About The Jedi

MORE TO COME

For now, here is my resume:

Education

Bachelors, Audio Engineering – Cal State Dominguez Hills

Certifications

  • TippingPoint Certified Security Expert #2370
  • Information Systems Security (INFOSEC) Professional, NSTISSI 4011
  • VMware Certified Professional vSphere 5
  • Cisco Certified Network Associate (CCNA)
  • Cisco Certified Network Associate: Voice (CCNA: VOICE)
  • Cisco Certified Network Associate: Security (CCNA: SECURITY)
  • Cisco Certified Network Professional (CCNP)
  • Cisco SMB Engineer
  • Cisco SMB Account Manager
  • Microsoft Certified Systems Administrator 2000
  • Microsoft Certified Systems Administrator 2003 / Security
  • Microsoft Certified Technology Specialist: Windows Server 2008 R2, Server Virtualization
  • CompTIA A+ Certification
  • CompTIA Network+ Certification
  • CompTIA iNet+ Certification
  • CompTIA Security+ Certification

PROFESSIONAL SKILLS

I.T. Management
        Departmental & Staff Supervisory Experience
        Quarterly & Annual Departmental Budgeting
        Project Management and Coordination
        Inter-departmental Initiatives Collaboration & Management
        Sarbanes-Oxley Requirements 
        PCI Requirements and Scope Minimization
        Corporate Information Policy (Acceptable Use, Change Mgmt, Remote Access, etc.)
        Vendor and Partner Relationship Management
        License and Asset Management
        Documentation, Bug Tracking, Ticketing System and Call Center Management
        Workflow Analysis and Optimization
 
System Administration and Engineering
        VMware VSphere v4.0, 4.1, and 5.0 [HA, Clustering, DataStore/SAN Mgmt, VDI]
        Windows Server Support and Administration (NT/2000/2003/R2/2008)
        Windows Client Support and Administration (9x/NT/2000/XP/7)
        Server Hardware and Advanced BIOS Support (Dell, HP, SuperMicro, white-box etc.)
        Windows Network Management and Automation: BAT file scripting, remote management, software deployment, Group Policy architecting
        Active Directory Design, Advanced Enterprise Design and Support, Replication Optimization and Troubleshooting, Migration, and Domain Architecting
        Microsoft Exchange 2007 & 2010
        Microsoft 2008 R2 Hyper-V & System Center VMM 2008
        Remote Desktop Services (RemoteApp, VDI, RDS Gateway)
        Microsoft High Availability Clustering, MPIO, & Storage Management
        DNS and NetBIOS/WINS
        WSUS (Windows Software Update Services)
        Windows PKI and Certificate Infrastructure
        IIS v5, v6, v7
        LANDesk Management and Security Suites
        Enterprise Antivirus and Security Suites (AVG, Kaspersky, Symantec)
        Spiceworks
        Dell Server Hardware (PE1650,1850,2850,2950,R900,R510,R710,R420)
        HP Blade Hardware (c7000 chassis enclosure)
 
Storage Area Network Administration
        Disaster Recovery and Enterprise Backup Solutions (NetBackup, Backup Exec, Symantec System Recovery, Microsoft NTBackup, etc.)
        High Availability Storage Planning and Administration
Ø  Tape & Removable Media: PowerVault Tape Library, Internal LTO3/4 drives, Dell RD1000
Ø  FibreChannel SAN Implementation & Administration: NetApp 6240/3240 & OnCommand Suite, Compellent SAN, EMC Clariion AX4-F5/CX-3/CX-4
Ø  NAS: QNAP, Windows Storage Server, OpenFiler (NFS), Dell Equalogic
Ø  Direct Attached Storage: Dell MD1000, MD3000
        Brocade FC switches: DCX, 4100, & 300
        Cisco Nexus 5000 switches
 
