Bend, OR
chris.einkorn@gmail.com
http://resume.singlekorn.com
+1 (510) 214-2155
|
|
Work Experience
Staff CloudOps Engineer, Chegg, Irvine, CA, February
2020 – November 2021.
Job Responsibilities
§
Function as the networking SME in the Cloud
Operations team, the IT Operations team, and Security Operations team.
§
Lead networking-related projects with a
focus on operational excellence and scalability to bring the network pilar
into Chegg’s DevOps culture.
§
Address networking technical debt allowing
for the final transition phase of migrating legacy networks to public cloud.
Notable Accomplishments
§
Create and implement a Zero Trust network
operating model at the macro-segmentation layer using Palo Alto Networks
firewalls and GlobalProtect.
§
Develop a scalable and operational implementation
of AWS Transit Gateway which incorporates multiple regions, multiple routing
tables / VRFs, and dynamic routing updates between regions using Lambda
(before AWS TG supported BGP).
§
Re-deploy the legacy global Palo Alto
Networks GlobalProtect Gateways and Portals with a global scale Prisma
Access deployment to aid in Chegg’s transition to all employees working from
home. Incorporate this new network
security capability into the Zero Trust operating model.
§
Create a framework for how public IP’s are used for Chegg Users and Chegg Applications to
support legacy public IP filtering across numerous systems and vendors.
§
Discover, create, and implement a cohesive
IPv4 schema and IPAM for global network operations inclusive of 100+ AWS
VPCs, office LANs, remote users, and extranets.
§
Supervise the refresh and redeployment of
all office LANs onto Cisco Meraki while incorporating all branch offices
into Chegg Zero Trust network operating model.
Principal Architect, Trace3, Irvine, CA, May 2019 – January 2020.
Job Responsibilities
§
Work with the national Cloud Solutions Group
to develop and market professional services engagements around public cloud
adoption.
Self-Employed, June
2016 - May 2019.
Job Responsibilities
§
Remote infrastructure architecture
consulting, management, and support.
§
Perform infrastructure assessments, work
with IT and finance leadership to collect business requirements &
objectives, and to create IT architecture roadmaps to align with the
business.
§
Work with clients and their vendors to
develop business and solution requirements. Assist clients by
providing technical oversight with vendor proposed solutions and
professional services.
§
Assist clients with various scripting
projects relating to identity and access management, Azure reporting and
automation, and desktop management.
Notable Accomplishments
§
Principal engineer leading the concept,
financial analysis, architecture, POC, pilot, design, and implementation of
a project to migrate traditional on-premise VMware
compute, storage, and backup to Azure multi-region IaaS platform.
§
Design, implementation, and operation of an
Active/Active Palo Alto Networks (PAN) security appliance deployment
inclusive of SSL decryption, IPS, URL filtering, UserID,
multiple S2S VPN tunnels, multiple GlobalProtect Portals, multiple
GlobalProtect Gateways, multi-factor GlobalProtect authentication using
PKI, three ISPs, 6 virtual routers, policy based
forwarding, eBGP with Auzre, iBGP, and OSPF.
§
Create a standard design and implementation
for branch office HyperV compute and storage with
MABSv2/v3 to work in conjunction with an Azure-only datacenter deployment.
§
Create a standard design and implementation
of several offices complete infrastructure stack consisting of local compute,
Meraki switching & wireless, Palo Alto Networks perimeter security, OpenGear OOB management, multiple ISP connections, and
power design.
§
Work with identity and access management
teams providing scripting support and API integration support to build scalable
solutions (PowerShell, REST, OAuth, XML, JSON).
§
Design, implementation, and operation of
several 2-tier PKI deployments using Microsoft Active Directory Certificate
Services to support client authentication.
Solution Architect, Presidio, Novi, MI,
January 2014 - April 2016.
Job Responsibilities
§
Meet with prospects/customers and collect
business requirements, solution requirements, and technical requirements.
§
Work with account manager/sales team to
develop customer relationship and solutions and assist in overall sales
process.
§
Create high-level solution
designs/architecture and present to customers.
§
Create Customer facing presentations.
§
Create bill of materials &
configurations for solutions.
§
Build scope of services and professional
service pricing.
