTIA A+
S.U.N.Y Farmingdale Associates Applied Sciences (Computer Graphics)
Cont. Bachelor's of Science (Information Technology)
Qualifications Profile
Detail-driven and dedicated network professional with extensive experience as an enterprise network engineer, administrator, and project manager. Extensive skill sets include configuration, network design, infrastructure implementation, network operations, troubleshooting, and documentation. Adept at leading operations while sustaining compliance with standards and regulations within the information technology industry. Armed with excellent organizational, multitasking, and interpersonal skills, complemented by a strong ability to establish relationships with staff and other professionals within the industry. U.S. Secret Clearance (NOT ACTIVE) 8570 and IAT II compliant.
Core Competencies
Network Engineering Complex Network Troubleshooting Network Design Quality Control/Assurance Process Improvement Network Installation and Configuration Program Development Staff Supervision and Development Team Building
Technical Acumen:
ROUTING PROTOCOL CONFIG, DESIGN TROUBLE-SHOOTING AND SUPPORT: OSPF, EIGRP, BGP, MULTI-PROTOCOL BGP, MPLS, ROUTE SUMMARIZATION, ROUTE LEAKING, ROUTE MAPS, BI-DIRECTIONAL FORWARDING DETECTION, PREFEX LISTS, ROUTE FILTERING, PBR, IOS, NX-OS, VRF-LITE, VPC, VSS, VDC, SVI, MULTI-CAST, QOS, HSRP, VRRP, GLBP, IP-SLA, MULTICAST, NAT/PAT, DNS, DHCP, STP/MST/RSTP/PVST+, VLAN, PVLAN, VOIP VLANS, STACKWISE VIRTUAL SWITCHES 9300
NETWORK INFRASTRUCTURE-WAN DESIGN AND SUPPORT: METRO-ETHERNET, CAMPUS, SPINE-LEAF, ACCESS-DISTRO-CORE, COLLAPSED CORE, BRANCH-EDGE, T1/T3, DARK FIBER. NETWORKS POINT-POINT, POINT TO MULTIPOINT, BROADCAST, NON-BROADCAST, SONET, ATM, SOHO.
VOICE: VOIP, CISCO CALL-MANAGER (MAC), MITEL 5000, VOIP HUNT GROUPS, DIAL PATTERNS, BULK REPORTS, SIP TRUNKS, T1 PRI’S.
NETWORK ACCESS/SECURITY: 802.1X, PORT SECURITY, REMOTE VPN (ANYCONNECT), SITE TO SITE VPN, ISE (ADDING DEVICES, GROUP ADDITIONS, AD DOMAIN IMPORTS), CISCO FIREPOWER (4100 SERIES, FMC- FTD- CONFIG, DHCP/DNS, NAT/PAT, ZONE AND POLICY DEPLOYMENT)
WIRELESS: WLC/AP CONFIG AND SUPPORT, 802.11, CAPWAP, FLEX CONNECT, WPA-2-3, ROAMING, 2.4/5.0/6.0 GHZ, SITE SURVEYS (EKAHAU), AP ON A STICK
Professional Experience
American Red Cross
SENIOR NETWORK ENGINEER CONSULTANT June 2024– Apr2025
American RED CROSS Deployment to Florida, North Carolina, California (Shelter, Meals, Emergency Vehicles, emergency supplies, and support)
Deployed and managed SD-WAN solutions to optimize network performance, improve application delivery, and ensure seamless connectivity across multiple disaster recovery sites.
Installed, configured, and maintained network infrastructure (routers, switches, access points) at emergency shelters and mobile command centers.
Provided real-time support for field communication systems, including satellite and cellular failover solutions for disaster relief zones.
Ensured secure, high-availability internet access for operational coordination and public information services during large-scale emergencies.
Collaborated with IT and logistics teams to set up rapid deployment kits and mobile data centers in disaster-affected areas.
