Engineer Manager
Resume:
Objective:
An accomplished Information Technology Professional with a total of 10 years of diverse experience that is project driven with exceptional problem-solving abilities and communication skills. I have the ability to learn at an exceptional rate and the capacity to set a fast pace while demonstrating initiative, determination, stamina and self-discipline. Creative problem solver committed to adding value in any role while maximizing system efficiency and improving business processes. All achieved by my ambitious ability to supersede my own knowledge by constantly pursuing and demonstrating my Jack of All Trades mentality.
Education Certifications
Colorado Technical University Aug 2005- Aug 2009 CCNA: Cisco Certified Network Associate
CCNP: Cisco Certified Network Professional
Bachelor of Science in Software Engineering MCITP: Microsoft Certified Systems Engineer 2008 Server
Concentration in Network Security, Network VCP: VMware Certified Professional
Management F5 Networks: Essentials /Advanced
Levels of Experience
Technology Platform Years
Microsoft Server 2003, 2008, Exchange Server 2003, 2007, 2010, Active Directory, Group Policy SQL Server 2000, 2005, 2008, ETC 10
Cisco 3500, 4500, 6500, Nexus 7000 Series, Cisco 1000v VMware, PIX/ASA, Vlans, layer 3 routing, VPN 7
VMware ESX, ESXi, VDI, VCB,Vsphere 4 5.5
SAN EMC Clarion, Equilogic, Datacore, Lefthand – Software based, appliance based, fiber, and ethernet 5
Checkpoint Security R60-R71, VPN, smartcenter, smartconsole, IPS, IDS 4
TOP Layer IDS, IPS Layer 2 appliance 2
RSA SecurID SecurID Platform, Dual Factor Authentication, 3
F5 BigIP BigIP 1500, 3400, 6400 8900 LTM, GTM 5
Continuing Education and Training
Multiple Technical Conferences ( Microsoft TechNet, VMworld, VMware ESX Servers Management, Virtual Center, Ongoing VMware webcast training, and updates.)
Technical Proficiency & Experience
Systems/Platforms: Windows environment (95/98/2000/XP/2003 Server), UNIX, LINUX (SCO, Red Hat 9.0), Novel, Mac 9/Tiger,Cisco IOS, VMware
Hardware: LAN/WAN, Cisco switches, Cisco Routers, Cisco PIX/ASA firewall, Checkpoint UTM 500 Appliance, Checkpoint UTM R61, SonicWall Firewalls, Juniper Firewalls, Astaro Security Gateway,HP, Dell, Cisco series servers, UPS power distribution and management, VOIP, all levels of RAID configuration, HP Autoloader, Backup devices, NAS Device, SAS, SAN Technology and Deployment (EMC, Clarion, SAN Symphony, LeftHand, Open Source, MySan), Network Troubleshooting tools (toners, scanners, crimpers), F5 Networks BigIP Load Balancer, HP Procurves, 3COM managed switches, Quantum backup chassis, Tumbleweed antispam, Barracuda Antispam, F5 3DNS Load balancer GTM
Network Medium: Fiber Optics, T-1, RG-59/RG-6 coaxial patching, 10GB Copper and Fiber , shielded and unshielded twisted solid or stranded CAT3/CAT5e/CAT6 patching, managing and production, modular RJ11/RJ45 termination, testing and documentation
Software: VOIP Unity Software, IIS, Microsoft Office, Microsoft Exchange Server 2000/2003/2007, MySQL, SQL Server 2005, Class Software Solutions,, NetSupport Manager, Symantec Ghost Corporate Enterprise Edition, VERITAS Backup Exec 9 and up to 11d, Trend Micro Protection, Altiris client management, WebSense filtering, SMS, VMware, Virtual Center, Virtual Consolidated Backup, ESX Server, ESXi, Virtual Appliances, SAN Melody, Equilogic, Xtender Email Archive, Solarwinds, IP monitor, Proactive monitoring, Active Directory, Domain management, Checkpoint UTM R61, Datacore SanMelody, Infoblox IPAM
Environment: APC Environmental systems, Server and datacenter ambient, relative humidity, temperature, anti-static management,
Programming Languages: XHTML, HTML, Java, UNIX Shell scripting (C, Bourne, Bourne Again, Korn), Visual Basic, C++, windows scripting
Protocols: TCP/IP, NFS, TELNET, FTP, DNS, DHCP, NAT, HTTP, SMTP, POP, IMAP SSH, SSL, OSPF, BGP, EIGRP, IPSEC,
VOIP, WINS, VPN, Group Policy Objects, Understanding of OSI Model and its applications
Personal Training and Testing
I have a fully dedicated lab consisting of vIRTUAL F5 BIG IP Load Balancers, 6 ESX Servers (HP Proliants, Dell PowerEdge, and IBM hardware) with over 12 Virtual Machines all connected to an enterprise backbone of Cisco 6509 chassis, 144 Port/GE/POE, HP Procurve switches, Cisco Routers, Wireless Aironet AP's, Veritas Backup,Zmanda Open Source Backup, Multiple Security gateways (Cisco PIX, ASA, Junpiper, Checkpoint UTM R61, FreeBSD – Vyatta, Endian, PFsense Untangle and other virtual appliances, Linux based) connected to local storage, SAN, NAS, utilizing Virtual Consolidated Backup running on multiple VLANs on Layer2 and . This allows me to continually test new and existing technologies in an enterprise network environment. Also using Zenoss and Solarwinds network monitoring tools to manage the entire infrastructure. For Communications, I have implemented and configured Cisco VOIP Call manager Express on a Virtual Linux server with SIP technology allowing me to create VLANS for voice, data, servers, and etc to segment my networks. I am personally utilizing Exchange Server 2007 in an Active Directory environment with a Virtual Spam appliance all in a Virtual environment using ESX servers and backup for the last 4 years.
