Experience

Clarium Managed Services

• Sr Network Security Engineer

  • Jun 2019 - Present

  Miami/Fort Lauderdale Area Strong knowledge of security design, concepts and technologies in Identity & Access Management (IAM), Network and End-point Protection, Application Security, Data Protection, Security Incident & Event Monitoring (SIEM), Threat & Vulnerability Management (TVM), and Incident Response. BGP routing configuration to Verizon Internet Service Provider



Aqua America

• United States
• 1 - 100 Employee

• Sr. Network Security Engineer

  • Oct 2017 - Jun 2019

  Bryan Mawr, PA Lead consultant for the IT/OT network integration to secure the industrial control system with Palo Alto firewalls in over 700 location in Pennsylvania and North Carolina. Plan, design, & implementation, enterprise network security posture to mitigate the overall cybersecurity risk of the organization. • Prevent successful cyber attacks against ICS SCADA, DNP3, & ModbusTCP industrial system. • Perform information security audits and vulnerability assessments on the network… Show more Lead consultant for the IT/OT network integration to secure the industrial control system with Palo Alto firewalls in over 700 location in Pennsylvania and North Carolina. Plan, design, & implementation, enterprise network security posture to mitigate the overall cybersecurity risk of the organization. • Prevent successful cyber attacks against ICS SCADA, DNP3, & ModbusTCP industrial system. • Perform information security audits and vulnerability assessments on the network devices. • Seamlessly Integrate IT and OT network infrastructure utilizing defense in depth. • Install and configure VM-series firewall in Microsoft Azure Marketplace. • Create CIS Benchmark for all Palo Alto Firewall security compliance policy for OT network. • Install and configure Palo Alto Firewall PA-5260 HA mode in the data center. • Configure App-ID, User-ID, Content-ID, URL filtering, server profiles and security policies. • Identify and remediate Threats & Vulnerability Management in the environment. • Configure BGP routing on the edge firewall to the Verizon cloud. • Configure Global Protect, Portals, Gateways and IPsec VPN tunnels. • Implement LSVPN for all satellite sites with Global Protect Gateways. • Deploy Panorama M-100 appliance version 8.0 to manage 1000 firewalls. • Configure log forwarding to Security Information and Event Management (SIEM). • Utilize command and control to monitor network activity, threat activity and tunnel activity. Show less



University Of Tampa

• United States
• Higher Education
• 700 & Above Employee

• Sr. Network Engineer

  • Aug 2015 - Oct 2017

  Tampa/St. Petersburg, Florida Area My responsibilities are to provide network Infrastructure design & implementation at the University. • Team Lead and Subject Matter Expert for enterprise network design and implementation. • Design and implement University Enterprise wired and wireless network infrastructure. • Implement VRF lite to segment ResNet, AdminNet and Wireless instances in the 6513 Core. • Upgrade University Core 6513E Catalyst Switch, in VSS mode for high availability. • Upgrade University Distribution… Show more My responsibilities are to provide network Infrastructure design & implementation at the University. • Team Lead and Subject Matter Expert for enterprise network design and implementation. • Design and implement University Enterprise wired and wireless network infrastructure. • Implement VRF lite to segment ResNet, AdminNet and Wireless instances in the 6513 Core. • Upgrade University Core 6513E Catalyst Switch, in VSS mode for high availability. • Upgrade University Distribution 4506 Catalyst switch, and access layer switch. • Support 6506E ResNet Core, 6509E Wireless Core and 3560 stack switches. • Routing protocol supported on the network are BGP and OSPF multi-area. • Perform a switch refresh for over 165 Catalyst 3850 POE switch. • Setup and configure Cisco ACS to provide authentication AAA, Radius, and TACACS. • Setup and install Cisco Wireless LAN Controller 8510 in HA mode. • Install and configure 650 Lightweight Access Point CAP 2602 and 2702. • Install and configure Cisco Prime to manage Wireless AP. • Administer and support 510 Xirrus wireless Access Point. • Administer and support Palo Alto 5050 firewall in HA mode. • Setup threat prevention, URL filtering, global protect, and WF-500 Wildfire. • PAN OS security administration, SSL decryption, User-ID, Content-ID, App-ID and Panorama. Show less



