|
ALBERT W. ROETHLISBERGER
318 Summitt
Drive
Sanford, North Carolina 27330
albert@roethlisberger.org
TECHNICAL PROJECT MANAGEMENT
– NETWORK & SECURITY ARCHITECT
Multifaceted technical career with 13-year track record
of leadership, innovation and success
Technically sophisticated IT Security Architect and Project Manager
with over 10 years’ experience specializing in security, remote access and wide-area network architecture. Demonstrated
ability to translate business requirements into IT infrastructure that creates value and return-on-investment for businesses.
Expert in all areas of technical support, field services, project management, design, testing and implementation for large
corporate-wide networks and communications systems. Able to forge solid relationships with strategic partners and build consensus
across multiple organizational levels.
CORE COMPETENCIES:
** IT Strategic Planning
& Architecture
** Full Lifecycle Project Management
** Customer Facing Presentation
** Contract Negotiations
** Client Relationship Management
** Quality Assurance and Testing
** Security Research & Publishing
** Team Leadership
** Product Development &
Testing
** Vendor Management
PROFESSIONAL EXPERIENCE
CISCO SYSTEMS,
INC., San Jose, California and Research Triangle Park, North Carolina 7/1997 - 10/2006
Intrusion Prevention
System Signature Developer and Project Manager,
1/2005 – 10/2006
Researched, analyzed
and documented security threats to computer hosts and networks for a major provider of networking equipment with $28 billion
in annual revenue and 50,000+ employees. Developed and released intrusion detection / prevention system signature software
packages to detect and mitigate Cisco customer security vulnerabilities / threats. Managed and balanced tactical and strategic
projects in a fast-paced, high-priority environment. Managed high-security and confidential communications regarding security
threats and intelligence with customers, vendors, and partners. Liaised with the Cisco Product Security Incident Response
Team (PSIRT), consulting on intelligence gathering and threat mitigation. Key Achievements:
** Researched
and developed signatures for the $150M Cisco Intrusion Prevention (IPS) and Intrusion Detection System (IDS) product suite,
critical to automated infrastructure operational security for a range of customers.
** Played a key role
as senior developer and technical writer of project team, researching and documenting vulnerabilities and threats, contributing
to the Cisco Security Encyclopedia (CSEC).
** Offered significant contributions to the design and development
of the structure and content of the Cisco MySDN security product and threat portal.
** Acted as a senior
developer and project manager for the IDS/IPS Team deploying, documenting, and developing staff training for high profile
projects such as automated Cisco Management Console (MC) Testing, Outbound Marketing and Messaging, and Software Publishing.
** Developed Automated MC Testing process and procedure which relieved staff from manual quality assurance
testing during build and signature update package testing. Gathered requirements and designed Outbound Mail Project for IDS
/ IPS product software notifications.
Cisco IT Solutions and Network Architect, 4/1999 –
12/2005
Contributed as the senior architect and key member of a team focused on developing and
deploying Remote Access, Security and Virtual Private Network (VPN) solutions for Cisco IT and engineering. Consulted with
Engineering, Marketing and executives on product development, emerging markets and acquisitions. Presented to and consulted
with customers on Cisco product and technology solutions. Served as liaison to Cisco Corporate Information Security and executive
team. Supported the IT Alpha test network, testing new products in parallel with the operational network. Evaluated and consulted
on development of various products including wide-area networks (WANs) and local-area networks (LANs), wireless LAN / WAN,
Quality of Service (QoS) Provisioning Systems, alternative VPN solutions and firewall and VPN appliance development. Key Achievements:
** Championed and guided forward-thinking technology and procedures, evaluating early adopter technology
and product solutions and provided structured and documented feedback to the business via Concept Commit, Execution Commit,
Product Requirements Document, Gap Analysis, and Requests for Proposals (RFPs).
** Key advisor for the
development of the Cisco VPN 3002, PIX 501, Cisco ASA, Aironet products, and Cisco 800 Series Router, Enterprise Class Telecommuter
VPN service, and VPN solutions.
