Henderson, Nevada, United States
Senior IT Architect/Engineer with a strong background in networking with increasing responsibility maintaining, deploying, and designing cybersecurity solutions. Recently focusing on using automation to increase standardization, and security while reducing manpower requirements, and time to deployment of new devices, and services.
• Wrote and tested Ansible playbooks to automate the build and configuration of network services, routers, switches, and firewalls. • Developed python script to automatically populate Ansible inventories from Netbox as a source of truth for devices, IPs, and interface configuration of network equipment. • Technical lead in tech refresh of security monitoring stack including new IDS, log collectors, packet brokers, and network flow analyzers. covering multiple sites. • Work with engineers and the Security Operations Center to identify gaps in security tools, and propose solutions to leadership for approval and then implement the solutions. • Member of the incident response team as a network subject matter expert. • Document standards and best practices to expand a new data center to support colocation of equipment by external customers. • Supply management, and customers with written weekly project updates and daily status meetings. • Coordinate professional services contracts for projects. Writing statement of work, tracking hours, and work completed.
• Worked with a team to design and implement a new office, and data center in an existing building. Including all backbone, and horizontal cabling, installation, and configuration of all network equipment. • Automated health monitoring using BASH and SNMP to identify interesting values, and create checks in Nagios. Examples include OSPF and BGP neighbor status, link status of critical interfaces, bandwidth utilization, and temperature. • Wrote scripts to automate repetitive operational and security tasks. Examples include baseline testing and SNMPv3 username/password changes on all network devices. • Led team that migrated the network from a layer 2 network design to layer 3 design to support multi-vendor configurations (Arista, Juniper, and Cisco). • Assisted the Security Operations Center as a subject matter expert on placing of network sensors to best monitor enterprise network. • Successfully completed an external security audit with minimal findings. • Managed team of six engineers tasked with maintaining multiple network infrastructures
• Assisted with the design and deployment of multiple nationwide networks in support of operations • Planed, and performed network upgrades to support a tenfold increase in network traffic • Work with security engineers on design and deployment of network monitoring equipment • Deployed a route server to allow for a central location to propagate black hole routes to all edge routers using BGP • Designed, and deployed email sanitization and malware detection gateway. • Support incident response team as a network subject matter expert during cybersecurity investigations • Work as part of project teams with security and systems engineers as a network subject matter expert
• Maintained multiple networks to support day to day operations • Maintained five independent network infrastructures to support concurrent training events. • Modified training networks to support customer requirements • Built test lab for testing configuration changes, and patches prior to deployment to live networks • Lead a ten-member team responsible for 24x7 operations