§
Write statements of work that align with
service delivery standards and practices.
Solution
Architect, Onyx Pharmaceuticals, South San Francisco, CA, November
2011 - January 2014.
Job Responsibilities
§
Responsible for improving business
performance through the application of business and technical
solutions.
§
Refine and enhance our technology
implementation methodologies company-wide.
§
Responsible for solution development and
architectural review (inclusive of SaaS solutions).
§
Contribute to the development of strategies,
policies, and best practices for the enterprise technology architecture
(ETA).
§
Senior member of the Infrastructure Services
team responsible for a growing number of systems and network services
within Onyx’s IT environment. Primary focus is to take ownership of
IT infrastructure stability, scalability, and performance.
§
Additional focus includes designing and
delivering proven solutions to ensure growing business needs are achieved.
§
This role also assists in solving escalated
tickets from the Helpdesk team and serves as the highest
level support within the Infrastructure Services team.
Notable Accomplishments
§
Principal design and lead implementation of
BitLocker for all enterprise laptops.
§
Principal design and lead implementation of
multi-homed BGP Internet implementation.
§
Principal design and participate with
ongoing migration of the Hybrid CUCM / Lync 2010 Enterprise Voice topology
to a Lync 2010 Enterprise Voice + Lync IP Phones + Branch Office topology.
§
Migrated VI environment from Dell Blade
solution to Cisco UCS B-series.
§
Performed Polycom DMA Super-cluster, CMA,
RMX, and VBP integration with Lync 2010 Enterprise Voice, CUCM, and Sonus SBCs. Inclusive of full audio/video
interoperability with Lync and audio interoperability with CUCM and Sonus.
§
Work with endpoint solution architect on
AirWatch MDM implementation. Inclusive of Enterprise Integration
Server (EIS), end-to-end certificate provisioning for mobile devices, Cisco
AnyConnect Mobile VPN connectivity (user + cert), and Exchange ActiveSync
(client auth.).
§
Principal design for Genomics Compute
solution inclusive of grid computing (SGE on UCS), NFS storage (on EMC
Isilon), and disaster recovery.
§
Participated as a "core team"
member of every major Onyx IT related initiative in 2012. New: HRIS,
CTMS, and CRM. Upgrade: Document Management.
§
Develop and lead the Onyx Architecture
Review Board. A cross-functional IT body to provide direction and
regulation to IT architecture to ensure reliability, interoperability, and
sustainability of systems used by Onyx.
Network Solutions Architect, Lilien
Systems, Larkspur, CA, April 2011 - November 2011.
Job Responsibilities
§
Pre Sales responsibilities:
Position networking architecture and strategy with clients, educating sales
& delivery staff on networking solutions.
§
Integration Engineer responsibilities:
Fulfill the lead engineer role to design, plan, implement, and maintain
network solutions using HP, Juniper, and Cisco products.
§
Provide technical oversight and mentoring to
junior engineers and engineers in other practice groups.
Notable Accomplishments
§ Earned
the HP Master ASE for Network Infrastructure certification.
Senior Network
Engineer, Peak IP Solutions, Pleasanton, CA, May 2010 – April
2011.
Job Responsibilities
§
Design, plan, implement, and maintain a
variety of IT solutions including: Cisco Unified
Communications solutions, Microsoft OCS 2007 R2 Server, Cisco ASAs, Cisco
Routing and Switching infrastructure, and VMware vCenter deployments.
Notable Accomplishments
§
Design, plan, and implement migration of
Cisco Meeting Place Express to OCS 2007 R2 Live Meeting.
§
Design, plan, and implement VMware vSphere /
Site Recovery Manager solution with NetApp SAN to provide disaster recovery
solution for critical Windows based servers with a 4-hour RTO/RPO.
Hybrid NetApp NFS + iSCSI LUNs (for SnapManager).
§
Performed several UCCX deployments and
provide ongoing support for managed services customers utilizing UCCX.
Solutions
Architect, Netarx / Analyst International, Auburn
Hills, MI, December 2007 – April 2010.
Job Responsibilities
§
Pre Sales responsibilities:
Position Unified Communications architecture and strategy with clients,
educating sales & delivery staff on UC technology.
