Summary
Enthusiastic, established IT professional with over 15 years Network, Systems, Multi-Cloud and technology leadership experience in the Enterprise, Financial Services Technology ISP / MSP and Cybersecurity spaces. My strengths and interests include creating a generative culture to nurture innovation; simple, elegant design; reliable automation and data driven decision making which
has assisted in the creation of a proven track record in identifying, driving and delivering solutions to improve customer experience and retention, increasing service relia bility and improving operational and cost efficiencies, such as:
I have a strong interest in facilitating the growth of an organisation who wish to leverage the power of microservices, best-of-breed, secure multi / hybrid cloud services deployment and best practice architecture to use innovative ideas to increase their customer base and revenue.
Specialities
Cloud Native Architecture I Migrations: AWS I GCP I Vault I Consul Orchestration I DSC: Terraform I Ansible I Salt
CI I CD: Jenkins I Rundeck I Git
Dev I Scripting: Python I Go I PowerShell
Containers I Orchestration: Docker I k8s I Nomad
OS I Web: Windows Server I Linux I NGINX I Apache I IIS I Flask
Virtualisation: VMware ICitrix I Hyper-V I Vagrant
Database: MSSQL I MySQL I PostgreSQL
Monitoring: Prometheus I Zabbix I Nagios I MRTG I Cacti
Network: Cisco I Juniper I Arista - WAN I Datacenter Routing & Switching
IPAM: VitalQIP I Infoblox
Load-balancing: F5 I NetScaler Collaboration: IronPort I MS Exchange Traffic shaping: NetEnforcer I PacketShaper
Security: Threat & Vuln Mgt I GRC I Pen-test I Checkpoint I Cisco ASA I Juniper
Storage: HP I LeftHand
Server Hardware: HP I IBM I Dell
Employment
April 2019 - Present Date
Technical sponsor and designer for Impervas DevSecOps initiative. Proponent of the 'Shi Le' initiative to increase reliability via improved code quality and enhance feature release velocity. Automation of CI Pipeline security testing.
Infrastructure observability improvements with Tenable, PrismaCloud / Twistlock & LightSpin. Update & patching automation. Threat & vulnerability management. Selection of and education for SAST (Coverity), DAST, (Gauntlet & Burpsuite) and SCA (Blackduck) tooling. Primary liaison between DevOps team and Product Development / InfoSec / Customer Success for security issues. Incident response. Contribution to white papers and RFPs. Inaugural member of the Imperva Security Champions group. Inaugural member of the Imperva D, E & ICouncil.
Focal point for multiple teams DevOps related functions. CI / CD / CR with SVN, GitLab, Jenkins, Artifactory, AWS, Vault, Terraform, SaltStack, k8s, Kafka, etc. Definition and documentation of SLOs for Cloud WAF Saas platfoms. Incident & Problem management consultancy. Inaugural member of the Imperva D, E & ICouncil.
Advocate for SRE principles and DevOps philosophy. Design and implementation of AWS and PoP monitoring for scale and reliability. Capacity planning for PoPs and L7 services. Design & implementation of companywide Incident Mgmt & RCA processes. Mentoring and training for the same. Assistance in the maintenance of, and writing modules for a Python batch processing framework. Assistance in the maintenance and deployment of an internal monitoring tool written using JavaScript and YAML. Using OOP and Clean Architecture principles to create glue utilities for ETL tasks such as parsing IaC JSON files to generate and maintain Pingdom checks or populate DCIM / !PAM platforms via concurrent REST API calls. Utilising Terraform Desired State Configuration while following the pillars of the AWS
Well-Architected framework to build and deploy fault-tolerant application monitoring architectures utilising ThousandEyes, CatchPoint and Blackbox Exporter containers on ECS to target on-prem installations and CloudWatch for AWS telemetry. Participation in trade shows and coordination of industry meet-up groups and social events. Inaugural member of the Imperva D, E & I Council.
October 2017 - March 2019
Design and implementation of a hybrid cloud (GCP & Arista) platform for the automated deployment of S4/HANA in a politically sensitive environment.
Design of new Cloud-ready DC architecture to accommodate multiple Lines of business and a multi-cloud (AWS, GCP, Azure & Alibaba) strategy. Regional primary network resource for infrastructure projects, technical documentation, vendor management, peer training & staffing duties. Writing Python scripts for AWS Route53 zone creation and maintenance, DCIM / !PAM platform population and in conjunction with JINJA2 templates for Arista CloudVision configuration management. Proposal of a CI / CD pipeline for Enterprise Architecture planning and documentation using Bitbucket & Jenkins with a basic Flask CMS.
November 2015 - October 2017
R&D / engineering of public cloud (AWS & GCP), Datacenter, WAN, Co-Lo & corporate environments for Financial services MSP. Configuration & support of Arista & Cisco switches. Fortinet & Checkpoint firewalls. Providing technical leadership for Network Support staff globally. Principal Engineer for global firewall migration, network automation / DevOps initiative and bringing analytics / visibility into the global WAN with enhanced monitoring platforms. Regional primary resource for projects, technical documentation, vendor management and recruitment duties. Planning and deployment of customer AWS VPCs, VPN GWs and associated SGs. Python scripting for network device snapshots, diffs and config deployment. Participated in the SOC2 certification process for Options IT infrastructure. Security Incident response.
