Network & Security Engineer with 15+ Years Experience
Resume:
Michael Nellis
*** **** ***, *** *****, NY *****
631-***-**** ️ **********@*****.*** www.linkedin.com/in/mnellis
NETWORK & SECURITY ENGINEER
Experienced Network and Security Engineer with 15+ years of expertise designing, implementing, and securing enterprise network infrastructures across on-premise and cloud environments. Proven ability to manage large-scale routing, switching, firewall security, and cloud networking solutions. Strong background in disaster recovery, network optimization, and cross-functional collaboration.
TECHNICAL SKILLS
Operating Systems:
Windows Server 2000/2003/2008/2012
Networking Hardware:
Cisco Routers (2900, 3600, 3725, 3745)
Cisco Catalyst & Nexus Switches (3750, 3560 PoE), Nexus 5000 & 9000
Firewalls & Security:
Cisco ASA 5525 (IOS 8.2/9.1), Fortinet FortiGate, Palo Alto, Cisco ISE, Cisco Any connect VPN, Web Application Firewalls
Wireless:
Cisco Aironet 1200 Series, Motorola WJ500 Controllers
Routing & Switching:
EIGRP, OSPF, BGP (eBGP/iBGP), RIPv2, VRF
VLANs, STP/RSTP, EtherChannel, HSRP, VRRP, GLBP, 802.1Q
VPN & Connectivity:
MPLS, GRE, Site-to-Site VPN, Remote Access VPN
Cloud & Load Balancing:
Microsoft Azure, Cloudflare, Citrix NetScaler, F5
Monitoring & Tools:
SolarWinds NPM, Security Event Manager, Grafana, Wireshark, Visio
Security Tools:
CrowdStrike, Tenable, McAfee ePO
EDUCATION & CERTIFICATIONS
Bachelor of Science, Information Systems
State University of New York – Empire State College, 2006
Business Administration
Nassau Community College, 1991
Certifications:
CCNA CCNP MCSE CompTIA Security+
PROFESSIONAL EXPERIENCE
Resideo – Melville, NY
Network & Security Engineer
Feb 2018 – Present
Manage Citrix NetScaler load balancers and certificate lifecycle (SSL/TLS, cipher suites, key validation).
Maintain and upgrade core network infrastructure including Cisco ASR routers and Nexus/Catalyst switches.
Configure and support routing protocols (EIGRP, BGP) across data centers and disaster recovery sites.
Lead disaster recovery network buildouts, ensuring redundancy and business continuity
Monitor performance and outages using SolarWinds and Grafana, improving network visibility and uptime.
Independently administered and troubleshot enterprise FortiGate (physical and VM) and Palo Alto next-generation firewalls across both cloud and on-premises environments, managing NAT/PAT configurations, firewall policy enforcement, IPSec/SSL VPN tunnels, IPS/threat prevention, URL filtering, and Zero Trust access controls.
Managed and maintained enterprise IP address space across 3 sites using SolarWinds IPAM, overseeing subnet allocation, VLAN assignment, and DNS/DHCP integration for 50,000+ IP addresses with zero address conflicts.
Optimized global traffic routing and DNS management using Cloudflare across 100M–1B monthly requests, administering authoritative DNS records, implementing Load Balancing, CDN caching, WAF security rules, and Zero Trust Access to maximize uptime and reliability for mission-critical applications.
Maintained hybrid Azure connectivity across East and Central US regions for 50–100 VNets, managing on-premises ExpressRoute circuits and Site-to-Site VPN termination points while administering VNET ACLs, NSGs, Azure Firewall policies, and Route Tables/UDRs to enforce network segmentation and traffic control.
Teva Pharmaceuticals – Copiague, NY
Network Engineer
Mar 2008 – Feb 2018
Maintained and supported enterprise network infrastructure across lab, manufacturing, and packaging environments
Administered Microsoft core services: Active Directory, DNS, DHCP, GPO, and file permissions
Managed site backups, failover systems, and disaster recovery procedures
Configured and supported routers, switches, and MPLS-connected edge networks
Monitored and maintained wireless infrastructure, IP telephony, printers, and mobile devices
Managed firewall rules, site-to-site VPNs, and remote user access
Participated in change control processes as a technical advisor for system upgrades
Created and maintained network diagrams, IP schemes, and operational documentation
Built and deployed Windows servers aligned with corporate standards
Collaborated with vendors to integrate systems into enterprise architecture
Analyzed network traffic to prevent congestion and improve performance
Investors Bank & Trust – New York, NY
Senior Network Engineer
Mar 2001 – Jan 2008
Led and mentored junior engineers and external consultants on infrastructure projects
Migrated legacy systems to Windows Server 2003 and modernized enterprise infrastructure
Designed and implemented Active Directory organizational structure and policies
Built core data center services including DHCP, WINS, print servers, and IP schemes
Installed and configured server hardware/software and managed system lifecycle
Administered backup systems, including tape libraries and recovery operations
Provided LAN/WAN troubleshooting and end-user support
Managed PBX and voicemail systems (adds, moves, changes)
Developed and maintained technical documentation and disaster recovery plans
Created and deployed desktop/laptop images across the organization
Contact this candidate