Summary of Qualifications
• Over 10 years experience as an architect of mission critical enterprise networks
• Industry Certifications: CCIE #16639, CISSP, MCSE
• MS, Computer Network Engineering, UCLA (GPA: 4.0)
• MBA, Finance, Pepperdine University (GPA: 3.9)
Professional Experience
• Edmunds.com—Los Angeles, CA
Network Architect: May, 2010–Present
– Led project to design a private IaaS cloud for development and production website
environment
∗ Conducted in-depth evaluation of self-service VM management solutions
(Eucalyptus, CloudStack, OpenNebula, Convirture)
∗ Designed rapid infrastructure deployment processes utilizing cloud services APIs,
configuration management tools (Puppet and Chef), and custom integration tools.
(python modules for system/network provisioning and process orchestration)
∗ Managed vendor relationships during head-to-head proof-of-concept trials.
Coordinated project development process and conducted cost-benefit analysis of
competing systems.
∗ Executed structured system design methodology to determine optimal
combination of system and processes improvements to enhance operational
efficiency. Process included gathering and documenting stakeholders’ functional
requirements, developing success criteria for considered designs, and conducting
quantitative decision analysis to identify cost-effective solutions.
– Conducted infrastructure re-design for Edmunds.com web property
∗ Acted as subject matter expert for systems architecture and switching and routing
topology (capacity planning, product selection, new technology integration,
logical and physical layout, configuration).
∗ Designed and wrote custom tools for manipulation of production traffic to various
resource pools. Utilized vendor APIs for automated network device control
(iControl, Palo Alto API, IOS/NXOS control through pexpect and paramiko).
∗ Implemented Akamai caching policy for efficient content distribution.
– Coordinated live migration of web properties to new infrastructure hardware
∗ Interfaced with multiple business units to enumerate and resolve migration issues.
• Fox Networks—Los Angeles, CA
Network Engineer: June, 2009–December, 2009
– Managing nationwide rollout of DMVPN to 200+ Fox affiliates:
∗ Designed python and php scripts to automate router/switch provisioning.
∗ Created web 2.0 GUIs (javascript, php, xml, mysql, etc.) for engineer collaboration,
geographic monitoring (using google maps api), and site database management.
∗ Setup database to track rollout phases and automate scheduled device
provisioning and monitoring.
– Supporting Fox Broadcast Distribution Network:
∗ Design and implementation of high-availability ip networks to support live and
time critical broadcast video distribution throughout nationwide affiliate network.
– Implementation of management and monitoring systems to track status and
performance of network devices:
∗ Ciscoworks LMS–Device configuration, inventory management, and
configuration auditing through RME. Rouge device detection through CM.
Hardware fault monitoring through DFM.
∗ Nagios/NagiosQL–Device database management through NagiosQL. Device
monitoring and event alerting. Tweaking command timers, thresholds, and
arguments to suit custom requirements.
– Troubleshooting advanced network issues escalated from regional support teams:
∗ DMVPN debugging in 200+ peer environment.
∗ Intricate EIGRP and BGP configurations with multiple domains, redistribution,
VRFs, and high-density peering groups.
∗ Spanning tree and other switching issues in large corporate user and data center
networks.
• Sony—Los Angeles, CA
Lead Network Engineer: June, 2007–February, 2009
– Design, implementation, and maintenance of corporate network:
∗ Switching- 6500s, 4500s, 3750s
∗ Routing- 7200s, Multi-site OSPF domains, BGP peering, circuit load balancing
∗ Wireless- 1100s, 1200s, Cisco LWAPs, Cisco Wireless LAN Controllers
∗ Remote access- ASA 5500s, Cisco VPN concentrators, Client IPSec and SSL VPNs
∗ Security- FWSMs, Cisco ACS, SecureID
– Data Center infrastructure maintenance and support, involving multi-tier
switching, routing, security, and load-balancing:
∗ High-profile domains (sony.com, sonypictures.com, sonyconnect.com,
crackle.com)
∗ Primarily Linux (Red Hat) server farms: apache, tomcat, mysql, and oracle.
– Network security and QoS with special concerns for publicly available multimedia
content and high traffic Internet commerce sites:
∗ Designed the encoding farm infrastructure for Sony Playstation online video store.
∗ Created security policy and procedure for sensitive data access (non-DRM video)
– Creating maintenance and support automation scripts/utilities with various
platforms and languages (python, perl, shell, expect, etc.)
∗ Python scripting for network config backups and maintenance.
∗ Linux administration for automation/monitoring servers(apache, bind, mysql)
• Fusion Storm—Los Angeles, CA
Security Engineer: January, 2007–June, 2007
– Design and implementation of Cisco infrastructure and security solutions.
– Product recommendations and pre-sales support.
– Data Center build-outs primarily involving multi-tier switching, routing, security, and
server load-balancing. (in-depth knowledge of Catalyst 6500, FWSM, IDSM, ACE,
CSS, and CSM)
– Implementation of Cisco Advanced Technology solutions: Wireless (LWAPs, WCS,
Autonomous APs, WLSE), Security (ACS, ASA, MARS, NAC, ICS, CSA), IOS
advanced features (DMVPN, IOS IPS, IOS FW, DTM with MARS).
• Aptium Oncology—Los Angeles, CA
Network Analyst: January, 2005–November, 2006
– Support for network operations, including:
∗ WAN infrastructure (Frame-Relay, SONET, TDM Circuits, Dark fiber)
∗ LAN administration (Catalyst 4500s, large VTP domains, multi-site VLANs,
802.11 Wireless networks)
∗ Routing and Switch policy (Cisco 7200s, OSPF, EIGRP, Traffic Engineering)
∗ Network Security (PIX, Cisco IPS, ICS, IOS Firewalls, site-to-site and client VPNs)
∗ Ap...
