]> Mark Kamichoff kamichoff@alum.rpi.edu

To utilize my network and systems engineering skills in a position involving network engineering, security, and architecture Proficient in the operation and administration of Juniper SSG/ISG/NetScreen-based firewalls, Juniper SRX-series services gateways, Juniper J-series and M-series routers, Juniper SA-series SSL VPN appliances, F5 load-balancing products (LTM, GTM, FirePass), and various Cisco IOS-based platforms Experience with various server operating systems including, but not limited to, GNU/Linux, FreeBSD, Solaris, IRIX, and Microsoft Windows Network management experience with Juniper NetScreen-Security Manager, Juniper Steel-Belted Radius, SNMP, MRTG, Cacti, and various FOSS tools Unix systems administration experience relating to user and group management, rights assignments, scheduling and managing system upgrades, and reacting to system and product vulnerabilities In-depth knowledge of various network and application-level protocols such as TCP/IP, IPv6, BGP, OSPF, IPsec, HTTP, DNS, and others Proficiencies in ISC BIND, Apache HTTP Server, MySQL, Quagga, Netfilter, PF, and various FOSS network tools including tcpdump, Wireshark, Nmap, arpwatch, scapy, socat, and others Broad knowledge and experience with IPv6 relating to addressing, routing protocols, LAN deployments, and various tunneling and translation techniques across several platforms Programming experience in PHP, Perl, SQL, C, various web programming languages, and the Berkeley sockets and OpenGL APIs Extensive troubleshooting experience focusing on analysis of the synergistic effects of enterprise applications, Unix operating systems, firewalls, intrusion detection systems, and load balancers Certifications - JNCIE-M (#632), JNCIP-SEC, JNCIS-ER, JNCIS-FWV, JNCIA-SSL, JNCIA-DX, GCFW

Currently leading the migration from NetScreen-5000-series firewalls to Juniper SRX3600 services gateways in TWC's data centers Designed the address scheme, configuration, and network topology for implementing IPv6 on TWC's IT networks and data centers Architected and deployed a highly-available SSL VPN-based solution using the F5 FirePass product to allow users to securely access corporate web resources from both inside and outside the enterprise network Assisted in the redesign of the national corporate backbone from a security and firewall perspective Designed the network architecture necessary to allow several mission-critical applications to be available in the event a DR is necessary. Utilized various technologies including MPLS L2VPNs, GSLB, and NAT to achieve quick failovers between geographically-separate data centers.

Assisted with the design, maintenance, and troubleshooting of Juniper firewalls on the IT backbone.  Provided support for complications experienced with BGP and OSPF processes on Juniper ISG-series firewalls. Served as an escalation point for firewall-related problems and issues on the IT network Developed and integrated the ESD software with several network management applications Assisted in the configuration of Internet connection redundancy between the data centers, utilizing BGP and multiple upstream providers Participated in the rapid migration and reconfiguration of 100+ VPN tunnels to compensate for the readdressing of all Internet firewalls in the Charlotte data center Enabled the Juniper NetScreen-Security Manager to be operational in a DR event

Performed routine configuration and management of Juniper NetScreen, ISG, and SSG-series firewalls Designed a network of Juniper J-series routers connected via GRE tunnels to provide head end networks access to certain corporate applications.  Multiple routing instances and FBF were utilized to handle overlapping address space while eliminating the need for NAT. Developed and maintained ESD, an in-house CMDB-like device and inventory management system based on PHP, Perl, and MySQL Created a web-based interactive firewall policy request database to assist with auditing and compliance requirements Administered a customized performance and reporting suite of utilities based on MRTG, RRDtool, SmokePing, and drraw Performed routine administration of several Debian GNU/Linux-based monitoring servers Wrote custom backup scripts for Juniper firewalls, Juniper routers, and Cisco routers to be used for archival purposes and statistical analysis Assisted in the migration of firewall devices from NetScreen-Global PRO to Juniper NetScreen-Security Manager

Configured VPN tunnels between NetScreen firewalls and 3rd-party IPsec implementations Administered and troubleshot security policies and routing issues on the corporate IT network Managed firewalls via the NetScreen-Global PRO management system as well as by Expect scripts Assisted in the configuration and management of HP OpenView's Network Node Manager as it related to network infrastructure-related devices

Implemented security devices on-site and troubleshot various networking and security issues Provided consulting services to clients in the New York City metro area Worked with multiple VPN systems, including various Unix (OpenVPN) and IPsec (NetScreen) implementations Administered GNU/Linux-based mail (Postfix) and DNS (BIND 9) servers

Developed a web-based computer administration system using PHP, MySQL, SNMP, and Perl Researched GNU/Linux-based security issues on private networks, including using IDS tools for auditing breaches Performed operator duties, wireless network administration, and Unix-based backups maintenance

Created a web-based management system to track system performance of four Sun Enterprise 10000 servers Moved the CAIP Newsletter from printed to electronic format

Microprocessor Systems Design Internet Protocols Signals and Systems Electric Circuits Computer Architecture Embedded Control Introduction to Engineering Design Computer Graphics Operating Systems Network Programming Computer Network Security Data Structures and Algorithms Discrete Structures Motivation and Performance Social Psychology Leadership Theory Abnormal Psychology Used BASIC Stamps to create sensors for a ball testing machine Developed and programmed algorithms on the Motorola 68HC11 microcontroller platform required for the "smart" car project Worked on various projects utilizing the Motorola 68HC12 microcontroller Chairman of the Systems Administration Committee (SAC) Founding member of the Xicada community networking project Member of the Linux Special Interest Group