Network Engineering
        Routing Protocols: RIP, OSPF, EIGRP, BGP, Route Redistribution & Route Maps
        LAN Administration:
Ø  Spanning Tree: RSTP/MST, Root Guard
Ø  VLAN Propagation: VTP/GVRP
Ø  Traffic Engineering: QoS, NBAR
Ø  Security: 802.1x, SPAN/RSPAN, Port Security, PVLAN, AAA/RADIUS, DHCP Snooping, DAI
Ø  Availability: HSRP, VRRP, GLBP
        Cisco Enterprise Router Support and Configuration (800, 1700, 1800, 1900, 2500, 2600, 2801, 2811, 3640, 3825, 3845, 3945)
        Cisco VoIP Services (CLI, CCA, CME, CUE v7 and v8, UC500, NM-CME/AIM-CME)
        Cisco Switch Support and Configuration (Catalyst 2950, 2960-S, 3550, 3560, 3750, 6500)
        Cisco NX-OS Nexus 5596 and 5548 data center / unified fabric switches (with Layer 3 Module)
        Cisco Service Provider IOS-XE Routers/Swithes (ASR 1002, Catalyst 4900M, Catalyst 4500-X)
        Secure Wireless Design and Integration (WCS, WLC, RADIUS/ IAS, 802.1x, EAP, etc.)
        Cisco Perimeter Defense (ASA 5500, SA 500, SR 500)
        Cisco IPS Services (IOS, AIP-SSM)
        Cisco Security Management (IOS/CLI, SDM, ASDM, CCP)
        Cisco Wireless Controllers (WLC5500, 4402, and 2106)
        Cisco AP’s (1130, 1140, 1250, 1260)
        Adtran NetVanta routers (5305, 3448)
        HP ProCurve Switches
        Brocade/Foundry Ethernet Switches (FastIron 648)
        Vyatta software/virtual firewalls with Snort IPS
        SonicWall Firewall/VPN (PRO 530, 2040, TZ 210, Sonic OS v4+)
        Barracuda Spam/Web Filter
        Postini Spam Filtering
        3CX VoIP System
        Advanced Traffic Engineering (QoS, NBAR, Traffic Analysis and Optimization)
        Secure Remote Access Technologies (i.e. VPN, SSL, GRE, etc.)
        PacketMotion Traffic Analyzer/IDS
        TippingPoint IPS (SMS, N-Series, E-Series)
        Snort IPS w/ BASE
        Raritan Paragon and Dominion KVM switches
        SolarWinds Orion Network Performance Monitor w/ NetFlow
        Various networking tools: Wireshark/Ethereal, NMAP, LanGuard, Nessus, Kiwi Syslog

Professional Experience

True Religion Brand Jeans10/12 – Present

Director of IT Infrastructure & Networking / Sr. Technical Architect

  • Act as lead technical architect for all infrastructure systems including: network, security, virtualization, storage, private cloud, active directory and windows enterprise
  • Design and implement short- and long-term strategic plans to ensure infrastructure capacity meets existing and future requirements.
  • Develop, implement, and maintain policies, procedures, and associated training plans for infrastructure administration and project management.
  • Participate in the development of IT strategies in collaboration with the executive team.
  • Conduct research and make recommendations on products, services, protocols, and standards in support of all infrastructure procurement and development efforts.
  • Establish service level agreements with business units.
  • Prepare RFPs, bid proposals, contracts, scope of work reports, and other documentation for infrastructure projects and associated efforts.
  • Negotiate with vendors, outsourcers, and contractors to secure infrastructure-specific products and services.
  • Assist with the planning and deployment of infrastructure security measures.
  • Manage and set priorities for the design, maintenance, development, and evaluation of all infrastructure systems, including LANs, WANs, Internet, intranet, security, wireless implementations, and so on.
  • Conduct feasibility studies for various upgrade projects, improvements, and other conversions.
  • Define hardware and software standards in conjunction with owners and stakeholders.
  • Test network performance and provide network performance statistics and reports; develop strategies for maintaining network infrastructure.
  • Test server performance and provide network performance statistics and reports; develop strategies for maintaining server infrastructure.
  • Manage operational costs; conduct near- and long-term financial forecasts for expanded functionality/user base.
  • Establish and maintain regular written and in-person communications with the organization’s executives, decision-makers, stakeholders, department heads, and end users regarding pertinent infrastructure activities.
  • Practice IT asset management, including maintenance of component inventory and related documentation.
  • Direct and administrate a contingent of network analysts and technicians, and where necessary, conduct performance reviews and corrective action.
  • Mentor and guide the IT technical across the organization.
  • Publish and maintain the 3 year IT Infrastructure roadmap working closely with the Business Owners and Business Process transformation functions
  • Proactively identify opportunities and areas for innovation within existing technical architecture
  • Proactively identify areas of risk for existing infrastructure; provide alternatives & recommendation. Oversee, design, and own remediation action plan
  • Identify immerging technology trends that may support or impede business operations, prioritize by severity, along with respective recommendations & guidance, as well as providing impact analysis
  • Define and execute processes for incident reporting, problem management, change control, and capacity management
  • Ensure 99.99% uptime for 125+ retail stores’ IT operations
  • Architect cost-effective network solutions that are highly scalable & responsive.
  • Ensure company technical issues are resolved in a timely and cost-effective manner
  • Create and maintain an updated set of network infrastructure documentation for all sites including service provider and/or circuit information, virtual environment, and security devices
  • Direct the development and execution of an enterprise-wide disaster recovery and business continuity plan
  • Identify and justify hardware purchase needs, along with alternatives and a recommended course of action, with full impact analysis & contingency plan
  • Recruit and hire top IT talent
  • Manager the IT team, providing excellent guidance, mentoring and growth opportunities for all levels of IT personnel.
  • Establish standards of performance for staff, ensuring employees meet these standards through regular reviews and mentoring sessions

