David Carlo

Email: dcarlo@dpc-net.org

Experienced, flexible, and dedicated Computing Infrastructure Technical Lead looking to obtain a Systems Engineering position.

Mr. Carlo’s diverse set of IT related skills in project management, cloud computing, Unix/Linux system design, network engineering, virtualization, troubleshooting, and storage would be an asset to any organization. Mr. Carlo has over 20 years of experience working in the IT industry. He is a leader and a self-starter who works well in a team environment or independently. Mr. Carlo is known for his work ethic and for always finding a way to get the project done.

Operating Systems: RedHat Linux/Fedora; Ubuntu; SUSE; Solaris; Windows Server 2000-2012; FreeBSD; AIX; Cisco IOS, CatOS, and NX-OS; system hardening;

Networking: Cisco routers, switches, and PIX/ASA firewalls; Netscreen; Sidewinder/McAfee Enterprise Firewall; F5 Load balancer; Snort IDS; TCP/IP; OSPF; BGP; 802.1q; EtherChannel; WAN circuits; VoIP; LAN/WAN network design

Software: Sun Directory Server; Cisco CallManager; Cisco Unity; Sendmail; Exchange Server; Qmail; Dovecot/Courier IMAP; SSH; Bind/DNS; Expect/TCL; Shell Scripting; Apache; PHP; IIS; Nagios; Big Brother Network Monitor; Spectrum; MRTG; Expect/TCL; ACE/SecureID; Nessus; Snort; NIS; NFS; MySQL; MS SQL Server; PKI; Visio; Squid Proxy

Virtualization/Cloud: Google Apps, VMware vSphere, ESXi, vCenter, vCloud Director; OpenStack; OpenNebula; VCE vBlock; KVM; AWS EC2, EBS, ELB, VPC; Solaris zones

The Boeing Company, Herndon, Virginia, USA 7/2004 to present

Technical Lead: Supports the Boeing internal IT infrastructure as well government customer’s infrastructure. Duties include and are not limited to the following:

• Works as the technical lead on a project to build and maintain the Boeing Information & Security Systems private development and demo cloud. The environment supports development of 12 Boeing products as well as hosting customer demos. Configures physical and virtual servers, storage, network switches, vCenter, vCloud Director, and backup software. Develops baseline RedHat/Ubuntu/Suse images. Works with new customers to develop migration strategies for integrating their computing environments into the cloud. Monitors resources and plans for future capacity changes.
• Unix/Linux Subject Matter Expert (SME) for the Potomac region supporting 8 programs. Responsible for design, build, maintenance and monitoring of over 300 Unix/Linux systems.
• Networking SME for 6 proprietary programs where he performs as the lead network, firewall, and load balancer designer and administrator. Reverse engineers undocumented networks.
• Computing security SME, David is in charge of securing systems and networks both on the Boeing and on proprietary networks. This includes writing system hardening procedures, maintaining firewalls, and consulting on best security practices. His work as a security SME ensures that both Boeing and customer information remains secure.
• Mentors junior team members. Mr. Carlo provides one-on-one Unix training for 6 different members of his team. David puts together a customized curriculum for each teammate and works closely with them to provide a foundation of knowledge for them to build on. As a result, the team now has 3 additional Unix administrators.
• Designed and deployed a VoIP platform based on Cisco CallManager 3.3
• Provided ongoing administration of Mission systems VoIP platform. This system was comprised of 300 IP phones, two CallManagers, a Unity server, and 5 voice gateways.
• Designed a network that allows Mission Systems to receive real-time flight data from the FAA. The network used Netscreen firewalls for LAN to LAN VPNs and Client VPNs for remote access.