Professional References
Name Company Position Contact
Scott Hazdra Canopy Financial Chief Security Officer 630-***-****
Demmie Quinones Canopy Finanical Lead Senior Programing Architect 773-***-****
Todd Rearden Canopy Financial VP of Product Development 630-***-****
Kevin Sanabrais Elk Grove Park District Director of IT O:847-***-****
Tom Baran Custom Group, Inc President C: 312-***-****
Chuck Trongnetpanya Northbrook Park District IT Director C:630-***-****
Mark Sprague OfficePerfect President/Ceo M: 510-***-****
Mindy Munn Naperville Park District Finance Director O: 630-***-****
Leo Delatorre Guardian Financial Mortgage Owner C: 630-***-****
Jeff Grossberg Skysite Property Owner O:312-***-****
Rob Wysocki Naperville Park District IT Director O: 630-***-****
Gary C. Schellerer Jr. Signs by Tomorrow Vice President O: 630-***-****
Raphael Davis F5 Networks F5 Senior Consultant C: 773-***-****
Jason Van Norman Zurich Financial Services GITO Network Manager C: 954-***-****
Working Experience
Computer Science Corporation - Zurich Insurance/Farmers Insurance Lead Load Balancing / Network Engineer– February 2011 – Current
• Lead consultant to assist in the Design, configuration and migration of Zurich Insurance Datacenter consisting of all North America sites to new Colo center in Chicago, IL and Reston, Virginia Disaster recovery site. With Production and Non-Production Environments
o Assist and maintain MPLS, OC3, 6500 switches, 14 Cisco ASA 5580 active/standby firewalls, Internal multiple contexts, trunk interfaces, Checkpoint Nokia Firewalls, Nexus 7000/5000/2000 layer 2/3 switches for the core, Backend/Frontend in HSRP
o Multiple VLANS, VPC’s, VDC’s for different accounts and clients.
o Recommending, Provisioning, configuration, migrations, upgrades of F5 BigIP LTM 3400, 6400, 8900 running v4.x to 10.2.x, Active/Standby, F5 4000 Enterprise Manager, advanced bigpipe and TMSH command line experience (preferred over gui)
o Working with Vsphere 4.1, 5.0.x, ESX, virtualization, Linux OS, Windows OS, or Wintel systems - Assist in troubleshooting applications for Load balancing
o Migrating applications, websites, citrix services using, SNAT Pools, Automap, iRules, SSL, custom TCP profiles
o Troubleshooting application issues via HTTP traces, HTTPWATCH, routes, DNS, SNAT, TIME_WAIT, TCP 3-Way Handshake, ephemeral port collisions -(port exhaustion) asynchronous routing, member nodes with different networks and gateways that are not the F5 self IPs.
o IP Addressing, sub netting and management for 3000+ server farms, appliances, hosts, switching, routing, Load Balancing, firewalls, contexts, VDC’s in Primary and Failover sites.
o Future Provisioning of F5 GTM's for Data Centers.
o Utilizing tools like TCPDUMP, Wireshark, HTTPWATCH, Packet Tracers, NMAP, analyzing TCP, and SSL Handshakes
o Assist in Redesign to accommodate PCI compliancy and multiple Tier infrastructure.
