Resume

 

Resume in PDF format

Erik M. Witkop

Security clearance
Government clearance to work on US Customs and Bureau of Prisons network.
DOJ cleared under GSA's FTS2001.
Work Experience
[ Jan2008-Present ] Unnamed systems integrator
Senior Network Consultant
" Responsible for designing, implementing, and testing LAN/WAN, MPLS, wireless and secure networks.
" Professional services to include Juniper routers, switches, SSL VPN and firewalls, F5 LTM and GTM's, Bluecoat ProxySG and Mach5 wan op and more.
" Currently working in a mixed role of pre and post sales.
[ Feb2008-Dec2008 ] Presidio Consulting Woburn, MA
Senior Consultant
" Working as a senior level CCIE consultant for Presidio, I was responsible for designing, implementing, and testing LAN/WAN, MPLS, wireless, video and security networks.
" Implemented and tested many different firewalls such as Juniper, Checkpoint and Cisco ASA/Pix.
" On an adhoc basis, I worked on resolving load balance issues, VPN issues, routing issues, proxy server issues and much more…
" Worked on large projects such as IP connectivity for an entire town.
" Developed scheduling tools in PHP and Perl to improve internal business processes.
" Support account managers in a presales capacity, when needed.
" I had an 80% billable rate and as a security expert, I was the SME (subject matter expert) for any security related questions and designs.
[ July2006-Feb2008 ] Cisco Systems Boxborough, MA
Software Engineer
" Working as a test engineer on the ACS authentication server.
" Responsible for test authentication protocols such as radius, tacacs, EAP-FAST, dot1x, and EoU.
" I am the lead a testing project for NAC on ACS. I was in charge of writing test cases, scheduling activities and meeting release deadlines.
[ Oct2005-July2006 ] Kronos Chelmsford, MA
CorpSec/Network Engineer
" Working as CorpSec/Network engineer at Kronos I was responsible for network security, implementation, design, and health.
" Responsible for a network with Cisco hardware, linux, Solaris, win 2k3, AD, snort, F5 Big-IP, BIND dns, Netscreen firewalls, iptables, Netscreen IVE ssl vpn, PKI, HP Openview and more…
" I am the lead engineer in a team of 8 tier3 engineers.
[ June2001-Oct2005 ] Sprint Manchester, NH
Managed Security Systems Engineer
" Working as a Managed Networks Services systems engineer implementing the following equipment, Nortel router and switches, Cisco routers, switches and vpn's, Enterasys Dragon IDS, Netscreen firewalls, PIX firewalls and wireless networks, Checkpoint firewalls on Nokia IPSO, and Netcache proxy servers. Designed and installed complex networks for large companies in just about every industry.
" Responsible for UAT testing prior to installing network or security device. This includes calling the customer and ensuring full connectivity through routing, nat, or policies. Changes are made here if something is not working as expected.
" Responsible for penetration testing on installed firewalls. Tools I commonly use are nmap, nessus, ettercap, john ripper, netcat, snort, Knoppix STD distro, F.I.R.E distro, hping2, and more.
" Authentication testing. If a customer has managed authentication through Sprint I am responsible to ensure that it is functioning. I support radius, external LDAP, and securID. Radius that is run is Steel-belted radius, the other 2 are self explanatory.
" SME (subject matter expert) for all security products. I support the other 7 engineers, if they have any issues they call and I can usually resolve the issue, 90% of the time. The times that I can't resolve it, I open a ticket with the vendor, be it Checkpoint or Netscreen.
" UNIX administration, including shell scripting, patching, and basic everyday operations.
" PERL. I have written numerous PERL scripts to QA databases and networking equipment. If there is a task at hand, there is a way to write it in PERL.
" Solaris. At sprint we install checkpoint software on Solaris ultra 5's and make firewalls out of them. I know Solaris pretty well. I would say I am an intermediate Solaris administrator.
[ May2000-June2001 ] Sprint Woburn, MA
Managed Networks Systems Engineer
" Working as a Managed Networks Services systems engineer implementing the following equipment, Nortel router and switches, Cisco routers, switches and vpn's, and wireless networks, Designed and installed complex networks for large companies in just about every industry.
" Routing and Switching. I have 8 years experience with routing and switching. Ospf, ISIS, BGP, rip v1 and v2, STP and EIGRP.
" I have configured just about every possibly configuration style and technology on Cisco equipment. I am proficient with the following, snapshot routing, dialer watch-lists, PPP call back, OSPF, EIGRP, RIPv1 and v2, multicasting, IGRP, BGP, acl's, IOS based firewalls, mutual redistribution, policy based routing, dlsw+, stun, and more….
[ Nov 98-May2000 ] Sprint Hartford,CT
Sprint Sales Engineer
" Working as Sprint sales support engineer. As a sales support engineer I was responsible for visiting with customers once a month and going over any issues, describing new products or network changes. If for example a customer saw latency on ssh traffic, I would discuss QOS and what Sprint has to offer.
" Responsibilities included providing month utilization reports for frame, ATM and IP customers. Supporting and enhancing the account, by keeping in touch with the customer and listening to their concerns and needs. Answer any technical questions they had about a given technology, i.e Frame Relay, DNS, ATM, etc…

