Resume

Senior Security Engineer | Senior Network & Systems Engineer | Application Developer

A success driven Master Internet Engineer with demonstrated success in the design, development, and deployment of all facets of Internet technologies from multiple vendors. Over 13 years experience producing results and guaranteeing customer satisfaction. In depth knowledge of major operating systems to ensure the security and reliability of critical and sensitive infrastructures. Possesses a true passion for computational science that fuels the study and pursuit of emerging technologies.

Technical Expertise

  • Systems (OS)
  • Linux (Redhat/CentOS, Debian/Ubuntu, Gentoo), Solaris, Windows 2000, XP, and 2003
  • Networking
  • BGP, OSPF, RIP, VLAN, STP, MPLS, Ethernet, ATM (PNNI,LANE), Frame Relay, T1/E1, T3, OC-3, DDS, DACS, VOIP (SIP/H.323/IAX), VPN (IPsec, L2TP, PPTP, SSH, SSL)
  • Services
  • HTTPD (Apache, IIS), DNS (Named), LDAP (OpenLDAP), MySQL, Postgres, Asterisk, SAMBA, NFS
  • Languages
  • C/C++, Java, PHP, Perl, Javascript, HTML, CSS
  • Hardware
  • Cisco, Nortel, HP, 3Com, Foundry, Dell, Compaq, EMC
  • Software
  • Snort, Nessus, BackTrack, Helix, Encase, Wireshark/Ethereal, Nagios, Cacti/MRTG, Veritas, Navisphere, VMware (VI3/ESX, Workstation 6, Player), Drupal, Wordpress

Professional Experience

Hillsborough Community College, Tampa, Florida

Major metropolitan community college with 5 campuses through Hillsborough county supporting over 25,000 students. The HCC network is extensive, with devices deployed to all corners of Hillsborough county in over 30 buildings. There are approximately 250 network devices connecting more than 3500 servers and workstations.

  • Security and Integration Engineer
  • April 2007 - Present

Conducts penetration testing and vulnerability assessments of college systems. Performs forensic investigations of suspect computer. Researches system vulnerabilities and develops build configurations that systems administrators use to harden Linux and Windows systems. Leader of Computer Emergency Response Team (CERT) for College. Authorizes and implements all policy and configuration changes to security devices. Provides engineering and management expertise for various groups within the Office of Information Technology. Develops solutions to integrate various systems utilized by the college. Senior expert for all Linux based systems.

Accomplishments:

  • Designed and deployed security monitoring systems utilizing Snort, Nessus, and Labrea Tarpit, allowing the rapid identification and isolation of rogue systems on the HCC network.
  • Deployed central management and security solution to support enterprise wide wireless network, which created a service to allow HCC students wireless Internet access from any campus.
  • Integrated ThreatSTOP Zero-Day Blacklist service with Cisco ASA and Pix Firewalls which reduced overhead on the systems providing SPAM filtering. This also created a 24 x 7 virtual Security Engineer by providing near real time blacklist feeds against emerging threats. Also authored the utility that ThreatSTOP customer’s use to update Cisco firewalls.
  • Installed VMware environment to provide flexible environment for the development and testing of new solutions.
  • Wrote scripts to grant and remove local administrator privileges to domain users when they log on and off workstations that enacted college’s executive policy and enhanced the end user experience.
  • Created DLL used by Active Directory servers to push user account changes to ADAM server providing an automated process for provisioning accounts and reducing the time to complete account generations.
  • Network Manager
  • October 2005 – April 2007

Engineered and implemented a variety of network equipment including switches, routers, and wireless access points. Supervised assigned staff regarding the troubleshooting of technical problems, network maintenance and scheduled repair of complex hardware and software, computer interfaces to network equipment and wide-area network links. Maintained LDAP servers which provide authentication services for all college business systems. Managed vendor contracts and ensured vendor compliance with network initiatives. Developed scripts and utilities to support network infrastructure.

Accomplishments:

  • Wrote PHP user management portal to allow end users to change and reset their LDAP passwords therefore significantly reducing the call volume to the Help Desk.
  • Conceived and executed a solution to maintain TDM services for voice and video after the migration of the WAN from ATM to Metro Ethernet WAN using Rad’s TDM over IP (TDMoIP) product line and QOS, which saved the college thousands of dollars by eliminating the need to immediately upgrade all 6 Nortel Option 61C switches to VOIP.
  • Designed and installed new cabling solution for data center to improve reliability and manageability of the cabling plant.
  • Replaced local based authentication on network devices with centralized TACACS+ server in order to track individual engineer access and accountability on network devices.
  • Implemented Syslog Server and Performance Metric monitoring using Syslog-ng and Cacti that allowed Server and Network Teams to identify bottlenecks and configuration errors.

Breach Security, Inc., Carlsbad, California

Provider of Adaptive Learning Web Application Firewalls, SSL decryption devices for network monitoring, home of the Apache Mod_Security module and appliances.

  • Systems Engineer
  • August 2004 – October 2005

Provided pre and post sales customer support of product line, including BreachGate WebDefend, BreachView SSL, and BreachGate Sitegrity. Authored a variety of documents in support of products, including Customer Acceptance Testing, Quick Start Guides, and How-To Guides on port-mirroring and VLAN setup. Developed tools and scripts for customers to help with product management, including automation of signing and content publish to websites for Sitegrity product. Created Bill of Materials, Production Process, and QA testing to produce products utilizing a new hardware platform. Ran inventory control and production of new products. Setup hosting environment for company’s Internet presence. Managed all IT needs for US office in support of highly mobile executive and sales teams.