General Data Technology
Senior Network Engineer June 2023 - June 2024
Main responsibilities included troubleshooting internal and external OSPF/BGP and MPLS issues for T-Mobiles North American Data Center and Satellite sites.
Responsibilities included working with T-Mobiles ISE for importing AD Domains into ISE
Adding Devices and groups in Cisco ISE
Worked with T-Mobile's Engineers to ensure Network Security using Cisco’s Firepower FMC. Pushing out rule bases to the FTC’s.
Additional responsibilities included upgrading and replacing all T-Mobile Data Centers and Satellite sites to Cisco Nexus N9K-C93180YC-FX3/NEXUS OS
Auditing all current switches (N3K-C3064PQ-10GX) in T-Mobile production environment.
Created all pre-audit Smart Sheets.
Created all audits on existing equipment and documentation.
Created all MOPs and reviewed other engineers' MOPs and audits for secondary verification.
Used Ansible and manual configuration to update IOS to T-Mobile standards.
T-Mobile’s Net-Viewer was used to upload new configurations for T-MOBILE’S change mgmt. group to review and approve.
Set up and trained new engineers to do Audits, SOPs, implementation, and configuration in staging and creating MOPs for our implementation engineers in the field.
V-Group Consultant for the Metropolitan Transportation Authority
Senior Network Engineer Apr 2021-Feb 2023
Beginning phase one of replacing current Avaya and Nortel switches with Cisco 9500 L3 Switches.
Currently working to replace Ruggedcom 900G switches with Cisco 2900 Layer 3 switches.
Implementing Dot1x and Trustsec throughout the 489 subway stations within the 5 boroughs of New York City.
Configured ISE to add AD as a resource.
Adding Network Devices to ISE.
Configured and supported Cisco Firepower for incoming sessions to the Intranet.
Upgrading all current existing Ruggedcom and EtherWan switches to correct a security flaw.
Upgrading and implementing new infrastructure replacing current SONET/ATM transport with COE technology for all of NYC subway networks.
Utilizing HP OpenView for proactive monitoring and trouble-shooting various network devices.
Upgrades of IOS to Cisco 3850 stacked switches, Cisco Nexus 9500’s and Ruggedcom switches.
Monitoring of network devices using Solarwinds, What’s Up Gold and NetScout for Data Center and all subway lines in NYC for the MTA.
Trouble-Shot OSPF and BGP issues within MTA’s subways Core and Metro North infrastructure.
Custom Computer Specialists (HOLTSVILLE, NY)
Senior Network Engineer Nov 2018–Apr 2021
Responsible for overseeing DOE (Dept. Of Education) Refresh of all public schools within the five boroughs for the city of New York.
Responsibilities included onsite management, support and installation of new Wired and Wireless infrastructures.
Equipment installed for this project included new Cisco WAP-AIR-AP3802E for wireless branch communication. AP’s were configured to support Cisco FLEX-Connect. AP’s wired to Cisco dedicated 2960’s. Central communication located at DOE HQ utilizing Cisco 9800 Controllers.
Cisco 6880’s dedicated to support L3 and isolated VRF’s for student access, faculty, facilities, etc.
Metro Ethernet provides redundant high bandwidth communications between schools and DOE HQ as well as VPN connectivity for emergency failover.
Responsibilities also included creating, updating and editing BOM’s, Builds and Visio Network Diagrams.
Pre-configuring of network equipment prior to installation, testing and burn-in.
Data Vision (CANON) (Hauppauge, NY)
Network Engineer June 2016– Oct 2018
Responsibilities included implementation and operational support for Canons North and South American Facilities, Manufacturing, Office and Warehouses using mainly Cisco solutions.
Support for our outside locations included equipment such as Cisco 4500s, 6500s, 951s, 2960s, and ASR 1000s, to name the most common.
Internally at headquarters in our Melville Long Island Data Center, responsibilities included trouble-shooting and support of our infrastructure. This consisted of 7K’s, 5K’s and FEX’s.
