Network Security Observability - Pioneered the integration of 15TB/day network connectivity and security logs into a unified warehouse(Observe) for analytics, enhancing network, cyber, user and service-level monitoring capabilities. Developed correlations, dashboards and alerts using OPAL, surpassing prior frameworks such as Splunk, ELK, and Snowflake.Secure Access Service Edge (SASE) - Revealed a $20M user productivity impact during POC, outweighing savings for Broadcom SaaS SWG, CASB and DLP. Identified a DLP issue, and developed a testing capability to quantify risk. Recommendations for IPSec deployment and Azure IAM to reduce user impact and remove DLP risk as well as Crowdstrike mitigations.Engineering Lead for Agent Interoperability Task Force - Using security data and working with a cross organizational team across cyber and network, developed and implemented a holistic dashboard which resulted in meaningful useability improvements including a 90% reduction in AD account lockouts, a 60% reduction of NAC blocks, and a 30% reduction in VPN failures.DNS DDoS Defense - Detailed analysis of attacks over 3 years with Arkime, Zeek, Palo Alto and PCAPs of DDoS attacks, revealing deficiencies in vendor protection and providing assessment reports of attack vectors shared with other financial sector organizations. Drove the selection of a new DDoS provider along with new DNS architecture and led post-cutover analysis to resolve ongoing issues.VPN WFH Expansion - Capacity analysis and recommendations drove rapid scaling of F5 VPN services, tripling capacity to reliably support 100% remote work within two weeks of the beginning of the COVID-19 shutdown. Network and Cybersecurity Incident Response - Tier 4 network and cyber troubleshooting for the NOC/CSOC and architected and built network observability tools and runbooks, leveraging technologies such as Arkime, Wireshark, Splunk, ELK, Zeek, Observe, Snowflake, and Riverbed AppResponse.

Senior subject matter expert to internal consultant services division boasting 200+ engineers, on Riverbed Performance Management (RPM) application suite, with specialization in AppResponse (ARX), Transaction Analyzer (ACE), SteelHead, and NetProfiler.Developed the services catalog, including:• Microsoft Office 365, including Mailbox Migration Acceleration• Cloud migration assessment studies with predictive analysis• Performance monitoring and deployment of end-user optimization based on Steelheads and Steelhead SaaS• Security monitoring and diagnosis serviceDesigned and scoped services during the sales process of Professional Services, including requirements gathering, definition of the technical aspects of all services and development of proposals and SOWs.Provided technical leadership for complex long term or managed services provided by Riverbed and partners (Proctor & Gamble, CapitalOne, Asurion)

Provided technical resources to Professional Services field consultants and sales teams. Lead technical resource for Application Performance Management (OPNET) solutions in Riverbed Performance Management. Major projects included:• App911 Lead – Developed the service and led and/or executed numerous rapid response application troubleshooting efforts, identifying root-cause of issues resulting in poor performance or application availability problems (Gannett, ICBC, Sears, West, Owens & Minor, Aviva, Barnes & Noble)
• Enterprise Email performance troubleshooting - Year-long effort to identify and correct issues related to deployment of MS Outlook/Exchange during 1.2M user DISA cloud-based rollout (US Army/DISA)• Data Center Consolidation - Data collection and analysis to support regional data center consolidation and application rationalization effort (British American Tobacco)• Security/DDoS monitoring support with packet-based alerting, triage and immediate response recommendations (CapitalOne)• Network and server capacity planning, supporting merger & acquisition growth (JP Morgan Chase)• Pre-deployment load testing of multiple GIS-based/ESRI apps (USDA Forest Service)

Provided consulting services to customers, on both short and long term engagements, including leading many larger multi-consultant projects. Major projects included:• Network modeling and capacity planning for the Navy and Marine Corps out-sourced network. (US Navy/NMCI)• Created methodologies for pre-deployment application performance testing (ANR - Application Network Readiness) with chargeback (ChevronTexaco)• Managed model development for custom military modeling framework (NETWARS/JCSS – US Army)• Developed internal process for execution of ANR and ACE Jumpstart engagements• DES Model Development - TCP Fast Retransmit, EPON, SPDU, IEEE1394, CAN, ASCB-D, military radio models

Modeled (OPNET Modeler) application performance for airline outsourcing to SABRE (USAIR)Developed an OPNET model of S/390 storage access over ESCON (Hitachi)Performed performance evaluations and application benchmarks for 10k node satellite WAN, including analysis of application benefits of TCP Performance Enhancing Proxy (EdwardJones)

Designed, developed (C) and tested protocol models for inclusion in OPNET standard model library - HTTP/Web, TCP/IP, Netware/NCPBuilt Netware testbed for reverse engineering and validation of Netware protocol models

Performance analysis and capacity planning for Solaris and Windows servers. Major projects included performance testing for corporate Exchange 5.5 migration and performance monitoring for Fidelity.com, including embedded response time instrumentation for online stock trading.

Capacity planning, performance monitoring and performance management of the Unisys A-Series mainframes, as well as HP-UX, Stratus and Windows servers.Analyzed load testing of SWIFT II network prior to deployment.