Accomplishments:

  • Replaced Vonage VOIP solution with Asterisk and Polycom SIP phones in order to increase office personnel productivity by expanding the available features, including inter-office dialing, conference calling, IVR, and auto attendant.
  • Wrote web based license key generator for BreachView SSL to allow sales personnel to rapidly generate demo keys for sales leads.
  • Deployed Polycom Video Conference solution between US HQ and Israel Development office, significantly reducing travel cost between sites.

Codescout Technologies, San Diego, California

Personal consulting company providing professional services to several companies in the San Diego area including Vivendi Universal Net USA Tech (MP3.Com), American Digital Network, Anthony Robbins Companies, Robert Half Technologies, and ByrneIT.

  • Independent Consultant
  • April 2002 – August 2004

Managed production and development servers running Linux, Solaris, OS X 10, and Windows NT/2000. Designed and implemented a variety of network security solutions, providing border security and encrypted connectivity between multiple offices. Configured and maintained server applications such as Apache, IIS, MySQL, PHP, Perl/CGI. Developed various applications and scripts to support customer’s products and services. Coordinated major data center relocations on very short time lines. Supported e-commerce platforms for several high profile clients including Dr. Phil, CNBC, Oprah Winfrey, Denise Richards, Rush Limbaugh, Tony Hawk (RampLogic), and Tamilee Webb. Taught engineering personnel advanced firewall and systems management procedures.

Accomplishments:

  • Installed E-1 Internet connection, fiber optic and wireless networks to offer business services to Date with Destiny conference participants at Namale Resort, Fiji Islands, which resulted in an 20% increase in event attendance.
  • Designed and provisioned network upgrade for Anthony Robbins Companies corporate network using Inverse Multiplexing over ATM (IMA) concentrators that bonded multiple T1 circuits and used QOS to guarantee bandwidth for video conferencing. This significantly reduced travel between offices.
  • Wrote monitoring tool that identified machines infected with Blaster and Welchiai, reported back to SysAdmin IRC channel with client and switch information then gave engineer option to disable port. This significantly reduced the time needed to sanitize the network against the outbreak.
  • Completed rapid deployment of on-line stores for Oprah’s Book Club Boutique On-Line store and Rush Limbaugh’s EIB Store, allowing clients to get their products quickly to their audience and generate high volume sales.

American Digital Network Corp., San Diego, California

Regional ISP providing hosting, co-location, mail, DNS, broadband, and dial-up connectivity to over 15,000 customers. ADNC was the first ISP of its size to offer fully digital Internet access in Southern California.

  • Director of Network Operations
  • March 1997 – April 2002

Managed daily operations of regional ISP providing mail, DNS, web hosting, broadband, and dial-up services to over 15,000 customers utilizing various technologies and protocols including, ATM (PNNI & LANE), Ethernet (VLANS, STP), and all varieties of WAN connectivity. Designed and developed a variety of internal tools, products, and customer solutions, including e-commerce shopping cart product, firewall platform, customer knowledge base, and a web based provisioning interface for load balanced NT hosting servers. Authored a multitude of PERL and WSH scripts used to automate administrative task on Solaris, Linux, NT servers, and Wireless Network. Installed first Nortel Gigabit Ethernet Layer 3 switched network in San Diego for Raytheon Systems. Coordinated and deployed an interstate frame relay network utilizing circuits from US West, Sprint, and SBC across 3 states for the Salvation Army. Setup BGP peering relationships with tier 1 Internet providers using multiple ASNs on multiple Cisco 7513 routers. Completed migration of over 200 DSL customers to SBC without any major outages when Northpoint and Rhythms collapsed. Lead team of 10 engineers and technicians supporting 20,000 sq. ft data center.

Accomplishments:

  • Managed the completion of integration projects that supported over $500,000 per month in sales.
  • Accumulated over 500 hours of experience configuring and maintaining network equipment from various vendors, including Cisco, Nortel, 3Com, Motorola, Netopia, Flowpoint, and Eastern Research.
  • Converted customer T-1 circuits from individual copper circuits to DS-1 channels within channelized DS-3 circuits, reducing the monthly cost of each circuit.
  • Integrated voice and data connection between Los Angeles and New York City using Micom routers which resulted in a savings of over $5000 in monthly recurring charges for the customer.

United States Navy, Seal Beach, California

The Naval Arm of the United States Military with over 200 years of honor and tradition.

  • Computer Specialist (GS-11)
  • August 1994 – March 1997

Civilian employee providing support for all secure and non-secure Netware systems within the Naval Warfare Operations Center. Responsible for resolving all cross platform issues with clients concurrently accessing Microsoft NT, Banyan Vines, and Novell Netware platforms.

Accomplishments:

  • Completed integration of Banyan Vines Street Talk directory for use with NT environment.
  • Installed secure LAN for the processing of secret information.
  • First Class Petty Office (E-6)
  • April 1987 - August 1994

Active Duty Non-Commissioned Officer stationed aboard U.S.S. Francis Hammond (FF-1067) and Naval Weapons Station Seal Beach, CA. Lead various teams of enlisted personnel. Received numerous awards including the Navy Achievement Medal, Good Conduct Medal, and Combat Action Ribbon. Veteran of Operation Desert Storm.

Accomplishments:

  • Completed Certified Netware Engineer qualification.

Education and Certifications

  • Currently attending Florida State University as a Junior majoring in Software Engineering (Distance Learning Program)
  • Associate in Arts, St Petersburg College, Magna Cum Laude, May 2007
  • Certified Information Systems Security Professional (CISSP), March 2007