AE Business Solutions

• Information Technology & Services
• 100 - 200 Employee

• Network Security Solutions Engineer

  • Nov 2014 - Jul 2015

  Madison, Wisconsin Area My responsibilities are to provide network and security solutions for our customers. • Act as Subject Matter Expert and technical lead for customer proposals & BOM. • Plan, design and implement LAN/WAN using Cisco / Juniper technologies, L2 & L3 switching. • Setup, Configure and troubleshoot Cisco IOS 3750, 3850,4500, 6809, and 6513E • Install and configure the Nexus OS 7K, 5K and 2K with fabric extender. • Implement Cisco ASA Firewall 5510 and 5520 and CX/FirePower Series… Show more My responsibilities are to provide network and security solutions for our customers. • Act as Subject Matter Expert and technical lead for customer proposals & BOM. • Plan, design and implement LAN/WAN using Cisco / Juniper technologies, L2 & L3 switching. • Setup, Configure and troubleshoot Cisco IOS 3750, 3850,4500, 6809, and 6513E • Install and configure the Nexus OS 7K, 5K and 2K with fabric extender. • Implement Cisco ASA Firewall 5510 and 5520 and CX/FirePower Series Security Appliance. • Configure EIGRP, OSPF, BGP, VPN, DMVPN, HSRP, VRF, VSS, VRRP, MPLS and GLBP. • Setup connectivity to ISP utilizing Adtran network Router. • Provide authentication AAA, Radius, TACACS+, 2-factor/OTP. • Setup 5508 Wireless LAN Controller & Aironet AP in the factory for a total of 1.2 million sq. ft. • Configure Juniper Virtual Chassis, EX3300, EX4200, EX9200 and SRX series gateway. • Configure Aruba Wireless Access Point, CAP, RAP and IAP 205 & 225. • Configure Aruba Wireless Controller 7200 and ClearPass integration with Active Directory. • Configure Aruba ClearPass Policy Manager for Mobility network: On-boarding & guest access. • Configure Check Point Firewall to secure the DMZ network. • Configure Palo Alto Next Generation firewall PA-3050 and PA-5020 with global protect. • Setup threat prevention, URL filtering, global protect, and WF-500 Wildfire. • PAN OS security administration, SSL decryption, User-ID, Content-ID, App-ID and Panorama. • Install and configure the MPLS network with BGP routing protocol. • Network Operation Support and datacenter management. • Support and maintenance of Microsoft Active Directory services. • Provide network documentation and training to other engineers. Show less



Protera Technologies

• United States
• 1 - 100 Employee

• SR. Network Engineer

  • Apr 2013 - Nov 2014

  • Plan, design and implement LAN/WAN using Cisco technologies, L2 switch, 3560, 3750, & 6500. • Configure and troubleshoot Cisco 1800, 1900, 2800, 3800, 3900 and 4400 ISR routers. • Implement Cisco ASA 5505, 5510 and 5520 Series Security Appliance. • Setup and configure Dynamic Multi-Point VPN tunnel and Remote Access network. • Integrate Cisco ACS server with Microsoft Active Directory for RADIUS and TACACS Plus. • Implement Wireless network in the factory for a total of… Show more • Plan, design and implement LAN/WAN using Cisco technologies, L2 switch, 3560, 3750, & 6500. • Configure and troubleshoot Cisco 1800, 1900, 2800, 3800, 3900 and 4400 ISR routers. • Implement Cisco ASA 5505, 5510 and 5520 Series Security Appliance. • Setup and configure Dynamic Multi-Point VPN tunnel and Remote Access network. • Integrate Cisco ACS server with Microsoft Active Directory for RADIUS and TACACS Plus. • Implement Wireless network in the factory for a total of 1.2 million square foot. • Setup and configure Palo Alto Next Generation Firewall PAN OS 6.0 • Design and Implement an IPSec VPN between remote locations. • Install and maintain the MPLS network in all remote locations and configure BGP Protocol. • Monitor network traffic using Solarwinds NPM, VNQM and NCM. • Network Operation Support and datacenter management. • Manage the IBM SAN storage VMware and HyperV Infrastructure. • Provide network documentation and training to other engineers. • DataCenter management and cloud hosting; SAAS, PAAS, IAAS Show less



Joerns Healthcare

• United States
• Medical Equipment Manufacturing
• 500 - 600 Employee

• Sr. Network Engineer

  • May 2008 - Apr 2013

  Wisconsin / Texas / UK / Mexico ● Plan design and implement Joerns Microsoft Active Directory infrastructure. ● Upgrade an Exchange 2003 messaging infrastructure to Exchange 2007 environment. ● Setup and Configure SCCM/SCOM ● Perform daily support of Active Directory infrastructure management, including FSMO roles and global catalog server. Support and manage the IBM SAN storage. ● Upgrade the VMware ESXI host and the Vcenter server. ● Setup and configure Dynamic Multi-Point VPN tunnel and Remote… Show more ● Plan design and implement Joerns Microsoft Active Directory infrastructure. ● Upgrade an Exchange 2003 messaging infrastructure to Exchange 2007 environment. ● Setup and Configure SCCM/SCOM ● Perform daily support of Active Directory infrastructure management, including FSMO roles and global catalog server. Support and manage the IBM SAN storage. ● Upgrade the VMware ESXI host and the Vcenter server. ● Setup and configure Dynamic Multi-Point VPN tunnel and Remote Access network. ● Integrate Cisco ACS server with Microsoft Active Directory for RADIUS and TACACS Plus. ● Implement Wireless network in the factory for a total of 1.2 million square foot. ● Design and Implement an IPSec VPN between remote locations. ● Install and maintain the MPLS network in all remote locations and configure BGP Protocol. ● Monitor network traffic using Solarwinds NPM, VNQM and NCM. ● Configuring site-to-site VPN using PIX and ASAs ● Configure Cisco VPN 3000 Concentrator for VPN clients ● Design and implement security policies using Cisco firewall appliances Show less


