Security/Network Specialist (OACCAC http://www.oaccac.com) Nov 2008 – Present
Responsible Network / Security Operation
Major accomplishments
Manage 300+Checkpoint/Nokia firewalls including Checkpoint UTM130/270/570/1070, SOFA, ip40/130/260/265/330/350/530; 150+ sites across whole Ontario
Checkpoint NGX R62 upgrade R65, R70, HA Management console, Load Sharing Gateway and Connectra (SSL Network Extender), Secure Client Automate Deploy.
Implementation VPN across multiple platforms (Cisco, Sonicwall, Checkpooint), Checkpoint Connectra R62 upgrade R66
HFA Patching to Checkpoint, Firmware upgrade for NOKIA, SOFA and UTM
McAfee ePO Orchestrator 3.6.1/4.0, McAfee VirusScan Enterprise 8.5/8.7, Host Intrusion Prevention 6/7, Site Advisory,
Solarwinds Orion Network Performance Monitor v9/Engineer's Toolset v10.
Wireless, VoIP Implementation and Configuration
Consulted with the third-party vendors such as Checkpoint, McAfee, Nokia, Dell, All Stream, e-Health Ontario, Hydro-One to ensure their services and technologies in art-of -technology.
System Administrator (Crescent Group Ltd.) Mar
2007 – Oct 2008
Responsible for production/developing servers maintenance, desktop technical support, network configuration, data backup, security monitor, web and technical production for client deliverable.
Major accomplishments
l Administrate 15+ servers hosting clients web sites using IIS5/6 as the part of whole IT Windows AD infrastructure. Design and script to synchronize the web sites in developing and production environment.
l Hands on setup and implementing SQL server redundancies plan, using Log Shipping and Replication technology to synchronize databases between multiple SQL servers
l Manage, diagnose and troubleshoot AD; design and deploy Group Policy with scripts to control network actions; manage user accounts, groups, permissions, and shares etc.
l Set up variety windows system services, such as Mail, IIS/ASP/PHP, SQL2000/2003/Mysql database, Terminal service, Visual Source Safe 2005, WSUS, RAS,FTP/Secure FTP, SSH, Indexing Service, VPN, Fax, Print service, DNS and DHCP
l Design and implement a cost effective solution to optimize network throughput and improve server performance. With MRTG/PRTG to monitor whole network and server environment.
l Troubleshoot network problems with packet capture and analysis software such as Wireshark/Ethereal.
l Executed latest techniques research and give suggestions to meet company business goal with Vmware Infrastructure, ESX, Server, and Windows 2008.
l Integrate Mac OS X Servers and Linux Server with current Windows AD system infrastructure.
l Design and implement whole disaster recovery plan for essential data. Create and monitor backup systems with Vertias BackupExec , DVDs, Mobile Hard Drives and tapes
l Create and implement security policy at network boundary with SonicWall Firewall and Symantec Anti-Virus Enterprise. Uses of SSH port forwarding include accessing database servers, email servers, Remote desktop, Windows Terminal Services and VNC connections.
l Coordinate purchasing of IT assets; Maintain inventory of IT assets; Purchase software, hardware and track licensing compliance; Prepare annual IT budget
l Provide support to system related technical issues from clients to servers, from Nortel phone system to network router, from Windows to Macintosh
Windows System Enginner (Explorer Gear, Canada.) Oct 2006 - Mar 2007
l Installation, configuration and administration of multiple AD sites based on Windows 2003, Sql2003 with Cluster and Network Load Balance techniques.
l Upgraded windows infrastructure from windows 2000 to windows 2003, Sql 2000 to Sql2005, Exchange 2000 to Exchange 2005.
l Cooperate with security team to make security policy and configured on PIX/ASA firewall.
l Integrated site-to-site IPsec VPN with current Cisco network infrastructure based on Cisco 3640/2611 router and 3550/2950 switches. Deployed SFTP to secure file transferring.
l Provide IIS/FTP/DNS/DHCP/RAS administration service, and website content management service with Frontpage, Dreamweaver, UltraEdit, Photoshop etc.
l Performed security checks and installed WSUS service. Built whole integrated adequate anti-virus protection based on Symantec Antivirus Enterprise 10.
l Created virtualization server farm with Vmware Server2.
l Used scripts and Group Policy to deploy software packages and control clients PC desktop environment.
l Wired LAN/Wireless LAN (from design to cable installation) building and maintenance
l Desktop technical support via telephone, e-mail and on-site troubleshooting
Network Administrator Oct 2000 - Sep 2006
CNDI (China Nanshan Development Incorporation Group), China
Responsible for setting up servers, designing and implementation of network topology, management databases, implementing security, setting up of firewalls and authorization systems, performing periodic backup of data and automating reporting tasks, and executing hardware and software updates when necessary. In addition, other responsibilities included incorporating new, and upgrading existing systems, periodic checking, analyzing and implementation of fault tolerant systems, allotting IP addresses and ensure that the network runs seamlessly, programming software that controls networks
Major accomplishments
l Designed and implemented 3 layer network infrastructure with Cisco Routers (2500/2600, 2800, 3640, 3725, 7200) & Switches (6506, 4506, 3750, 3550, 2948G, 2900), F5 Big-IP, Dell&3COM Switches
l Deployed Citrix Presentation Server 4.5 Farm with 6 frontend servers, 4 Kingdee ERP mid-layer servers, and 2 SQL Cluster database backend Server based on Dell hardware.
l Designed and implemented network whole security with cisco Pix525/515, Nokia IP350(Checkpoint NG), LinkTrust IDS, Intrusion Security Suite, I-Security Firewall, SurfControl RiskFilter (anti-spam)
l Installed and configured Microsoft AD infrastructure network with Exchange, SQL, Lotus Domino applications
l Monitored the operation of Win2003, Cisco Switches, Routers, PIX Firewalls, LinkTrust IDS, Bandwidth Balance Devices, and other applications running on these devices by MRTG, Solarwinds, CA Unicenter and Cisco Works with SNMP and Netflow protocols.
l Made and executed database backup/restoration plans and checked data integrity with Veritas Backupexec, CA ARCserver and Symantec Ghosting Enterprise Application.
l Analysis network performance and troubleshoot network issues with Sniffer/Wireshark/Ethereal.
l Examined new technologies and ensured most effective tools, utilities and technologies are used in operation and enterprise system management in line with company’s objective
l Responsible for all aspects of 800+ users’ metropolitan area network with the leading an effective three-person team according to ITIL requirements.
l Consulted with the third-party vendors such as IBM, Cisco, Microsoft, Dell, Citrix, CA, Checkpoint, Symantec and F5 to ensure their services and technologies in art-of -technology.
IT Technician Jun 1996 - Oct 2000
Shenzhen Yantian Port Group, China
Responsible for supporting PC, Server, network and applications in a Help Desk team mainly within a Microsoft NT environment and programming web site for the company. Major duties involved providing clients with guidance, assistance, and coordination through telephone support and on site assistance.
Major accomplishments
l Kept OS system updated and network security in the system team
l Keep hardware and software inventory updated
l Installed and managed multiple Windows hosting servers
l Provided Technical support for enterprise servers and clients.
l Manage system backup and restoration
l Worked with Web Application Development Group for YICT Web Site (ASP, MS SQL, IIS) and administrate windows NT server system.
l Participated in programming the office applications with Visual Basic and MS Foxpro.