§
Integration Engineer responsibilities:
Fulfill the lead engineer role to design, plan, implement, and maintain
converged network solutions using Cisco products.
§
Provide technical oversight and mentoring to
junior engineers.
§
Business Transformation Services (BTS)
responsibilities: Work with business analysts to deliver comprehensive UC
strategies and roadmaps for enterprises.
Notable Accomplishments
§
Lead Engineer for pre-sales, design,
planning, and implementation for an 11 server and 100+ locations Call
Manager 4.x to CUCM 7.x migration. Project also inclusive of two new CUC HA
clusters migrated from six separate standalone Unity servers, 20+ TDM site
migrations to CUCM, and consolidation of two smaller Call Manager 3.2 and
Call Manager 4.x clusters.
§
Deployed Microsoft OCS 2007 R2 Enterprise
Voice internally to 100+ users to earn the Microsoft Voice Specialized
Partner qualification. Also attended Voice Ignite training, attended the
Microsoft Unified Communications Ranger Summit for Architects, and passed
both the 088-924 and 070-638 exams.
§
Passed my CCIE Voice Written Exam.
Network
Infrastructure Analyst, Dykema Gossett PLLC, Detroit, MI,
April 2006 – November 2007.
Job Responsibilities
§
Oversee the operation of the network
infrastructure.
§
Manage the firm's network and server
monitoring products for proactive management of infrastructure systems.
§
Provide troubleshooting and problem
resolution for network problems on a 24/7 basis.
Notable Accomplishments
§
Implement quality of service controls on the
WAN and the Internet infrastructure to increase performance for line of
business applications.
§
Implement and manage a network availability
and performance monitoring solution to monitor the health and performance
of all network infrastructure systems using SNMP, WMI, and NetFlow.
§
Plan and execute the replacement of
approximately 40 core and access switches coming off-lease across 3
locations.
§
Plan and implement a new calling search
space design to support the specific needs of the firm's cost-recovery
policies using Call Manager Client-Matter Code feature.
§
Plan and implement WAN topology conversion
from dual hub-spoke point-to-point using OSPF to MPLS using BGP.
SBA Team
Lead, Trillium Teamologies, Royal
Oak, MI, Nov 2005 – March 2006.
Job Responsibilities
§
Directly responsible for profitability,
sales, and service of the Small Business Advantage division.
§
Oversee and control daily operations within
the division.
§
Author, monitor, and control service
contracts with the company's customers.
Network Systems
Engineer, Pre-Sales Engineer, & ISP Network Services
Administrator, The OAS Group, Troy, MI, May 2000 – Nov 2005.
Job Responsibilities
§
Design, plan, implement, and maintain
networks and network systems for the company's customers.
§
Train customers to administer Microsoft
Windows 2000/2003, Active Directory, Exchange, Cisco routers, Novell NetWare and various other IT solutions.
§
Work with customers and vendors to help
develop project plans, work schedules, and collaborate on solution design
and implementation.
§
Provide pre-sales engineering support
including:
o Assess
the prospect's IT solution needs.
o Evaluate
corporate, government, and educational request for proposals for bidding.
o Develop
quotations on products and services for a wide variety of IT solutions.
§
Perform product demonstrations for
prospective customers.
§
Design and implement network infrastructure
to support the needs of T1 based WAN infrastructure inclusive of multiple
Cisco routers, OSPF, BGP4, Frame Relay, L3 QoS, and ds1 connectivity.
§
Provide escalated support services for
systems engineers and PC technicians within the organization.
Notable Accomplishments
§
Deploy multi-site route-based VPNs to
replace corporate Frame Relay infrastructure using NetScreen
firewall appliances and Checkpoint FW-1.
§
Designed and implemented tier-2 ISP network
for dedicated Internet connections, web-server hosting, mail hosting, and
server co-location.
§
Evaluate and redesign customer routing and
switching networks to support QoS for VoIP infrastructure.
§
Upgrade and re-deploy Checkpoint FW-1 NG
with multiple enforcement modules and hardware migration of SmartCenter module for a government organization using
the following platforms: Solaris 8, Windows 2000, SecurePlatform,
and Nokia IPSO.
Education
BS in Management
Information Systems, Oakland University, Rochester Michigan, 2006.
