Austin, Texas
∙
512.527.4350 djpennin@yahoo.com
SECRET clearance
Objective:
I am currently seeking a challenging growth opportunity utilizing my diverse qualifications to develop innovative secure network and voice solutions in today
’ s multi-protocol, multi-vendor, traditional and converged networks. Expertise in Routing, Switching, Security and Voice.
Professional Experience:
Sr. Network Engineer , Broadway Technology, Austin, TX (current)
•
Responsible for designing, building, implementing and monitoring worldwide 10Gbps financial hosted trading system for some of the worlds largest banks.
•
Advanced design and troubleshooting of BGP, Multicast, STP, MLAG, and Routing on a daily basis. Including redesigning worldwide BGP architecture for sub 900ms convergence
•
Provided immediate complex network resolutions during the daily trading window
(30minutes) as well as complying to a strict change control policy
•
Conducted packet capture and deep packet inspection on a daily basis
•
Performed Windows production server system administration.
•
Maintained a 24/7 on-call status for production network, systems and corporate IT. As well as managed proactive monitoring system for full network and system health.
•
Responsible for corporate network and security including hardening offices with explicit proxy, whitelist, deep packet inspection and policies.
•
Automated production trading server deployment, end user laptop imaging, datacenter switch deployment, and any re-occurring routing, on-boarding or firewall tasks.
•
Managed and maintained Windows Active directory, WSUS and all other corporate IT activities. Truly a jack of all IT trades
Sr. Network and Voice Administrator , Silicon Laboratories, Austin, TX (2 years)
•
Solely responsible for maintaining the worldwide LAN/WAN, and Corporate Voice and
Security infrastructure. Including (13) worldwide sites, 2 datacenters, 2 Cisco Call Manager clusters, 2 Cisco Meeting Place clusters, MPLS infrastructure, DMVPN mesh and
QoS configuration
•
Re-architected the worldwide WAN MPLS including negotiating contracts and enabling seamless dynamic failover to DMVPN as an alternate path. Resulting in $750k savings over 3 years.
•
Re-architected LAN/WAN to enable seamless failover after a circuit outage using BGP,
OSP, EIGRP along with route injection and manipulation using route-maps with metrics and tags.
•
Re-architected Datacenter topology, adding redundancy and 10gig routing and switching core with 6500 VSS, (8) Arista 71xx, and (4) Nexus 55xx devices.
•
Re-architected datacenter and LAN Spanning Tree Topology with PVRST for faster convergence.
•
Designed and implemented a Cisco Meeting Place infrastructure for worldwide audio conferencing to integrate into Cisco Call Manager worldwide clusters.
•
Converted worldwide dial numbering scheme to 6 digit dialing and migrated physical
Cisco Call Manager servers to a virtual environment.
•
Managed and configured F5 and Cisco ACE load balancers and DMZ
’ s.
•
Transitioned corporate voicemail infrastructure from Cisco Unity to Cisco Unity Connections with full Office 365 single-inbox integration
•
Designed and Deployed a NAC system to secure corporate IP Data.
•
Maintained a 24/7 on-call status for all operations.
•
Implemented and maintained multiple proactive monitoring system for all worldwide systems.
•
Documented full network and voice architecture and trained service desk on troubleshooting techniques.
Low Latency Network Engineer , RGM Advisors, Austin, TX (1 year)
•
Responsible for maintaining and growing the financial trading systems network across
US/Europe.
•
Worked on a team of Network Engineers to support all daily trading activities and after hour network and infrastructure changes.
•
Advanced troubleshooting of BGP, Multicast, STP, MLAG, and Routing on a daily basis.
•
Provided immediate complex network resolutions during the daily trading window.
•
Conducted packet capture and deep packet inspection for operations and researchers.
•
Performed Linux system administration.
•
Maintained a 24/7 on-call status for network and trading operations.
•
Implemented network security at all Financial Exchange endpoints.
