Apple, Inc. - Cupertino, CA
[ Nov 2014 - Present ]
Siri Network Engineer - Design, deploy, and operate very large-scale infrastructure supporting millions of users around the world and growing very rapidly
- 24x7 hour responsibilities
- Optimize the environment by coming up with methods to grow, monitor and evolve, including capacity planning
- Troubleshoot complex infrastructure and application level issues to ensure the best possible “up time” and performance
- Write documentation to assist team members for future troubleshooting and external group knowledge transfer
Quicken Loans - Detroit, MI
[ Jul 2013 - Nov 2014 ]
Network Engineer - Responsible for internet presence with enterprise campus and WAN in a highly agile environment
- Work with our platform engineering teams to move certain parts of our front end to Amazon AWS
- Datacenter upgrades from C6500s to Nexus 7k/5k/2k, double-VPC between distribution and access, single-VPC to servers
- Firewall upgrade and policy migration from FWSMs to ASA 5585s
- Host MHacks.org hackathon, providing 800 people with reliable, usable, and isolated internet access for a weekend. 1200 devices, 450mbps sustained throughput on 120 WAPs
- Engineered a VDI POC with Nexus 5500s and Dell M1000E/FEX architecture. VPC for Ethernet, FC storage to FCOE servers
- Day to day operations including firewall ACLs, switch port add/changes, diagnose wired/wireless/WAN performance issues, administer monitoring systems
Member Driven Technologies - Warren, MI
[ Oct 2012 - Jul 2013 ]
Network Engineer - Manage a Cisco network in a regulated service provider environment
- Use VRFs to isolate customer networks
- Implement and diagnose MPLS, Metro-E, and other private circuits
- DMVPN and tunnelcrypt VPNs for multi-branch failover links on commodity internet
- Update firewall policies on multi-context ASAs and FWSM devices
- Route redistribution and traffic engineering for remote branches
- Cisco HQF QOS policies for remote branch routers
- Cisco MDS fibre channel switch management
- Syslog project to aggregate events from devices and firewalls into two datacenters
- Netflow collector project using nfsen for traffic analysis, collecting events from C6500 switches and other routers
- Clean up inter-datacenter routing, remove 280 static routes, add redundancy/capacity
Greektown Casino-Hotel - Detroit, MI
[ Jun 2009 - Oct 2012 ]
Network Engineer - Manage a Cisco network, administer primarily a Windows and VMware ESX environment
- Manage 300 Cisco WAPs on four controllers across the property, including guest-access and 200 users in the 4000 sq ft function space
- Configured WiFi for 802.1x-based VLAN assignments to avoid SSID creep
- WiFi performance and coverage monitoring for expanded VoIP deployment
- Manage firewall policies, end-user and site-to-site VPNs on ASA 5500s and Juniper SAs
- Configure and manage a collapsed Cisco 6500 VSS and HSRP cores with C3750 stacks in top-of-rack; C6500s and C3560 stacks in access layer
- Work with vendors to diagnose network application problems using RSPANs, packet captures, port scans, and log analysis
- Replace core and distribution layer switching with Cisco Nexus 7000 utilizing VDCs and 10g VPCs to server and user access
- Finalized Sparse-Mode Multicast Routing for digital signage distribution
- Prepare and support the hotel network for IPTV deployment, 450 set top boxes with live TV and on-demand services
- Deploy IronPort Web Security Appliances with WCCPv2 to replace Websense for tiered Internet access with usage filtering, logging, and reporting
- Standardize system monitoring for host, service, and disk space availability. Added switch uplink state monitoring, IDF/MDF environmental monitoring, and responsibility-based alert structure
- Changed Cisco device AAA to use RSA SecurID through Cisco ACS
- Implemented an RSA enVision SIEM to assist with Gaming, GLBA, PCI, and SOX regulation audits and compliance
- Evaluated smartphone replacements and Mobile Device Management solutions. Created MDM policies for iPhones and a procedure for deployment and support of 120 users
- Designed and implemented redundant, scalable, and secure ethernet connectivity for 2600 slot machines. 420 access switches, 8 aggregation switches with 10g port-channels to distribution
- Manage smartnet renewals. Coordinate hardware & service quotes with resellers to comply with purchasing regulations
- Deployed Nexus 5k pair w/ L3 modules for Valet garage VPCs in a collapsed core. High-bandwidth for POC of surveillance HD cameras on ethernet, aggregates 3-4gbps minimum
Netlink - Madison Heights, MI
[ Jun 2007 - May 2009 ]
System Administrator - Manage the internal Windows infrastructure and provide support to small/medium business customers