Katana InfoTech

Director of Network Services & Sr. Technical Architect – 12/11 – 10/12

  • Oversee customer partner facing activities including discovery meetings, assessments, coordinate multiple initiatives in parallel, project scheduling, proof of concepts
  • Lead for all Executive Board meetings, specifically including Business Requirements and Gap Analysis, as well as results of post-implementation analysis, and remediation in operational inefficiencies
  • Ensure 24/7 availability for all customer environments through proactive maintenance, alerting & monitoring, operating standards & procedures, and support staff management/rotation
  • Establish support metrics, SLA’s, and issue management & reporting, insuring the highest level of excellence with customer support and responsiveness.
  • Implement internal ticketing system, as well as service desk workflow & change control practices for both proactive maintenance and reactive customer support, as well as unifying billing/accounting procedures for tracking support hours.
  • Coordinate w/ key personnel to accurately understand client operations & business processes, both holistically and intra-department, to provide congruent solutions & services, relevant to those processes
  • Analyze existing IT infrastructure, processes, applications, and services, providing guidance to existing IT staff to better align with current and future business needs
  • Articulate and present proposed solution to various department heads within customer’s organization
  • Form and maintain partner relationships; oversee and manage all evaluations, as well as integration with existing technologies and solutions
  • Plan and orchestrate all User Acceptance Training across multiple technologies and mediums to meet specific client needs.
  • Lead and direct all security & vulnerability assessments, as well as final analysis & suggested remediation. Furthermore, work with key stakeholders to create & implement corporate policies for Management, IT, and Administration, to meet industry compliance requirements
  • Lead and oversee all customer performance monitoring, trending & analysis, to accurately plan for growth and increasing capacity.
  • Lead all emergency incident responses, forensic analysis, and coordination of all involved business & technology personnel.
  • Plan, design, and direct all data, service, application, and infrastructure migration, from on-premise resources, to private collocated data centers and/or public hosted cloud providers.
  • Plan, design, and manage all disaster recovery and business continuity initiatives and services, including annual evaluation and testing.
  • Manage & mentor entire staff including support agents, network administrators, solutions architects, and project managers.
  • Manage & oversee all Data Center operations, including maintenance windows, access requests, capacity planning, business continuity, and service provider circuit installs.
  • Review and approve all architect proposed solutions; remediate and modify as necessary.
  • Budgetary accountability for all customer implemented services & solutions
  • Research & analysis of emerging technologies, staying abreast of industry trends and best practices