Computer Science, Michigan
Technological University, Houghton Michigan, 1997 – 1998.
Certifications
Currently Active
§
AWS Certified Cloud Practitioner
§
AWS Solutions Architect Associate
Previously Held (expired)
§
CCNA – Cisco Certified Network Associate
§
CCDA – Cisco Certified Design Associate
§
CCNP Voice (CCVP) – Cisco Certified Network
Professional Voice
§
CMNA - Certified Meraki Networking Associate
§
Cisco Qualified Specialist – Cisco Express Foundation
Design Specialist
§
Cisco Qualified Specialist – Cisco Unity
Design Specialist
§
Cisco Qualified Specialist – Cisco IP
Contact Center Express Specialist
§
Cisco TTSE – Cisco Trusted Technical Sales
Engineer for Unified Communications
§
CSE – Cisco Certified Sales Expert
§
Cisco Qualified Specialist – Cisco IP
Telephony Express Specialist
§
Cisco Qualified Specialist – Cisco IP
Telephony Design Specialist
§
Cisco Qualified Specialist – Cisco Rich
Media Communications Specialist
§
MCP – Microsoft Certified Professional, 2000
§
MCTS: OCS 2007 – Microsoft Certified
Technology Specialist: Office Communications Server 2007, Configuration
§
HP – AIS Network Infrastructure [2011]
§
HP – ASE ProCurve
Campus LANs [2010]
§
HP – ASE Network Infrastructure [2011]
§
HP – Master ASE Network Infrastructure
[2011]
§
F5 Product Consultant - Local Traffic
Management (F5 LTM)
§
CCSA – Checkpoint Certified Security
Administrator, 4.1
§
CCSE – Checkpoint Certified Security Expert,
4.1
§
NCSA – NetScreen
Certified Security Administrator, 3.0
§
NCSA – NetScreen
Certified Security Administrator, 4.0
§
JNCIA-FWV – Juniper Networks Certified
Internet Associate
§
NetBotz – NetBotz Professional SE
Skills Summary
DevOps
§
AWS Route 53, Lambda, S3, EC2, VPC, ELB,
WAFv2, Transit Gateway, IAM, CloudTrail, Config, EventBridge
§
PowerShell & Bash Scripting
§
Git with GitHub, GitLab, & BitBucket
§
Atlassian Jira & Confluence (user &
admin)
§
Terraform Cloud
§
Some Development Tools & Languages:
(Python, JS, Go, Visual Studio Code, Git, Postman)
Converged
Networking & Unified Communications
§
AWS and Azure advanced networking (BGP,
Transit, VPN, 3rd Party Firewalls, etc.)
§
TCP/IP & IPX Routing Protocols (RIP,
OSPF, EIGRP, & BGP)
§
TCP/IP Network Security, Stateful Filtering
§
OpenGear OOB
Management
§
Cisco, Nortel, & Adtran
Routers
§
Cisco IOS & NX-OS, Nortel, HP E-series (ProCurve)
§
Cisco Meraki MX, MS, and MR
§
WAN Technology (PPP / HDLC / Frame Relay /
MPLS / ISDN)
§
Wireless, 802.11b/g/a/n, Non-802.11, Cisco
WLC, Cisco NCS
§
Quality of Service, Cisco MQC, 802.1p
§
Voice over IP Protocols (SIP / H.323 /
MGCP / SCCP)
§
Hosted Platforms: RingCentral, 8x8, &
Zoom Phone
§
Zoom Video Conferencing
§
Slack for Teams
§
Microsoft Office Communications Server (OCS)
2007, 2007 R2
§
Microsoft Lync Server 2010 - Enterprise
Voice
§
Microsoft Lync 2013 / Skype for Business
§
Microsoft Exchange Server 2010 - Unified
Messaging
§
Office 365 Exchange, Sharepoint,
and Lync
§
Sonus SBC 1000, SBC 2000 (NET UX1000, UX2000)
§
Cisco Unified Communications Manager (Call