HRDI – Human Resource Development Institute – December 2010 – January 2011
• Organization was experiencing routing, and connection issues at remote facilities, unable to access resources over the MPLS or other sites. After Firewall implementation and VOIP upgrades was the stated issue.
• Contracted to troubleshoot infrastructure of latencies unavailable resources, consisting of Cisco ASA firewalls, Cisco switches, Cisco VOIP, MPLS, Microsoft Active Directory, DNS, DHCP, NetBIOS, ARP and traffic flow for remote sites and main Datacenter at Corporate
o Went over the entire infrastructure and architecture with IT directors and engineers
Cisco Switches, layer 3, layer2, vlans, routing, DNS servers, DHCP servers, Subnets, Windows Servers 2003 and 2008 Active Directory, WINS
o Recommend redesign of Cisco ASA’s, NAT, and traversing traffic, DNS and DHCP configurations with active directory
o Isolated issues and corrected traffic flow and connection issues.
EMC Corporation / Publicis Groupe (USA Location) – August 2010 – November 2010 (Chicago, IL)
• Lead Consultant for Data Center move and migration to a New Colo.
o Main objective is to assist the infrastructure team consisting of Network, application, server, storage and security to provide a transition map that will allow all teams to implement and migrate the entire USA core site to a new location, while providing progressive movement so that EMC consultants and their staff can successfully deploy their Storage Solution to the new Colo site.
Tasks include gathering technical information from the application team to identify their applications, hostnames, service ports, IP addresses, destination communication, nature of the application, Server Operating system, Web server platform (IIS, Apache, etc) database communication.
Compile all information needed to present to the network team a Transition policy with all corresponding data and information relevant to the new core site. EX: Source, Destination, IP address, service ports, policies, BigIP F5 applications, SSL certificates.
• Migration from HP storage platform to EMC VMAX (80+Terabytes Data)
• Utilizing tools like TCPDUMP, Wireshark, HTTPWATCH, Packet Tracers, NMAP, analyzing TCP, and SSL Handshakes
• Implementing road map for network/application/server/storage team so that proper change over takes place
• Infrastructure:
o 400+ Servers in Chicago Colo alone (1000+ globally-(Microsoft, Linux) Physical and Virtual (10%/90%)
o P2V, physical to physical, V2V, different RDM storage, VMDK’s, LUN’s
o SQL Server 2005, 2007 Database servers
o VMware ESX 3.5 to 4.0 Host clusters
o BigIP F5 Load balancers (cluster) DMZ
o EMC VMAX storage solution
o Networking - Cisco Nexus 7000, 3700, 3600 switches, Routers
o Configuration s related to design
o Checkpoint Firewalls for Core and DMZ infrastructure
o Migration of over 600 rules and policies, clean up and zones
o MPLS Cloud for remote sites
• IP Address Management deployment from Spreadsheets
o Infoblox IPAM virtual appliance
Presented organization with Infoblox IPAM instead of previous IPAM solution used for production
Payflex – May 2010 – December 2010 (remote work after hours until 1st week of Dec (Chicago, IL, Omaha, Nebraska)
• Provision, and implement dual factor authentication utilizing RSA SecureID
• Deployed F5 Edge Gateways for SSL remote Access load balancing and integration with RSA SecurID. Created templates, SSL profiles, Acces profiles, Network Access ACL’s.
• Integrated Cisco/Juniper SSL appliances for Dual factor Authentication
• designed dual factor using Active Directory, RADIUS for VPN, Windows, Linux
• Help transition in building new infrastructure utilizing VMware, AD, 2008 Server, cisco nexus 7000
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Migration of over 300+ servers in a single location P2V, physical to physical, V2V, different RDM storage, VMDK’s, LUN’s
Signs by Tomorrow – Consultant August 2009 – November 2010 (overlapping contracts) (Bloomingdale, IL Glendale Hts, IL
Redesigned entire infrastructure
• Migrated over from old Domain on 2003 server to New Domain on 2008
• Designed Virtualization Infrastructure consisting of over multiple ESX servers, clustered, with a clustered SAN, NIC teaming, Fiber Channel.