Madison Area Technical College
• United States
• Higher Education
• 700 & Above Employee
• Technology Instructor (Part time)

  • Jul 2008 - Feb 2011


Spectrum Brands

• 1 - 100 Employee

• Wireless Network Engineer

  • Jan 2007 - May 2008

  Madison, Wisconsin Area ● Primary contact and decision maker for all wireless network related issues including design and implementation of network infrastructure. ● Primary contacts for all network troubleshooting issues and problem resolution. ● Interact with vendors to determine product specification and compliance. ● Configure, and troubleshoot large network environments with IP SUBNETTING. (128 Locations) ● Maintain the backbone network infrastructure, setup Routing and Remote access, Cisco… Show more ● Primary contact and decision maker for all wireless network related issues including design and implementation of network infrastructure. ● Primary contacts for all network troubleshooting issues and problem resolution. ● Interact with vendors to determine product specification and compliance. ● Configure, and troubleshoot large network environments with IP SUBNETTING. (128 Locations) ● Maintain the backbone network infrastructure, setup Routing and Remote access, Cisco Virtual Private Network and DSL cable modem. ● Configure Wireless security PEAP, LEAP, using Cisco ACS for Windows. Show less



Bedrock Consulting

• Accounting
• 1 - 100 Employee

• Network Consultant

  • May 2005 - Jun 2007

  Bedrock Consulting Services, - New Page Wisconsin Rapids ● Plan and design an Active Directory migration of 38 domains in the multiple forest and 44 thousand users in the organization. ● Upgrade an Exchange 2003 messaging infrastructure to Exchange 2007 environment. ● Plan design and upgrade an SMS 2003 infrastructure to SCCM 2007. ● Setup and configure primary site to report to the Central site database. ● Configure Operating System Deployment (OSD), software… Show more Bedrock Consulting Services, - New Page Wisconsin Rapids ● Plan and design an Active Directory migration of 38 domains in the multiple forest and 44 thousand users in the organization. ● Upgrade an Exchange 2003 messaging infrastructure to Exchange 2007 environment. ● Plan design and upgrade an SMS 2003 infrastructure to SCCM 2007. ● Setup and configure primary site to report to the Central site database. ● Configure Operating System Deployment (OSD), software deployment, hardware inventory, patch management, software metering and remote control. ● Introduce the Microsoft Deployment Toolkit (MDT 2008) to build and deploy images using Lite touch installation. ● All 36 SMS secondary site servers were configured in mixed mode, and later upgrade to native mode to take advantage of the native mode security and Internet based clients. ● Install and configure ESX server 3.0 and virtual Center 2.5 Show less



Invensys Building Systems

• Construction
• 1 - 100 Employee

• Sr. Network Engineer

  • Mar 2001 - Jun 2005

  Loves Park, IL Experience with Cisco router & switches running CAT OS and IOS version 12 & up. • Performed daily maintenance of the servers in the datacenter, upgrade anti-virus software, service packs and patches. • Planned design and install wireless network, Cisco 2100 series Wireless LAN controllers, Cisco Aironet 11000 and 1200 series, setup EAP, 802.1x and TACACS. • Effective team building and coordinating skills. Took the Myers Briggs team-building workshop in 2005. • Planned and design… Show more Experience with Cisco router & switches running CAT OS and IOS version 12 & up. • Performed daily maintenance of the servers in the datacenter, upgrade anti-virus software, service packs and patches. • Planned design and install wireless network, Cisco 2100 series Wireless LAN controllers, Cisco Aironet 11000 and 1200 series, setup EAP, 802.1x and TACACS. • Effective team building and coordinating skills. Took the Myers Briggs team-building workshop in 2005. • Planned and design network security for our customer datacenter environment. • Determine security threats, different network attacks and counter measures. • Configure Cisco ACS 3.3 for Windows, PIX firewall, NAT, VPN concentrator. • Routing Protocols – RIP v2, OSPF, IGRP, & EIGRP. Show less


Microsoft Corporation
• United States
• Systems Engineer

  • May 1998 - Jun 2002