Profiles search

Bret W.

Senior Information Security Engineer at Berkadia
Southampton, PA, United States

Details

Education: Associates

Restaurant Management

The Restaurant School of Walnut Hill College

1996 : 1998

HS

General

South Fork High School

1984 : 1988
Experience: 2022 : Present

Berkadia

Senior Information Security Engineer

Berkadia was founded as a joint venture between Berkshire Hathaway and Leucadia National Corporation. Berkadia Commercial Mortgage is a leading provider of capital and a highly rated primary, master and special commercial mortgage servicer. They have been offering real estate expertise and financial services to clients since 1994. While working at Berkadia I manage day to day operations, manage projects like our recent data center relocation, and provide network support and design ideas at the operations level. The WAN encompasses over 60 MPLS sites connecting with two fully redundant geographically disperse data centers on a dark fiber ring, maintaining connectivity for over 1600 employees in the United States and India.

Principal Network Engineer : where I maintain and support the following :

- Cisco 2800, 2900, 3900, 4300, 4400 and 7200 border and edge type routers

- Cisco 2960x, 3650, 3750, 3850,6800IA, 6807, and 6500

- Cisco 2248, 5548, 56128 NXOS based switches

- Cisco wireless 5508 foreign controllers using a redundant design connecting 1142, 2602i and 2702i

- Cisco wireless 5508 anchor controllers for Guest Access and connecting OEAP 602i & 1810.

- Cisco NGFW 4120 running FTD and Firepower Management Center

- Cisco ISE 1.2 & 2.2 appliances running as PAN/MNT with OVA's running as PSN's for BYOD and 802.1x desktop authentication

- Cisco Prime 3.0 where I have created site maps to monitor wireless heat signatures, client signal strengths and maintain controller configurations and policies

- Fortinet Firewalls for VPN tunnels and SSL clients

- BigIP F5 load balancers

- VPN, SSL, ACL, 802.1x, CA

- TCP/IP, EIGRP, BGP, OSPF, HSRP, VPC, STP, RSTP, LACP

- WAN Connectivity with dual MPLS providers using DS3, MLPP, Ethernet to the PE and dark fiber backbone

- Maintain windows servers running Solarwinds suite of products, Scrutinizer and Cisco Prime

2013 : 2022

Berkadia

Principal Network Engineer

Provide engineering design ideas and maintained a complex network for one of the largest providers of targeted advertising and marketing solutions to America's leading retail and consumer services companies. In this role I provide level 3 client facing support to some of our largest clients - tying their networks into ours - following current best security practices. Maintained and supported the LAN's and WAN's of over 80 MPLS sites for 25,000 employees. Support and maintain a large wireless network of over 25 wireless controllers, wireless control server, wireless guest anchor, 320 AP's and bridges. Migrated all controllers to a pair of 7500's in geographically diverse data centers.

Network Engineer, where I work on but am not limited to.

- Cisco 2800 - 7200 border and edge type routers

- Cisco 3750, 4500, 6500 IOS based data center type switches

- Cisco IOS based closet switches

- Cisco Wireless 4400 and 7500 Controllers, 1100 and 1200 series AP's, 1300 Bridges w/ directional and omni directional antennas, Wireless Control Server, with recently deployed Guest Wireless Anchor.

- Cisco Access Control Server

- Juniper SA-4500

- Checkpoint Power-1 5075, UTM-1 Edge, VPN-1 UTM and Smartcenter R70

- RSA Secure Appliances

- VPN, EZVPN, SSL, ACL, and DMVPN

- TCP/IP, EIGRP, BGP, OSPF, ODR, HSRP, VPC, STP, RSTP, and LACP

- MPLS, Frame Relay, ISDN, DS3, IMA, PPP, EPL, QMOE and MLPPP

- HP Procurve switches

- Maintain servers that operate SolarWinds : Network Performance Monitor, Application Performance Monitor, Network Configuration Monitor, and Netflow Traffic Analyzer

2011 : 2013

Vertis Communications

Network Engineer

Supported a Fortune 500 company with over 3000 employees and 40+ WAN sites. Major projects during my time at Toll Brothers included but was not limited too the following. Assisted with the design and conversion of the corporate Data Center from 6509 switches to Nexus 7010's. Deployed Riverbed devices to over 30 sites over a 2 week period. Maintained and supported the wireless network. Responsible for the design and install of new office networks to include the ordering of WAN circuits and purchasing of all equipment.