Worked with both What’s Up Gold and Solarwinds to help support all external and internal devices as well as graphing Netflow data.
Main project responsibility was coordinating and implementing the removal of outdated Motorola Switches and Desktop Hubs, replacing them with 2960s.
Projects also consisted of migrating our BGP network to a Metro Ethernet solution across Canada and the U.S.
Configuration of multiple sets of equipment to be sent to our remote sites for upgrades or redundancy. Ie, 2960’s, 951’s, 3650’s, etc.
Support of our Wireless LAN solution utilizing the Cisco 5500 comptrollers and Aironet AP’s.
Traces completed using Wireshark.
All Documentation was completed with Visio.
Akorn Pharmaceuticals (Amityville, NY)
Network Engineer Sept 2013– May 2016
Engineering support for entire campus network across Amityville Long Island for Akorn Pharmaceuticals.
Responsible for administration, documentation and database additions for all Akorn Amityville/Copiague sites for PQE adherence.
Worked with FDA administration officials to verify all Amityville/Copiague sites adhere to federal regulations.
Full configuration and testing for new infrastructure at all nine sites at Amityville locations.
Installation of Cisco 2900’s stacked switches at all IDFs across all nine sites including Copiague.
Installation and operational support of Cisco 4500’s, 6500’s VSS.
Support and Configuration of Cisco’s Nexus 7000 series switches including VPC configurations.
Operational support for Akorns BGP WAN infrastructure
Support and troubleshooting for both Akorns IGP protocols OSPF/ EIGRP.
Site surveys and installation of new Aruba 510 series AP’s
Moves, Adds and Changes with DELL Power Connect Switches (8024’s, Trunks, GVRP)
Network Management tools for Infrastructure support utilizing Mindsight and Solarwinds.
Use of Remedy ticketing system for MAC work and change management.
Administration of new IP scopes and DNS through Active Directory.
Administration of Cisco ASA’s VPN/Rule Base changes
Installation of Rack UPS’s, ATS.s, Switches.
ITT EXELIS - Iraq/Afghanistan
Lead Network Engineer Sep 2011–Jun 2013
Promoted to Senior Network Engineer out of Camp Phoenix, Kabul, Afghanistan, supporting all bases in the RCCN.
Supported the Strategic network for the Army’s infrastructure in Afghanistan FOB Sharana 25th Sig. Battalion.
Provide design and troubleshooting of all networks, including the Non-secure Internet Protocol Router (NIPR), Secret Internet Protocol Router (SIPR), and CX-I.
Vlan Administration, Port Security, switch and router administration.
Administer MAC work for Cisco Call Manager for Voice over IP (VoIP) phones for all networks.
Support various equipment, including Cisco switches and routers (2800’s, 3700’s, 3800’s, 4500’s, 6500’s, 2950’s, 3550’s, 3560’s, 3750’s and NEXUS 5000’s).
GD Tac-lane administration.
Accomplish the installation of multiple ACS servers for SIPR/NIPR/CX-I networks allowing Authentication, Authorization and Accounting (AAA) and Terminal Access Controller Access-Control System (TACACS) for secure authentication and authorization.
Configured Brocade switches at the access level. Removed because of interoperability issues with Cisco.
Managed and utilized CA-Spectrum to monitor the capabilities of three enclaves, which allowed timely response to potential problems.
Monitor the utilization of VLAN Membership Policy Server (VMPS) architecture within three networks to ensure secure authentication for network access and prevent cross-domain violations.
Ensure network access across all three networks by using port security, utilizing DOT1X port authentication through the Remote Authentication Dial-In User Service (RADIUS) server.
Oversee the entire Visio diagrams throughout three networks in order to sustain compliance with Defense Information Assurance Certification and Accreditation Process (DIACAP) standards.
Facilitate the installation of new KIWI database for SIPR/NIPR/CX-I to provide backup and configuration uploads and downloads for bulk configuration needs, including the SysLog.
Contact this candidate