•
Transitioned systems and Exchanges to 10gig links where possible
•
Tested new low latency hardware and built POC
’ s for operations team
Sr. Network Administrator , Arthrocare, Austin, TX (5 years)
•
Solely responsible for worldwide data and voice network, connecting all remote offices, traveling sales force and manufacturing plants. Including both server side, and user side networks.
•
Maintained a 24/7 on-call status for network and voice operations
•
Standardized network architecture across the corporation at all locations. Re-architected
VLANs, WLAN
’ s and WAN networks. Rolled out Cisco ASA/PIX devices to all locations for remote connectivity and IPSEC VPN full mesh architecture and Remote Access.
•
Implemented transparent dynamic failover/failback routing throughout the network with
BGP, OSPF and secondary backup circuits. Configured QoS prioritization for VOICE and SAP traffic.
•
Audited entire network infrastructure to resolved inconstancies and become SOX/PCI compliant.
•
Documented network architecture and created disaster recovery documents with step-bystep instructions for my team members to use if I was to be absent.
•
Rolled out IPS/IDS network security devices at all edge routing and firewall devices.
Configured them to proactively monitor security threats and take preventative action.
•
Setup and configured SolarWinds, SYSLOG and TRAP server for real-time and proactive notifications and escalated notifications of: failed login attempts, VPN logins and logouts, configuration changes, active IPS blocks/alerts, spanning-tree topology changes, bandwidth abnormalities, malicious network traffic and network device uptime.
•
Setup and configured CACTI network trending application to monitor worldwide latency, bandwidth and voice circuit usage along with notifications of anomalies.
•
Proposed, designed, implemented and solely configured and maintained worldwide Cisco Unified Communication Manager(s) and Unity voicemail systems, to seamlessly inte-
grate with current Nortel PBX system, and seamlessly transition users off of the legacy
PBX system
•
Fully Managed and Maintained: (2) Cisco Unifed Communications Mangers, (1) Cisco
Unified Communications Manager BusEd (4) Call Manager Express, (4) Unity Express
(2) Unity Connections as well as the full worldwide network architecture.
•
Designed, configured and implemented Cisco Call Manager Express systems for remote stand alone offices and implemented Automated Attendant and Unity Express voicemail system, as well as toll bypass
•
Designed, configured and implemented Cisco Presence collaboration suite.
•
Designed, configured and implemented Cisco Contact Center Express for customer service, order, collections and invoice departments.
•
Troubleshoot all and any VoIP related issues, ensured toll bypass and failover routing when circuits are down
Network Systems Engineer , Multimedia Games, Inc, Austin, TX (3 years)
•
Responsible for engineering networked gaming systems across the world, including the
WAN, LAN, back-office and gaming player stations.
•
Installed, configured, deployed and administered Windows 2000/2003 architectures, including Active Directory controllers, DDNS, MS Clustering, SQL Server clusters, HP
SAN systems and RAIDs.
•
Designed, implemented and tuned Israel National Lottery system infrastructure including initial 150 sites via IPVPN ADSL circuits running IPSEC encrypted GRE tunnels. Design included redundant Network Operations Centers, redundant routing and growth capability to 1500 sites.
•
Revamped IP Address structure for entire WAN and LAN. Designed and implemented
Layer 3 networks for larger remote gaming sites.
•
Managed hardware and software configurations for system deployments, network security and network optimization. Analyzed and documented network traffic patterns and adjusted flows using EIGRP, OSPF and STP across the WAN and LAN. Created backups of network configurations and documented network for disaster recovery.
•
Analyzed, designed, configured and maintained networked systems, ensuring high reliability and transparent failover.
•
Managed 100+ remote gaming sites across a fully redundant Frame-Relay network.
Maintained and monitored firewall and remote site ACL
’ s, ensuring strict security measures with RADIUS, SSH, SNMP Traps, and remote logging. Limited remote access and site-to-site access with security policies, VPN concentrators and IPSEC over
GRE tunnels.
•
Documented, in detail, systems lifecycle from Phase1 through deployment. Rapidly adapted to new technologies and different practices learned from fellow System Engineers.