Network Engineer, where I worked on the following.

- Cisco 4500 - 7000 IOS and NX-OS datacenter type switches

- Cisco Concentrator 3060 and ASA VPN Solutions

- Cisco 2900 - 3600 IOS closet based switches

- Cisco Pix 501 with over 300 EZVPN tunnels back to ASA

- Wireless, to include 4400 Controllers, 1100 and 1200 series AP's, 1300 Bridges w/ directional and omni directional antennas, and Wireless Control Server

- WAN Acceleration Riverbed Steelhead 250, 550, 1050 and 5050 with WCCP, mgmt and mass deployment

- VPN, EZVPN, and DMVPN

- TCP/IP, EIGRP,BGP, HSRP, VPC, STP, ODR, LACP and some OSPF

- Frame Relay, ISDN, DS3, IMA, PPP, MPLS, EPL, and MLPPP

1997 : 2010

Toll Brothers,Inc

Network Engineer

Served my country in the U.S Army for 3 years as an Infantry Team Leader and then finished 5 years in the National Guard as a Mortarman Gunner. During this time I made it to the highest attainable rank for time in service and completed several Military courses.

- Completed two week Ranger Indoctrination Program in prep for Ranger School, Completed several graded test to earn the Expert Infantry Badge with 1 NO GO, earned Air Assault Badge

- Prepped and organized team for deployment to Haiti for Operation Uphold Democracy

- Acted as Squad leader for 9 men during 2 week field training exercise

- Led Team of 5 men through 2 week exercise at Joint Readiness Training Center

- As team leader I assisted Squad Leader with training materials and training aides, and mentored soldiers

- Used field manuals and followed regulations to maintain military equipment to standard

- Kept daily inventory of all equipment assigned to men on my team while in the field, or in garrison

- Excelled up the ranks of a mortar team and made mortarman gunner in 1 year in the PA National Guard

- Participated in 2 week relief for Hurricane Iniki on the island of Kauai, HI

1991 : 1999

US Army

Infantry Team Leader
Company: Berkadia
Years of Experience: 33

Skills

BGP, Cisco WAN LAN (Advanced, 10+ years deploying and designing networks), Cisco Wireless (Advanced, 5+ years deploying and designing networks), Cloud, Data Center, Disaster Recovery, Firewalls, Networking, Project Mangement (Learning, 2+ years experiance), Riverbed (Learning, 1+ years deploying and designing), Security, SQL (Begginer, starting to work with queries for reporting), Troubleshooting, VPN

About

A well-rounded technology professional with experiences in all facets of IT. I am a problem solver, great communicator, who is well organized, documenter and enjoys deploying new technologies. I have managed and designed complex IT networks over the last 25 years in the Financial, Real Estate and Marketing sectors. My experiences started with desktop support and servers. Then l found a passion for designing and implementing networks. This was all driven by having an I'll do anything attitude and allowed me to evolve into a diversified Engineer. The IT experience I have also ties in 8 years of military service, strengthening my team player ethic and allowing my attention for detail to mature in the business sector.



Over the past couple of years, my skill set has expanded into the Cloud Space and working with Virtual Servers. Dabbling in AWS, Azure and Infrastructure As Code, has shown me traditional networking as we know it has evolved past physical boundaries. The fundamentals of networking from L3 to L7 applies with Cloud service providers and has me wanting more.



Specialties: Includes but are not limited to.

- Cisco, Aruba, & Fortinet: route,switch,and firewall

- Cisco & Aruba: wireless design, survey, and management

- VPN: using software and hardware from Cisco, Juniper, Fortinet and Checkpoint

- Riverbed: deployments using WCCP & inline using CMC for management

- Monitor and collect metrics, design reports with SolarWinds and other products

- Security: virus/malware, acls, RSA, Checkpoint, Juniper, Cisco ISE, 802.1x, Microsoft Defender Suite, IDS, PKI, ClearPass, Policies

- F5 LTM: Created irules, VIP's, pools, and migrations to new F5's

- Visual Studio Code: Using existing teraform modules I have been able to edit code and commit pull request in Azure and AWS.

- Fortinet: 60E-501E's, SDWAN, Firewall Policies, Routing, Authentication, security fabric, FortiManager, FortiAnalyzer