** Designed directly or as part of a team: Cisco Corporate Wireless LAN,
Cisco IDS/IPS Design and Deployment, Global Remote Access, WAN VPN Services, and Cisco Corporate Firewall.
**
Offered advanced VOIP guidance, researching and designing solutions for remote access users and consulting on corporate-wide
deployment of VOIP system.
** Played an integral role in evaluating / deploying corporate Instant Messaging
and Groupware solution.
** Integral to post acquisition development via IT acquisition team efforts for
Selsius (VOIP), Netspeed (DSL), Altiga (Cisco VPN 3000), Compatible Systems (Cisco VPN Solutions), Okena (Cisco Security Agent)
and Aironet (WLAN) as well as pre-acquisition assessments in security and wireless.
** Prepared consultative
technical documentation including Cursory Technology Evaluations, Detailed Technical Evaluations, Product Requirement Documents,
Architecture and Design Documents, and White Papers.
** Offered critical contributions to ongoing development
and evolution of internal network design as well as implementation of project and services design and life cycle governance
processes including Service Oriented Architecture (SOA) and Cisco Service Oriented Network Architecture (SONA) design criteria.
** Consulted as subject matter expert (SME) to coordinate with outside venders including Black Ice, Zone
Alarm, Equant, and IBM Lotus on scalable enterprise-class product development for large to Fortune 500 size companies.
Cisco IT Remote Access Services Team Lead, 7/1997 – 3/1999
Managed
six-member engineering and administrative staff and the development of automated and outsourced provisioning systems for global
Cisco Remote Access Services, responsible for policy creation, staffing, operational management, and fiscal oversight. Managed
integration of legacy IT and Engineering Remote Access Services. Served as escalation point for technical and administrative
issues. Prepared ad-hoc, quarterly and annual reports on operational statistics, financial impact, customer satisfaction,
and project status to management and executive staff. Key Achievements:
** Negotiated, designed, deployed,
and managed internal broadband solutions including ISDN, Frame Relay and xDSL.
** Key architect and project
manager in the outsourcing of asynchronous dial access services and VPN solutions, with responsibility from guidance of the
RFP, negotiation of contract, and design through implementation of the outsourced dial solution. Worked with the vendor’s
network and software staff to design a first of its kind fault tolerant network and enterprise class client software.
** Developed and managed automated and outsourced service provisioning guidelines and systems for remote access
services, including automated standard reporting of usage and billing and departmental cross-charges to support the services.
** Managed integration of legacy IT and engineering disparate Remote Access Services into one unified and
managed system.
** Developed structured policy and procedures for global Remote Access Services operations
and provisioning.
IAMERICA, INC., Monroe, Louisiana
Senior Engineer, Architect and
Systems Administrator, 4/1995 – 6/1997
Charged with creation and deployment of core infrastructure
and remote access services for an internet service provider (ISP) with $200M in annual revenues. From scratch, designed
and implemented access services, to include ISDN, asynchronous dial, Frame Relay and dedicated circuits. Instituted and managed
all network resources, including IP address management and LAN / WAN services. Served as systems administrator for DNS, SMTP
and NNTP/NNRP. Oversaw 3-member network engineering team and provided senior escalation support for management, sales and
technical support staff. Key Achievements:
** Engineered from ground-up and provided ongoing network
and systems support for 50,000+ clients.
** Designed and delivered all technical training and documentation
for the engineering, technical support, and sales staff.
** Built, from scratch, service-side and office
/ support network infrastructures, to include installation of cables, network design / topography, and equipment acquisition;
successfully implemented highly scalable design.
** Created all process and procedures for operating
and maintaining the ISP network including documentation for customer order fulfillment.
LONG DISTANCE
SAVERS INC., Monroe, Louisiana
Database Administrator and Applications Developer, 9/1994 – 3/1995
Designed, implemented, and maintained the LDS database used to track all ordering, provisioning, trouble ticketing,
and inventory of circuits and services for a $150 million dollar business, providing national and international long distance,
as well as dedicated data services throughout the United States. Key Achievements:
** Redesigned the
legacy database systems and user interfaces to create a more robust, reliable, efficient, and user friendly data entry and
reporting system. Performed a complete redesign of tables and interfaces to scale the system beyond its current capacity and
improved system stability.