•
Proactively led projects, including auditing and resolving longtime network issues while maintaining daily goals and corporate schedules.
•
Maintained an on-call status supporting field technicians, project members and corporate
IT staff. Assisted corporate IT staff in day-to-day troubleshooting, VoIP system maintenance and high-level network configurations. Mentored field technicians in proper network troubleshooting techniques and configuration tuning.
•
Attained various gaming licenses, allowing travel to remote sites and casinos for deployment and troubleshooting of gaming and network systems.
•
Created dynamic reports using open source tools and operating systems such as Linux,
MRTG, Cacti and PERL scripts.
•
Maintained close relationship with Cisco, Dell, HP and other key vendors.
Lead Network Administrator , CENTCOM HOA/CJTF, Djibouti, Africa (1 year) military contract
•
Civilian contracted by the military to re-architect, secure, optimize, and managed 2 parallel networks on both NIPR net and SIPR net sides supporting OEF and CJTF operations.
•
Managed network team and lead projects encompassing items such as VoIP implementation, VTP configuration, fault tolerance configuration, network security auditing, network management, network trending, disaster recovery, and network tuning.
•
Meshed core network while running EIGRP for fault-tolerance and redundancy and configured BGP for external SATCOMM routes. Maintained PIX firewall for security and packet filtering.
•
Offered network services to Top-Secret organizations within the base.
•
Implemented, Configured and managed Cisco Works for network management along with WhatsUP Gold, Syslog monitoring, and custom PERL based SNMP monitoring scripts.
•
Designed Cisco call manager VoIP integration plan with military DSN voice network.
•
Trended and graphed network utilization on circuits to key ADN
’ s. Classified traffic and implemented traffic shaping, bandwidth throttling, and QOS where appropriate.
•
Instructed a CCNA course for fellow SysAdmins and other IT personnel. Created class work, questions, and simulations for students to better understand internetworking and network troubleshooting techniques. Outcome of the class had a direct impact on trouble ticket decrease and trouble ticket resolution time decrease.
•
Maintained 24-hour on-call status for network support.
Network Administrator , Advent Networks, Inc., Austin, TX (2 years) laid-off
•
Redesigned, optimized and owned corporate VoIP/Data LAN/WAN network. Created a
Gigabit routed and switched network backbone, ensuring ease of growth and optimal performance between networks. Created VTP domain to manage VLAN
’ s and company growth.
•
Separated shared voice/data router, implemented multi-group HSRP on dual 3662 routers for data and created analog backup for VoIP network. Ensured 24x7 data and voice uptime.
•
Managed and configured corporate Cisco Call Manager based Voice over IP (VoIP) network. Configured and rolled-out 7960 IP Phones, and ATA 186 devices using SIP and H.323 protocols. Setup voice gateway for remote access and call forwarding for
VoIP enabled devices. Configured Cisco UOne voice messaging system and implemented Cisco Unity Unified Messaging System for full voice and data integration via
Microsoft Exchange.
•
Configured VPN tunnels to executives
’
homes and field service locations, providing corporate network extensions and creating virtual offices that deliver encrypted voice and data services.
•
Implemented analog voice backup circuits for primary digital trunk and load balancing.
•
Developed custom dynamic web based Network Management and Reporting system for circuit trending and proactive error notification of core servers and services.
•
Developed automated scripts to handle day-to-day issues as well as scripts to allow for remote troubleshooting.
•
Worked closely with System Test and Field Service teams, providing best practice knowledge and network / telecomm configuration. Implemented NAT, DHCP, Firewall, and VoIP services for demo and field alpha and beta installs.
•
Utilized Vericept (ESniff) network auditing device that monitors network for malicious, unauthorized, non-productive and proprietary data traveling in/out-of the company.
•
Configured QoS and TrafficShaping/Throttling, ensuring voice and business traffic quality over low priority traffic flows.