December 2012 - November 2015
Design & engineering of Datacenter, WAN & corporate environments. Configuration & support of Cisco, Juniper & Arista routers / switches. F5 load balancers. Cisco, Checkpoint & Juniper firewalls. Providing technical leadership to and being an escalation point for Network Operations & Network Support staff outside the domestic US. Principal Engineer for Infoblox !PAM platform, UK / Singapore NextGen environments & scripting / automation initiative.
Provisioning & facilitating Global internet connectivity. Primary Global Regional Internet Registry (RIR) contact. Utilisation of Corvi I / Netscout / Simena monitoring platforms. Regional primary resource for projects, technical documentation, industry events & staffing duties. Python scripting for DDI rollout and maintenance with Infoblox. Member of the Next-Gen architecture & BCP tech teams ensuring network designs met defined standards and quarterly failover tests met RTO & RPO to ensure SOC2 compliance. SOX compliant environment. Security Incident response.
February 2012 - December 2012
Managing, monitoring & maintaining Juniper, ForcelO, Cisco network infrastructure, Radware load balancers & Juniper & Checkpoint firewalls across the global Secure Financial Transactions Infrastructure (SFTI) & multiple PoPs. SME for DNS, DHCP & !PAM platforms and Corvil Latency Management platforms. Shift leader responsible for handling escalations, governance & Duty Manager role in the event of a SFTI outage. ITIL Process / Change / Incident / Asset management. Network / protocol analysis. Liaising with vendors. SOC2 & SOX compliant environment.
June 2010 - February 2012
Enterprise Administrator solely responsible for the design & implementation of a new EU Infoblox DDI (DNS/DHCP/I PAM) platform. Also responsible for the
installation, configuration & maintenance of European DNS Services (Microso, VitalQIP), Microsoft platforms (Windows Server 2000, Windows Server 2003, Windows Server 2008, AD DS, Terminal Services, File & Print Services, SCOM, SCCM, WDS & WSUS) & maintenance of HP servers (Hardware updates, breakfix & SIM). Tech lead for VitalQIP to Infoblox migration. VBScript / WSH and Perl scripting for OS management, monitoring and DNS synchronisation between disparate platforms (Infoblox, QIP & Windows Server). SOC2 & SOX compliant environment.
October 2007 - April 2010
ISP Hosting Centre Microsoft Specialist in IIS, Active Directory and Systems Management. Responsible for rolling out new projects including the early adoption of Windows Server 2008, IIS 7 virtual hosting & hosted Exchange 2010. Lead the conceptualisation, design and implementation for a companywide virtualisation project utilising Virtual Iron Enterprise Edition and subsequent migration to Citrix XenServer when Oracle acquired and retired the Virtual Iron product. My day to day duties included maintaining the UTV
Internet server room, Windows based LAN/WAN, IP traffic shaping, installing/managing SQL Server and offering co-lo Network Services. During my time in UTVi, Ialso assumed the responsibility for the maintenance & configuration of our core network infrastructure comprising redundant 6500s with Sup720s & Firewall Service Modules and assisted in the design & deployment of a new DSL PoP at LINX. Bash, Perl and WSH VbScripting administration tasks. Contributed to IS027001 compliance application.
December 2006 - October 2007
NOC Engineer providing managed services to SMEs on behalf of Redstone Technology's Professional Services. Responsibilities included Proactive monitoring of clients' networks, hardware break fix, intermediate software support, AV updates, Remote Support/Troubleshooting, User / Mail Account Management, Patch Management, DR site replication verification, reporting and analysis. Pre-sales Technical Consultancy for HP servers and storage: providing technology demos and presentations for potential customers aer building one of the largest HP demo centers in Ireland. Planning, implementation and testing of a major domain and Exchange 2003 to Exchange 2007 migration project.
March 2006 - November 2006
Server product specialist support for PowerEdge, PowerVault and PowerConnect product lines. Responsible for hardware support and fault tolerance technologies. Liaising with engineers. Providing the very highest level of customer service in the marketplace. Providing phone based resolution for advanced server hardware issues (RAID, SCSI, TBU, and Intermittent Errors). Actively supporting the customer during the escalation process in all aspects through problem resolution by taking total ownership of all incident reports.
Engaging necessary support staff to resolve escalations in as short a timeframe as possible. Working knowledge of: Clustering, storage hardware (including Fibre channel). Working knowledge of systems management
January 2004 - March 2006
Promoted through first, second and third level support roles as the final point of contact for 3000+ employees using Work Force Management System (WFMS):
a proprietary application utilising DB2 and Oracle databases, MS Exchange, MS Outlook, Client/Server C# .NET software, Wintel boxes and Service Power vendor software. Also served as the primary liaison between customers, the helpdesk and the product development team.
Professional Certifications