Cloud Network Architect – 4/11 – 12/11

  • Perform assessment of existing customer networks: cloud-readiness, scalability, fault-tolerance, Active Directory & DNS infrastructure, security technologies, etc. & based on findings, propose recommendations for cloud integration & data migration
  • For customer engagements, lead the technical discovery process, interfacing with technical stakeholders to gather solution requirements, and thus correctly scope implementation and plan deployment accordingly
  • Provide leadership to new and existing customer base in the design of scalable, enterprise class networking solutions, as well provide recommended security practices
  • Perform gap-analysis and implement all recommended network remediation
  • Provide detailed knowledge transfer to customers on cloud networking solutions & migrations
  • Develop and document repeatable, templatized solutions & processes, and distribute to engineering team
  • Maintain core backbone network, monitoring ingress/egress customer traffic, optimizing routing & peering accordingly to ensure lowest possible latency
  • Isolate and protect customer traffic within multitenant network core; configuring VPN tunnels, firewall rules, NAT statements, & advanced inspection engines (IDS/IPS) accordingly with customer’s remote access needs, along with customer’s enterprise services and applications
  • Optimize, maintain, and troubleshoot core datacenter network, including failover & high-availability, implementing load-distributed multipath forwarding through vPC, VSS, RPVSTP, and layer 3 design
  • Centralize & automate network configuration backup & revision history
  • Centralize authentication & logging for network infrastructure devices
  • Develop KPI’s for customer networks/private clouds & train NOC to properly monitor for alerts & performance issues
  • Monitor & analyze backbone & customer traffic, gathering statistical data for top protocols & services, as well as top bandwidth usage by both source & destination, and generating automated reports to customer-specified distribution lists
  • Research and stay abreast of existing virtualization trends, cloud frameworks, and security technologies, sharing discoveries & concerns w/ engineering team
  • Educate presales as to features & limitations of all cloud, networking, & VDI products/services
  • Create the enterprise framework for all IT Department processes, procedures, configuration standards, and change control measures; additionally create the documentation standards & documents themselves illustrating above processes & procedures, and additionally the review/revision scheduling
  • Increase operational efficiency & reduce gratuitous costs by planning & deploying centralized asset & license management system, further tracking license usage, asset maintenance
  • Plan & Implement operational monitoring system for corporate enterprise including company servers, systems, networks, and applications for any issues, system errors, hardware failures, environmental alarms, performance metrics, security alerts, etc.; additionally correlate historical data to aforementioned Asset/Inventory system
  • Augment business intelligence by centralizing support incidents & company projects, via ticketing system with issue tracking, change control mechanisms, reporting, and additionally correlating to Asset/Inventory system and maintain historical data for reporting purposes
  • Manage/Maintain existing network infrastructure including wireless, voice, mpls backbone, dmz, and perimeter devices; monitoring traffic patterns & optimizing appropriate prioritizations
  • Comprehensive security audit & vulnerability assessment to discover & remediate gaps between perceived security structure as well as deficiencies in compliance standards
  • Increase company’s security awareness, elevating security posture, researching/deploying new technologies & implementing security best-practices