•
Implemented Blue Arc NAS solution as the corporate storage solution. Ensured maximum throughput by introducing the system into the distribution layer of the corporate network.
•
Deployed secure wireless LAN (WLAN) with 3DES IPsec encryption.
•
Rearchitechted and managed enterprise DNS server, assisted in daily Active Directory administration, GPO management and DHCP administration.
•
Managed implementation projects and directed IT team members in assignments.
Sr. Network Administrator , Trilogy Inc., Austin, TX (2 years) laid-off
•
Owned corporate LAN/WAN network, supporting 1500 employees in local and remote offices. Built and owned Linux Red Hat based Sendmail and DNS servers, and created a fault tolerant environment for theses core services. Configured and installed Cisco
CS150/CS800 and F5 load balancers for customer facing sites. Researched, purchased, and implemented an 802.11b wireless network, fully encompassing the three Austin corporate locations. Introduced a security policy, including rolling out a Cisco PIX firewall to protect sensitive data. Worked with data carriers to purchase new circuits. Maintained relationships with hardware vendors, while adhering to a strict purchasing budget.
•
Managed all network hardware. Updated the IOS on core Cisco routers, installed modules, memory chips and completed ROM upgrades. Maintained switches, keeping them up-to-date on software revisions, and architected wiring closets for optimal performance.
Created a dynamic web site to monitor core network hardware devices and switching closets. Wrote Perl based and SNMP based scripts to proactively monitor network services, ensuring that problems were promptly addressed.
•
Administered Arrowpoint Load Balancing Content Management switch and hardened and secured IIS Server farm for the growing
“ dot coms
”
and customer facing projects.
•
Documented all of my primary functions, created troubleshooting documents, configuration documents, and general practice papers. Maintained current network diagram and trained other SysAdmins. Assisted the primary phone administrator on both the Lucent and NEC PBX systems, completing complex configurations and moves/adds/changes as necessary.
•
Interacted directly with customers to provide information on load balancing techniques, network connectivity issues and security relating to Trilogy Software implementation.
•
Earned top performance rating after first six months and awarded a 27 percent salary increase.
Network Professional , General Electric Appliances, Louisville, KY (1999) internship
Network Analyst , Dow Corning Corp., Midland, MI (1998) internship
Technical Support Staff , Purdue School of Liberal Arts, Lafayette, IN (1997)
Technical Expertise:
Internetworking
•
EIGRP, OSPF, BGP, Advanced Route Manipulation, IPSEC Tunneling, SSH, DMVPN
•
Network Design, VLSM, NAT, RAS, Frame Relay, T1, E1, ATM, Voice PRI, UPS, Satellite, TCP/IP, Load Balancing F5/Cisco/Brocade, Spanning Tree 802.1d/802.1w
•
Cisco Unified Communications Manager, Cisco Unity, Cisco Unity Connections, Cisco
Unified Communications Manager Business Edition, Cisco Voice Gateways, Cisco Presence, Cisco Contact Center Express, Cisco Integrated Voice, Video and Data architecture (AVVID), Cisco Universal Gateways, Call Manager Express, Cisco Unity Express
Management
•
HP Openview, Visio, Spectrum, Concord NetHealth, Cacti, MRTG, Solarwinds, MIB,
SNMP, DHCP, BIND, Custom Written Monitoring Scripts, Chariot Load Generator
Languages
•
Scripting, Expect, Web Development, Delphi, SQL, VB
Systems
•
MS Windows, OSX, Linux distributions, IOS, EOS, CatOS
•
Cisco Routers and Catalyst Switches, Arista, Nortel, Lucent, Avaya, Juniper, Fortinet,
Extreme
Formal Education:
Purdue University
–
School of Technology
Bachelor of Science in Telecommunications and Network Technology
Professional Affiliations/Activities:
Cisco Certified CCNP, CCSP, CCVP (through hands on experience, no classes or camps)
Cisco Specialist in Firewalls, Information Security, and IPS
INFOSEC Professional
2002 Team Winner of LinuxTopGun.Org networks security competition