** Designed and implemented a trouble ticketing system for tracking customer
and network issues.
** Produced presentation to executive staff on suggested upgrades and system migration
to a carrier class inventory and trouble ticketing software package.
EDUCATION AND CREDENTIALS
Bachelor of Arts in Management, Concentration in Computer Information Systems
NORTHEAST LOUISIANA UNIVERSITY,
Monroe, Louisiana
CERTIFICATIONS:
Cisco Certified Security Professional (CCSP), 2003-2006
Cisco Certified Network Associate (CCNA), 2002-2006
Cisco Certified Design Associate (CCDA), 2002-2006
Cisco Security Specialist 1 (CSS1), 2002-2003
PROFESSIONAL DEVELOPMENT:
2005: Keeping
Cisco Secure - Software Image Publishing System - Cisco IPS 5.0 Technical Assurance Center(TAC) Training - Cisco Laboratory
Safety and ESD Training / 2003: Antitrust - Workplace Harassment Prevention / 2000: Finance for Non-Financial Employees -
Developing Team Plans - Working and Communicating Across the Globe - Team Building - Negotiating Skills - Working & Communicating
Effectively with Asia - Keeping Your Team on Course, Tools & Techniques / 1999: IOS/ENA Design Principles - QPM 1.1 -
Cisco Voice Over Frame Relay, ATM, IP, - CBEII—Cisco Overview, Products and Vision Project Success - Cisco LAN Switch
Configuration - Network Operations for IGX Products / 1997: AS5200 Training - Configuring, Monitoring and T/S Dialup Services
AFFILIATIONS:
SANS (SYSTEMS ADMINISTRATION, AUDIT, NETWORK, SECURITY) INSTITUTE –
Educational Conference Presenter (2000)
Co-presented a course on architecture, security concerns and operational issues
associated with providing remote access services.
UNITED STATES PATENT 7158776:
Techniques
for voice-based user authentication for mobile access to network services (January 2007)
TECHNICAL
PROFICIENCIES
OPERATING SYSTEMS: Microsoft Windows, UNIX, Linux, Mac OS, IBM OS2, Sun Solaris, VMS,
Cisco IOS
HARDWARE PLATFORMS: Sun Microsystems, HP Servers, Compaq Servers, Storage Arrays, Network Appliance
TELECOM PLATFORMS: AT&T DMS-250, Nortel Meridian PBX, CSU/DSU, T-Berd, traffic testing and load simulators,
Cisco CallManager, VOIP Solutions
NETWORKING PLATFORMS: 3Com, SMC, Cascade, Ascend, Lucent, Cisco 700, 800, 1600,
2500, 3600, 4500, 7000, 7200, 7500, 7600, 12000 Series Routers, Cisco 1800, 2800, 4500, 5000, 6500 Catalyst Switches, Cisco
Access Path, AS5200, AS5300, AS5400, AS5800, Stratacom/Cisco MGX, IGX
SECURITY PLATFORMS: Cisco IDS/IPS product
suite, Cisco PIX, Cisco ASA, Cisco VPN Products
SECURITY TOOLS: VNC, VMWare, Ethereal, Metasploit, CORE, CANVAS,
TCP Replay, HexEdit, Snort
CRYPTOGRAPHY: IPSec, Kerberos, SSL, SSH, Digital Certificates, PKI, PGP, Smart Cards,
Biometrics, PPTP, Digital Signatures, Hashing, Disk and File level encryption, SecureFTP
ARCHITECTURE: Microsoft
Active Directory, IBM Lotus Sametime, LDAP, DNS, DHCP, WINS, SAMBA, L2TP, IPX/SPX, Token Ring, HTTP, SMTP, SendMail, NFS,
PPP, IMAP, POP, Frame Relay, ISDN, FTP, NNRP, NNTP, RADIUS, TACACS, EIGRP, BGP, OSPF, SNMP
PROGRAMMING: C, C++,
Cobol, Visual Basic, SQL, HTML, Scripting , XML, PERL, Regular Expressions
|