• Rebuilt and migrated old Exchange server that was not functional to Exchange 2007
• Kept all mailboxes, contacts, calendars etc
• Configuring IIS on Windows 2008 Server
• Implemented a edge Cisco Firewall firewall with DMZ and VPN 3DES encryption, Remote VPN access
• moved over all public facing servers such as Web servers, Spam filter(Barracuda) FTP to DMZ
• Designed and revamped entire network for multiple VLAN's for voice, data, iSCSI, servers, video, virtualization
• Re-mapped entire Private IP addressing from1 class C 192.168.1.x to 10.x.x.x class C with multiple vlans
• Implement VMware virtualization to migrate physical to Virtual - Exchange running in Virtual Platform
• Designed SAN iSCSi solution for entire storage requirements, file, datastore, databases of over 67 terabytes utilized across multi platform systems and Virtual Servers P2V migrations of all Physical servers
• VPN site to site with multiple domain controllers in replication and redundancy.
• Network uptime and stability increased to 99.97% and internal bandwidth and speeds increased by over 90% on the internal network.
Northern Trust Financial - March 2010 - May 2010 BigIP F5 Contract Chicago, IL
• Assisted with Datacenter migration to new Colocations
• Created, deployed and managed BigIP F5 load balancer nodes and pools
• Managed 10+ BigIP F5 clusters
• Migrated over 500 Virtual IP's to new clusters
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters.
Devry University - Senior Network/Systems Engineer - January 2010 - March 2010 Contract (Oakbrook, IL)
• Assisting with Devry's $65 million project
• Primary Datacenter migration to Colocation
• Assisting with Delta Project which consisted of the entire Revamp of Devry's Main Student and teacher portal
• Turn-up and provision, secondary, passive Datacenter across MPLS
• Installs, configures, supports, optimizes, and administers
• Juniper Firewalls - ISG1000, SSG350, all Clustered via Juniper's NSM (Network Security Manager)
• Checkpoint Firewall, Cisco routing, and switching
• F5 Big- IP LTM-6400 load balancers, all Clustered, 3DNS GTM Balancers, Active and Secondary Datacenter's, working with IIS 6 and up for migration
• Implements network standards, processes, and security policies for all Devry Locations, and remote offices
• Provides support and maintains communication to campuses and business units for IT related support
• Assist in the move of the corporate headquarters, and primary DATA Center
• Installed configured CiscoWorks, Wireless controllers, RADIUS, and assisted with other technology migrations involved.
Canopy Financial – Lead Senior Network Engineer May 2009 – Dec 2009 (Chicago, IL)
Primary Role: Redesigned and architected new Infrastructure with DR for improved network stability, performance and for PCI Compliance
5 Geographical Sites
• 2 Datacenters (Active, Active redundant Sites)
o 300+ Servers (physical, Virtual)
• 3 remote Office locations
o 2 offices with 50+ Server Testing infrastructure Environment /per location
Security Infrastructure:
• Re-Designed and implemented perimeter Security
• Migrated 3Com X506 Firewalls, 300+ websites, 30+ VPN tunnels with 99.8% uptime
o Checkpoint FW-1 VPN
Tested and implemented solution for possible migration from current infrastructure
Configured in Testing environment for Pre- Production testing
Configured VPN, Site to Site, Remote access, ACL’s, Custom Groups, DMZ
o Juniper SSG550 Firewall’s in Redundant Active/Passive Failover
VPN concentration
Web Traffic for over 300 Websites
Configured with F5 Load balancers in Failover for Load balancing and SSL handling
o Cisco ASA 5520 Firewalls in Redundant Active/Passive Failover
Configured over and managed over 60 IPsec Site to Site Tunnels with ACL
• Public NAT IPsec Tunnels
Remote Access VPN tunnel with over 40 custom ACL’s*/*
o Top Layer IDS/IPS Security appliance
Implemented Failover redundant IDS/IPS layer 2 devices
Configured and tuned for internal and External networks
Mitigated Primary Production Database servers for packet processing
Packet monitoring and analyzing for intrusion prevention
o F5 Networks load balancers LTM and GTM 3DNS
Designed in conjunction with DMZ and Database segregation
Over 300 virtual servers load balanced across a Virtual Server environment
SSL, iRules, monitoring nodes, services.