- Change switch port VLANs for servers and workstations as needed
- Install and configure VMWare ESX 3.x clusters on Dell servers and IBM BladeCenters with EMC Clariion SANs
- Consolidate and support two AD forests, virtualizing dozens of application and file servers, and streamline DNS
- Manage Microsoft Exchange, IIS, and MSSQL, servers for hosting customers
- Set up system availability and trends reporting with Cacti and Nagios, tracking 300 hosts and 700 services, including alert escalation and offsite monitoring
- Work with customers to install, manage, and migrate their database, mail, and web servers
- Cleaning up MX records and migrate from Barracuda to ProofPoint mail gateways, which processes 80,000 messages per hour
- Disaster recovery for Exchange database corruption, multiple disk RAID5 failures, Active Directory, ESX/LUN Snapshot space issues
CDI Information Services - Troy, MI
[ Nov 1998 - Jun 2007 ]
System Administrator (DaimlerChrysler) - Provide 24/7 second and third level support for the legacy Netware 5.1/6.5 infrastructure, migrate to an AD forest with Windows 2003 servers, and provide operational support for the new infrastructure
- Coordinate and perform hardware-swaps for off-lease server hardware
- Install NetWare 6.5 and Windows 2003 Clusters with HP MSA SANs
- Diagnose network performance issues
- Configure and resolve desktop lockdown policies
- Perform user, print queue, and share administration in an enterprise-wide AD Domain with Windows 2003 Directory and File and Print Servers. Assisted the AD team with migration process and updated login scripts
- Redesigned the department website to leverage the corporate LDAP and MySQL for contact pages, replacing Perl-parsed CSV files
- Wrote a lookup tool used to verify user account information by performing lookups against the corporate LDAP, MSSQL, Active Directory, and eDirectory. Aiding the NDS/AD migration project managers, this tool allows them to reduce the amount of time spent researching user information, prevents the resubmission of users to be migrated, and increases the accuracy of their work
Cisco Certified Network Associate (CCNA) - Route & Switch
Cisco Certified Network Professional (CCNP) - Route & Switch (Tshoot Pending)
Employee of the Month, August 2007
Five Bravo and six Spotlight Recognition awards from DaimlerChrysler ITM
Oakland Community College - Bloomfield Hills, MI
- Associates Degree of Computer Information Systems in June 2005
Oakland University - Rochester, MI
- Bachelor Science in Computer Science in December 2012
Professional Organizations:
ACM - Association for Computing Machinery
SIGCOMM - Special Interest Group on Data Communications
Skill Summary:
- Switches/Routers: Broadcom ICOS, Cisco IOS, Cisco NXOS, Dell, HP, Netgear
- Wireless: Cisco ISR Modules, WiSM, WLC 5508, WCS, and MSE
- Monitoring: AirMagnet, Cacti, MRTG, Nagios, RANCID, SNMP, Solarwinds, What's Up Gold/Pro
- Blade Systems: Cisco UCS, Dell M1000, IBM BladeCenter
- HyperVisors: VMware ESX/i 5
- Security: Cisco IronPort WSA, Cisco ASA 5500, FWSM, Cisco Secure ACS, Juniper SA VPN, MobileIron VSP/Sentry, Netscreen, Nessus, RSA SecurID Appliances, Snort
- SANs: EMC Clariion CX3/4
- Hardware: x86-based PCs, HP Proliant Servers, Dell PowerEdge Servers
- Operating Systems: Linux, (CentOS, Debian/Ubuntu), Windows Desktops/Servers
- Languages: HTML, PHP, Perl, Java, VB/VBS, Bash Scripting
- Databases: MySQL, MS SQL Server
- E-Mail: Exchange 2003/2007, ProofPoint, Symantec Brightmail Gateways, Zimbra
- Cloud Services: Amazon AWS (VPC default, Route53, EBS, RDS, S3, and VPN), Microsoft Azure (topology, VPN)
- Misc. Software: Apache, ISC-DHCP, OpenSSH, Samba
- Self Study: CCNP, Network Security, 802.11
Independent Projects:
MPCon - http://www.mpcon.org/
[ March 2004 - Nov 2014 ]
Coordinator and Infrastructure - MPCon has been an established LAN Party in south-eastern Michigan for 10 years. In that time, we have grown from a small gathering of QuakeWorld Team Fortress clan mates to the largest LAN party in Michigan, and one of the most sought after LAN parties in the Midwest - LANParty.com. Our last event drew over 500 attendees.
- Manage a dozen volunteers to plan, market, set up, operate, and tear down an event for 500 people over four days
- Plan and coordinate with facilities for cooling, internet access, power, and tables
- Configure and operate DHCP, DNS, internet access, intrusion detection, game servers, and LAN party management server
- Monitor attendee check-ins, seating, security
- Investigate power and network connectivity/performance issues
- Resolve hacks, intrusions, and viruses on the MPCon network