Training [ Sept 1998-Nov 98 ] Sprint Training Reston, VA
Student
" AE (Associate Engineer) program in Reston Virginia, a mandatory Sprint training program which lasts 10 weeks. Covering anything and everything involving data. Everything from, how a circuit works to the fundamentals of TCP/IP to how Frame Relay and ATM work. I also learned how to troubleshoot x.25 in layers 2 and 3. Covered all the different kinds of routing protocols, i.e. DV and Link State. Too much to mention! Training was taught by the industry known Hill Associates.
" In-depth knowledge of LAN/WAN design with particular emphasis on IP, Frame, ATM, and SNA, VOIP. Subject matter expert on the Nortel VPN, Netscreen and Cisco product lines. Also strong in Catalyst series switches. Also have a working knowledge with Nortel Frame switches and Marconi switches.

Certifications
CISSP, MCSE, PERL (CIW) Certified, CCNP,CCSP, CCSE (AI),
Juniper firewall and SSL, Nortel-VPN NNCSS, F5, and CCIE security #18808.
Education [ Sept 1994-May 1998 ] Manhattan College Riverdale, NY
Student
" Bachelors of Science, May, 1998, Manhattan College, Riverdale, NY. Major: BS, G.P.A.: 3.1.
High School: Acton-Boxborough High School, Acton, MA. 1993.

Accomplishments
SME (subject matter expert) for firewalls: Out of the 5 engineers that Sprint currently has installing firewalls, I am the internal single point of contact for all firewall related issues. I have extensive knowledge in checkpoint, netscreen/Juniper, pix, and Netcache proxy server.

ROUTER QA: I wrote a router QA quality assurance tools that check a cisco router for 25 CLI commands, ensures debug is off, and checks all interfaces for CRC. Before I wrote this, we had 3 people eyeballing each router and looking for errors. It would take them roughly 1 hour to QA each router. My script runs in under 5 seconds and does much more than they were doing. Not only does my script make things much more efficient, we also database each routers results in a database at Service Delivery. So if we want to go check on an activity 3 months ago, we can simply check the database to see if it ever passed QA.

Nokia IPSO 3.8 Tool: I wrote a PERL script that will configure a new Nokia IPSO 3.8, patch it, and scp files to it such as known_hosts, rc.local, and others. It puts in about 40 clish commands and saves countless hours of user configuration of the IPSO box.

IPSO ARP Tool: I wrote a PERL script that will list all the OUI vendor names for all the MAC addresses in the arp table. This helps us determine what kind of devices are behind and in front of the firewall.

Professional memberships A member of the New England ISSA (Information Systems Security Association). More info at http://www.issa-ne.org/

Skills
Perl: Advanced level Perl programmer. It is by far my language of choice.
PHP: Advanced level PHP programmer.
Shell: I prefer bash and ksh. I am expert level with unix and unix commands.
.
Accolades I have received 5 SVE (Sprint Value Excellence) awards in the past 3 years. Each one is for exceptional customer satisfaction, for being an inspired, innovative, and empowered employee. I have also received accolades from particular high profile customers that were sent to my manager regarding my amount of technical experience and the fact that I made myself available 24x7. I can provide you copies of the letter on request.

 

 

Sidebar Menu

• Home
• Tech Info
• Resume
• Services
• Contact
• Bookmarks
• About Me

Links

• My LinkedIn profile
• Juniper Forum
• Cisco Support Wiki
• Cisco CCIE program
• Networkworld.com's Cisco page
• Write-mem.com
• 6200 CCIE Networks

Search Box

Wise Words

"When I have fully decided that a result is worth getting I go ahead of it and make trial after trial until it comes."

- Thomas A. Edison