Cable & Wireless, Vienna, Virginia, USA 1998 to 7/2004

Principle Network Engineer / Technical Lead / Unix Admin / NT Admin: Provided technical consulting and support for communications / networking projects / internal systems for the US region and global points as required. Duties included and were not limited to the following:

• Maintained Cable & Wireless America’s internal IP network based on Cisco, Foundry, and Enterasys/Cabletron routers/switches. Monitored network using Spectrum and Big Brother Network Monitor. This network consisted of over 24 sites connected with Frame Relay, T1, MAN Ethernet, wireless, DS3, OC12, GRE tunnel, and Metro Ring circuits.
• Moved and consolidated the C&W corporate data network into their web hosting data center: Engineered and documented the migration solution; Extended layer 3 networks between the legacy and new data centers using L2TP v3 tunnels to minimize system down time; Physically and logically moved Nokia and Netscreen firewalls; Transitioned the core network from Enterasys/Cabletron and Foundry gear to Cisco 6500 routers; Migrated customer T1 and Frame Relay circuits between data centers; Ordered and brought up new DS3 and T1 circuits.
• Redesigned legacy networks to integrate into the Cable & Wireless America converged corporate data network.
• Secured the Cable & Wireless America network. Deployed and administered Checkpoint and NetScreen firewalls. Built and maintained RedHat servers running the Snort IDS to allow identification of security violations. Restricted network traffic using ACLs.
• Configured point-to-point IP VPNs on Nokia firewalls for vendor access to the Cable & Wireless network. Configured client IP VPNs based on the Cisco 3000 and Nortel Contivity platform for users to connect remotely into the internal network.
• Installed and maintained Sun servers to support traffic monitoring, router backups, automated router tools, web services, and Snort configuration tools. Performed security audits of network devices and systems. Assisted UNIX/Solaris administrators to harden UNIX/Linux systems and servers.
• Built and administered Solaris and Linux servers to support the IT network. The IDS servers ran Snort on RedHat Linux. The network monitoring servers used MRTG, syslog, Big Brother, Spectrum on Solaris.
• Served as mail administrator for the Cable & Wireless Internet Engineering mail system using PMDF on the Solaris platform and Exchange on the NT platform.
• Built and maintained Cable & Wireless Internet Engineering’s customer facing web servers. Servers ran custom compiled Apache on the Solaris platform.
• Designed, built, monitored, and maintained 12 Sun servers running Solaris 2.5.1 -> 9, on hardware ranging from Sparc 5s to Enterprise 3500s. Supported 150 users on Linux laptops and Solaris 2.6 and 2.7 workstations. These servers supported the Cable & Wireless Internet Backbone.
• Shared my knowledge of Solaris and Linux with other members of the team. Also, taught junior members of the team how networks are designed, deployed, and maintained in a production environment.
• Headed up the support group for Cable & Wireless's Internet Engineering Division. Acted as the design authority for all the LAN, WAN, Unix servers, and NT servers in production.
• Managed a group of 6 NT and UNIX administrators.
• Designed, deployed, monitored, and maintained the LAN for Cable & Wireless’s new Reston site. LAN consisted of about 20 Foundry LAN switches, 1 Foundry router, 2 Cisco routers, and 4 Cisco switches.
• Designed, implemented, and supported remote access for 400+ users to connect their home computers/networks to the Internet using private DSL circuits, ISDN lines, or 56k analog dial-up.
• Designed, built, and maintained a production computer room consisting of 100 UNIX/NT servers. Calculated power, space, and cooling requirements for the servers. Coordinated the physical and IP routing move of the servers to the space. Ran Ethernet data and console cabling for servers. Kept accurate inventory of servers, power usage, and cabling.
• Deployed and maintained an IP phone system based on Cisco uOne. System consisted of 100 phones, 2 Call Managers, 4 Cisco switches, and 2 Foundry routers.

LCT Incorporated, Virginia, USA 1995 to 1998

Systems Engineer/Developer: Provided technical guidance and support for IT and networking projects. Duties included and were not limited to the following:

• Was solely responsible for all IT functions and software development for LCT’s 50 worldwide users.
• Maintained LAN, Internet connection, NT servers, AIX server, Windows 3.x/95/NT clients, web site, programming of Internet and Intranet web forms, E-Mail client/server, setup and configured workstations.
• Maintained LCT’s proposal development software PSS©.
• Wrote the 2nd generation of LCT’s PSS© software, Proposal Square One.
• Assisted with proposal development
• Migrated 100 clients from Windows 3.x to Windows 95 on a Fannie Mae contract.

Certified Ethical Hacker (CEH), EC-Counsel October 2010

Certified Cisco Network Associate (CCNA), Cisco August 2003

B.S., Longwood College December, 1995

Major: Computer Science – Concentration: Business

Minor: Management Information Systems