Manager) 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x
§
Cisco Unified Communications Manager on
Cisco UCS, BE6000, BE7000
§
Cisco Unified Contact Center Express 4.x,
7.x, 10.x
§
Cisco Unity 4.x, 5.x, 7.x (Exchange and
Domino)
§
Cisco Unity Connection 7.x, 10.x
§
Cisco Unified Presence Server 6.x
§
Cisco Unified Enterprise Attendant Console
3.x
§
Cisco MeetingPlace
Express 2.x
§
Cisco Unified Communications Manager Express
(Call Manager Express) 3.x, 4.x
§
Cisco Unity Express 3.x
§
Cisco IOS Voice Gateways, IOS Gatekeeper
§
Cisco Unified Boarder Element (CUBE)
§
LifeSize Room,
Express, Passport 200/220
§
LifeSize MCU,
Gatekeeper
§
Polycom HDX
§
Polycom RSS, DMA, CMA, RMX, VBP
§
Polycom RealPresence Media Manager (PRMM)
§
Cisco SX and MX Videoconferencing
Datacenter Solutions
§
Amazon Web Services
§
Microsoft Azure IaaS (VM, Storage Accounts,
Virtual Networks, IAM/Azure Security, DNS, Traffic Manager, Load Balancer)
§
Cisco Nexus 9000, 7000, 5000 with NX-OS
§
Cisco Nexus 9000 with ACI
§
F5 LTM 10.x
§
Citrix NetScaler SDX, VPX
§
Infobox (IPAM,
DNS, DHCP)
§
Dyn Enterprise (DynEct)
§
Cisco UCS C-Series Servers
§
Cisco UCS B-Series Blades + UCS Manager +
UCS Fabric Interconnects
§
NetApp FA34XX SAN, NFS, iSCSI, SnapMirror, vCenter and SRM integration
§
Nimble Storage CX
§
EMC Isilon NL400s
§
QNap
§
HP / Compaq ProLiant Hardware
§
HP ProLiant BL p-Class / c-Class Blade
System
§
HP Virtual Connect (Flex-10)
§
HP A-series (H3C) Multi-Layer Switching
§
Dell M1000e Blade System
§
Datacenter Systems Infrastructure (Premise
Cabling / UPS / Power Distribution / Fire Suppression)
Network Security
§
Palo Alto Networks Appliances, 6 – 10.1
§
Palo Alto Networks Virtual Appliance in AWS 9
- 10
§
Palo Alto Networks Virtual Appliance in
Azure 8
§
Palo Alto Networks Panorama 8
§
Palo Alto Networks GlobalProtect Portal,
Gateway, and Agents
§
Palo Alto Networks Prisma Access (global
scale deployment with BGP & AWS service connections)
§
Splunk Cloud
§
Cisco ASA Firewalls 8.2, 8.3, 8.4, 9.1
§
Cisco IOS Zone Policy Firewall
§
Cisco DMVPN
§
NetScreen Firewall
Appliances 3.x, 4.x, 5.x
§
Juniper SRX Branch Firewall 10.x
§
Virtual Private Networking (Site-to-Site,
Client-to-Site, MS PPTP GRE Tunnels, ISKAMP
IPSEC, Route-Based VPNs)
§
Microsoft Enterprise PKI (2008 r2)
§
Microsoft Direct Access 2012
§
Microsoft BitLocker (BDE)
§
Symantec Cloud Security / Message Labs
§
Symplified SinglePoint SAML
§
Okta (IDP, SAML, AD Integration, Okta Verify
MFA)
§
Checkpoint Firewall-1
§
Cisco PIX
Systems
§
AWS EC2
§
Docker Containers
§
AWS Workspaces
§
SAML integrations with Okta
§
Workspot VDI in
Azure
§
Azure Virtual Machines
§
Azure Recovery Services Vault
§
Linux (RHEL 6/7, OEL 6, Ubuntu)
§
VMware ESX Server 2.x, 3.0, 3.5, 4.0
§
VMware ESXi Server 3.5, 4.0, 4.1, 5.1, 5.5,
6
§
VMware vCenter 2, 4, 5, 6
§
VMware Site Recovery Manager (SRM) 4.x
§
Microsoft Windows NT 4.1 - Windows 10
§
Microsoft Windows Server NT 4.1 - 2016
§
Novell NetWare 4, 5
§
Nokia IPSO
Last Updated: 16 August 2022
|