Skechers US, Manhattan Beach, CA11/05 – 4/11

Sr. Network Services Engineer & Sr. Windows System Administrator

  • Acted as lead Active Directory architect for entire enterprise, planned and implemented migrations and expansions, as well as any necessary modifications to facilitate Single Sign On among disparate authentications systems from various technologies and operating systems.
  • Supervised Jr. Administrator, overseeing and coordinating all routine maintenance, as well as task delegation for large interdepartmental projects.
  • Provided guidance and mentoring for all Windows issues & technologies, additionally provided informal supervision and guidance for Help Desk and Client Services teams as well as Tier III support for complex problems.
  • Reviewed and maintained department performance metrics.
  • Ensured the stable operation and efficient performance of company networks, maintained high level of Business Continuity through Fault Tolerant design, as well as planned and execution Disaster Recovery policy and procedure.
  • Provide production support for 2nd/3rd level included troubleshooting and supporting call’s for VPN, Cisco Switches, Routers, IOS security features, and P2P and WAN circuits.
  • Performing installation, configuration, testing, troubleshooting, maintenance and support of LAN/WAN systems which include VoIP, Cisco routers/switches, VoIP, Wireless Controllers, Firewall/IPS/VPN, etc.
  • Designed & implemented distribution center site consisting of 1.8 million square feet, 327 Access Point’s, 6 Nexus 5548 fiber backbone setup in 3 vPC pairs, aggregating to a 6509 VSS pair for the core network, and 55 x 3560 distribution switches connecting over fiber runs to the Nexus backbone
  • Proactively monitored IT infrastructure, keeping Management apprised of foreseeable concerns and developing corporate trends.
  • Proactively researched new methods, technologies, and tools to improve existing conditions.
  • Proactively planned for and assessed immediate and long-term network capacity needs.
  • Monitored internal & external traffic patterns, optimized network design and bandwidth prioritization accordingly, as well as possible network attacks.
  • Monitored external and dmz facing networks for attack patterns, and optimized filter settings accordingly.
  • Monitored system & network performance, bandwidth utilization, device uptime, etc.
  • Performed Policy design, implementation, monitoring, and revision (I.e. Antivirus Policy, Password Policy, User Data Archival Policy).
  • Collaborated with existing Unix Engineers to design and implement interoperability, and cooperatively solved problems where Unix and Windows intermingle.
  • Collaborated with Management, Loss Prevention, and Internal Auditing to maintain SOX and PCI compliance, as well as emergency priority incident response.
  • Worked with Database Administrators, Business Application Administrators, and in-house Developers to translate software requirements into network and hardware specifications, offering guidance for design, configuration, and deployment, taking into account performance and compatibility issues, as well as scalability concerns. Furthermore provided assistance for monitoring and troubleshooting once deployed in production.
  • Administered and supported FibreChannel Storage Area Network, as well as Storage Filers for data archiving, disaster recovery site replication, virtualization, and web farm databases.
  • LUN management and deployment for all windows servers in the enterprise, as well as planning & execution of all data migration
  • Deployment & management of VMware private cloud infrastructure, as well as P2V migration of all Windows servers in the enterprise
  • Established and maintained vendor relationships for company-wide hardware and software, as well as organized enterprise licensing and support contracts.
  • Scheduled and execution of new server installs, server upgrades, and migrations.
  • Proactive maintenance of robust security posture, and assurance of a secure environment, via secure design principles, as well as the timely application of necessary patches and provided visibility of user activity.
  • Additionally increased IT security awareness via centralization of security monitoring for multiple forests/sites.
  • Oversaw vendors with regards to new and existing equipment, hardware, and software upgrades.
  • Architecting, maintenance, monitoring, installation, and troubleshooting of Active Directory consistency and replication across multiple international sites.
  • Responsible for assuring high domain and network availability for mobile and office users.
  • Proactive maintenance of Windows NT/2000/2003 server systems’ hardware, operating systems, and enterprise applications, both domestically, and abroad.
  • Manage, review, test, & deploy all updates/hot fixes/service packs via centralized Patch Management for all Windows systems throughout the enterprise, as well as the quarterly and annual reporting of such security updates. NOTE: This included 3rd party updates as well [Adobe, Mozilla, Apple, Java, etc.]
  • Monitor, maintain, review, and implement security for all Windows clients and servers throughout the enterprise, including Systems Management, Asset Management, and Antivirus/Anti-malware/HIPS.
  • Deployment, administration, monitoring, installation, and troubleshooting of Windows NT/2000/2003 based servers.
  • Documentation of network configuration/topology, server management and configuration, application and database configurations, virtualized hardware, department processes, and creation of end user instructional material.

 

Comments
  1. Nacho says:

    maybe you could help me. upload speed on my 2800 cisco very slow around .05 MB/s while if you direct to Computer its around 6MB.

    • jeremyneedle says:

      Could be a couple things: physical, duplex mismatch, etc. Do a “show interfaces” and “show interface status” and verify duplex/speed is being correctly identified. Also look for drops, CRC errors, runts, etc. Also check out the ping times themselves, try different packet sizes to test the fragmenting. Its ~possible~ it might be a firmware bug as well; you can do “show version” and look at the release notes for the specific IOS version. We ran into this issue back in 2007 or so; our Cat 6500 had this weird issue where any packet over 400 bytes was corrupt. Wasn’t easy to diagnose; all the voip traffic was working but all the data traffic was dying. At first I was going round in circles thinking it was a QoS or queuing issue, when in fact it was a bug with that specific firmware version

  2. Nacho says:

    hi,
    maybe you could help me. upload speed on my 2800 cisco very slow around .05 MB/s while if you direct to Computer its around 6MB.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s