Profiles search

Charles Jennings

VP, Specialist − Information Security Engineer
Jacksonville, FL, United States

Details

Experience: Cyber Operations. That's all the specifics I can give ;)

2014 : Present

Bank of America

VP, Specialist − Information Security Engineer

• Responsible for ISP-wide Cisco network security utilizing ACLs, Control Plane Policing, Bastion Hosts, Team Cymru Bogon Peering, TACACS+ management, and configuration backup management.

• Green Field Architectural Design and maintenance of ISP-wide ISC BIND DNS Caching Server infrastructure utilizing IP anycast addressing.

• Green Field Architectural Design and maintenance of Cisco ASA firewalls and Split-Horizon DNS for ISP-wide Hosted-Voice SIP platform.

• Green Field Architectural Design and maintenance of Acme Packet SBCs for all SIP-based voice services.

• Green Field Architectural Design and maintenance of syslog infrastructure and Stratum 1 NTP servers.

• Project Lead for DNS and Firewall modification for Disaster Recovery of Hosted-Voice SIP platform.

• Work in a team to manage LAN/WAN Core (P) and Edge (PE) Cisco routers and switches as pertains to OSPF and BGP routing.

• Responsible for ISP-wide Linux-based server security and management utilizing OSSEC and IPTABLES.

2008 : 2014

Earthlink Business

Network Security Engineer / Senior Network Engineer

• Green Field Architectural Design, Purchasing, Installation, and Management of Costa Rica and El Paso, Texas Local and Wide Area Networks.

• Enterprise-wide management of Cisco-based network equipment.

---- Layer 2 management and security utilizing 802.1x, VMPS, STP and other Layer 2 technologies.

---- Layer 3 management and security utilizing IPSec (VPN), ACLs, NetFlow, and other L3 technologies.

---- Wireless management and security utilizing 802.11x with 802.1x EAP-TLS

---- Firewall (PIX and IOS) management utilizing IPSec (VPN), ACLs, NAT, Bypass NAT, and DMZs.

• Enterprise-wide management of Windows 2000 / 2003 Active Directory.

---- User / Group management and security utilizing ADUC, GPO, and DACLs/SACLs.

---- PC / Server management and security utilizing ADUC, WMI and AD scripting.

---- Active Directory management and security utilizing ADUC, ADSS, ADDT, DNS, DHCP, WINS, FRS, and other tools.

• Enterprise-wide management of Microsoft Exchange 2003, SMTP Gateways, and SPAM Filters.

• Enterprise-wide management of Intrusion Detection and Prevention Systems (IDS/IPS) utilizing SNORT / SNORTSAM for Network IDS/IPS (NIDS) and OSSEC for Host based IDS/IPS (HIDS).

• Enterprise-wide management of computer security utilizing WSUS, McAfee ePolicy Orchestrator, NMAP, Tenable Nessus, GFI LANGuard, BackTrack, and local Firewall rules.

• Enterprise-wide management of computer health utilizing CACTI with THOLD, MACTRACK, and CONFIGMANAGER plug-ins and utilizing NetFlow, WireShark, Kismet, and SYSLOG-NG.

• Enterprise-wide management of computer imaging and package deployment utilizing Symantec Ghost Server.

• Enterprise-wide management of HIPPA and SOX compliance.

2004 : 2008

Emdeon Business Services

Senior Network Engineer

May, 2000 - Aug., 2002 Project Manager / Senior Network Engineer

• Migration to Windows 2000 : Key member of a small group in the planning and migration of all corporate servers from Windows NT to Windows 2000 with Active Directory.

• Wireless : Assisted in the implementation of wireless networking using MAC filters and WAP (128bit encryption) {802.11x with 802.1x [EAP-TLS, PEAP, LEAP] was not yet a ratified technology}

Aug., 1998 - May, 2000 Systems Analyst - Latin America

• Project Manager : Y2K Ready for the Carter's Latin America operations.

---- Developed and managed the Y2K Ready project plan for Carter's Latin American operations.

---- Managed the migration of non-Y2K compliant Novell Netware to Microsoft Windows NT.

---- Managed the conversion of all other non-Y2K complaint systems to Y2K compliancy.

---- Investigated local governments and utilities (water, electricity, and telecommunications) and instituted contingency plans for business continuity in the case of failures in these entities.

---- Developed and implemented procedures and systems for business continuity.

Jun., 1994 - Aug., 1998 Analyst - Grade I (Highest) - Networks and Telecommunications

• Projects Managed :

---- Internet connection, domain registrations, and DNS records management.

---- Conversion from static non-RFC-1918 IP addressing to DNS, DHCP, and RFC-1918 addressing.

---- Integration and convergence of legacy systems to LAN based systems.

• Enterprise LAN, WAN, and OS Administration :

---- LANs in 22 locations : Ethernet 10BaseT, 100BaseT, 100BaseFX

---- WANs interconnecting all locations : Frame Relay, PPP, CSU/DSU

---- Operating Systems : Novell Netware (3.x), Windows NT, Windows 9x, Windows 3.x, DOS

1994 : 2002

Carter's

Senior Network Engineer

Systems Engineer - Systems Integration

• LAN / WAN Development, Consultation, and Support.

• Network Administration and End-User Training.

• Project Administration and Implementation.

Configuration Specialist

• Configuration of PC Hardware y Software

• Structured Cabling.

• Installation and Support Services.

1989 : 1994

AC3 Computer Centers

Systems Engineer - Systems Integration
Company: Bank of America
Spoken Language: Spanish

About

Christian, husband, father, and fascinated with IP networking and security.



I've been in the IT and Networking field since 1989 and can honestly say I think I've seen it all.



[Waxing nostalgic] I held a Novell CNA when that was the in certification and can remember building my first Novell ELS Level I server. I stopped working with Novell when it went into the 5.x chain (After having built more than 500 different servers from v2.2, v3.12, and v4.1). That was when I jumped into –on the server side - Windows NT 3.1 and worked with Windows Server OSs until stopping with Windows 2003. I've also had a long history in the *nix world. I first delved into this world with SCO Xenix - albeit lightly - as a bootp server for Terminal Servers. I've also worked lightly with IBM AIX - but, today, I work mostly with Linux - primarily RedHat flavors.



As to hardware - I first started networking with IBM PC Network running at a whopping 2Mb/s - Whoo Hoo what a rush!!! Then I graduated to Token Ring and doubled that to 4Mb/s and soon after quadrupled to 16Mb/s. (Anyone remember putting together Type 1 connectors? Lots of fun… not!) Then on to 10Base-2 (missed the whole 10Base-5 vampire taps - Thank God) But 10Base-2 wasn't all that great either with one loose T-connector bringing down the whole network. (Arggg) Then the networking savior had finally come: 10Base-T followed by 100Base-T!!. Now GigE is the de-facto norm and, in the provider world that I now work, PPP T1s up to 10G is everyday work for me.



I first got into routing with Novell IPX/SPX (which was an experience), then with NetBIOS (which was worse than IPX/SPX), then (finally): IP. Wonderful IP. And here I am: If it's IP, I'm routing it, policing it, filtering it, inspecting it, tracking it, reporting on it, putting voice on it, securing it, and generally just enjoying working with it.