SNAT/NAT configuring
Dynamic routing OSPF, Static routes
o RSA SecurID – PCI compliance
Failover Primary and Secondary appliances
Dual Factor Authentication
• Software Tokens
• Hardware tokens
• Dual Factor for Server authentication and VPN Termination tied to Cisco ASA
• RADIUS for Windows 2003, 2008 Servers
Network Infrastructure:
• Re-designed network switching, routing from a Class B network to Class C with over 40+ VLANs
o DMZ for over 300+ Webservers
o OSPF, BGP routing static routes, inter-vlan routing
o Configured DS3 connection for Failover Active site with BGP
o Custom ACL’s within layer 3 routing switches to segment network traffic
• Cisco Nexus 7000 series with Dual Supervisors/ Cisco 3750, 4500, 6500 series
o Core switching
o Distribution
o Access
o Fiber Switches
o VLAN trunking, Routing, inter-vlan
o Brocade switches, Fiber Channeling, LACP, PACP
• 3Com Core switches, X506 Firewalls
• Cisco 2800 Series routers DS3 link for card processing
• Adtran routers for DS3 to banks and Card processing Redundancy
Systems/Server Infrastructure: Windows Active Directory 2003, 2008 Server, 2005, 2008 SQL Cluster
• ESX 3.5 and Vsphere 4
o Over 350+ total Virtual Servers
• 100+ physical servers
• Solarwinds Monitoring and configuration systems/applications/services
• RSA SecurID
• EMC Avamar Systems Backup
• EMC Clarion SAN, Equilogic, iSCSI, Luns, Fiber Channel
• Exchange Server 2007
o Migrated from hosting to internal infrastructure
o Configuration, design, implementation, manage
• Windows Server 2003, 2008, Linux Red Hat
• Symantec Enterprise
• IP monitor Network monitoring
• SQL 2005, 2008 Server
• EMC Clarion CX4
• Equilogic SAN
Naperville Park District - Senior Network Engineer May 2006- June 2008 (Naperville, IL)
Network Routing and Switch Focus
• 6 Site Infrastructure upgrade and migration
• Migrated Netscreen Firewall to Checkpoint R61 UTM-1
o DMZ segments
o NAT/Port Forwarding/IDS, IPS
o Services
o VPN configurations
o Creating/Migrating Policies
o Troubleshoot and maintain entire network security infrastructure
• Architect and design network infrastructure
• BGP, OSPF, static Routing, DNS, DHCP,WINS,
• Advanced switching (Cisco switch configuration and setup)
• Migrated entire organization 3COM Switching to stackable and chassis based Cisco Switching with layer 2/3 configurations with Core, Distribution and Access switches for redundant links and failover
• Cisco Wireless Aironet installation and deployment to 5 remote sites for point to point links
• Redundant and Failover techniques
• Designed and Implemented Virtual Server Farm for Web site load balancing with F5 Networks Load Balancer in DMZ architecture
• Cisco VOIP experience – Call manager, Vlans, QOS, Pre-deployment
o Involved with 2 medium business in VOIP changeover from Centrex, and pbx systems
200+ phones
Virtual Infrastructures:
• VMware installation and configuration
• P2V of over 50 servers in less than 48 hour window.
• Created ESX Server test environment and planning
• Designed the performance process for disaster recovery to utilize virtualization
• Disaster Recovery through use of virtualization utilizing Virtual Consolidated Backup
• Migration from physical to virtual servers
• VMware Server 1.x, VMware 2.0 VMware converter, VMware ESX server
Network Security:
• Understanding of firewall and security protocols and standards
• Firewall migration and deployment
• Sonicwall, Cisco PIX, ASA, Juniper Netscreen, and Checkpoint FW-1, Checkpoint UTM-1 R61 deployment and configuration, migration
• DMZ configuration and vlans
Novel Netware 6.x
• Only maintenance of users and passwords
• Permissions
• Basic troubleshooting only
• Minimal experience – about 11 months on a daily basis
SQL Database and Server
• Migrated, and moved over 10 different databases for 8 different applications using SQL Server 7 to SQL Server 2005 on a HP DL585 Server
• Provisioned all servers and built them in a cluster for the main online registration program
Lead engineer 250 user deployment of Exchange 2007 from Exchange 2003 Enterprise from Novel GroupWise migration
o Parallel deployment using GroupWise/exchange bridge
o Configured ISA Server for Outlook Web Access in a DMZ
o Maintain and administered all Email routing, SMTP, Anti-Spam
o Over 1 TB of mail migration
o Custom Script build for calendar& contact migration
o Later also migrated from Exchange 2003 Enterprise to Exchange 2007 with no downtime
• 400 user Novel to Active Directory architecture and deployment
o GPO
o DHCP,DNS
o DFS
• Migration of 10 server web farm to on premise deployment – Previously outsourced
o F5 Load Balancer Deployment
o Multiple Physical and Virtual Server Deployments
o DS3 Router Configuration and Bandwidth Throttling
• Citrix Deployment – 2nd Team Lead
o In a team environment, Installed, integrated a 3 server farm utilizing load balancer in Multi VLAN Network
o Redesign Citrix Architecture
o Deployment of all key apps through Citrix
Contact this candidate