VLAD VILADEGUT 13087 Rose Petal Circle # Herndon, VA 20171 617.970.6931 # vladv at doom.net NETWORK ARCHITECT / SOFTWARE ENGINEER / SYSTEMS ADMINISTRATOR SUMMARY ================================ Thorough understanding of IP and IPX networking, associated lower and higher level protocols, and various routing protocols: RIP, OSPF, IGRP, EIGRP, BGP. Worked in network design and implementation. LANS / WANS, Frame Relay, Clear Channel, SONET, ATM and SMDS. Proficient with Cisco hardware including 57x, 100x, 16xx, 17xx, 25xx, 26xx, 52xx, 700x, 72xx, 75xx, 12xxx series routers, 19xx, 29xx, 50xx, 55xx, 65xx series switches with catOS and IOS, having used it since version 10.1. CCNA, CCNP certified. Working towards CCIE certification. Extremely knowledgeable in UNIX system internals, administration, security, and programming. Strong advocate of computer security, cryptography, and safe programming practices. Amateur interest in cryptology, primarily in cryptanalysis. Amateur interest in Electrical Engineering, primarily in digital designs, circuit analysis, robotics, and embedded systems. TECHNICAL SKILLS ================================ - Operating Systems: OpenBSD, FreeBSD, BSDI, NetBSD, Solaris, True64 Unix, Linux, Minix, Plan9, Irix, Windows NT. - Programming Languages: PIC asm, x86 asm, C, C++, Python, Perl, Tcl/Tk, Expect - Scripting / Other Languages: sh, csh, sed, awk, lex, yacc, PHP, Javascript, SQL, HTML. - Computer Hardware: Intel/AMD/Cyrix x86, DEC/Compaq Alpha, Sun Sparc/UltraSPARC, various 8-bit/16-bit Microcontrollers and numerous TTL and CMOS Integrated Circuits - Networking Hardware: Cisco, Juniper, Livingston, Ascend, Avici, Riverstone, Alcatel, Foundry, and various other obscure routers, firewalls and switches. WORK EXPERIENCE ================================ 2005 - Present "CompUsa" Global NAPs Senior Network Architect 2000 - 2005 ------------------------ * Designed and maintained national OC-12/OC-48 backbone running on Cisco, Juniper, and Cerent hardware. Created peering relationships at next generation NAPs such as Equinix Ashburn, Los Angeles, Chicago, and PAIX in Palo Alto and Vienna. * Wrote various programs and tools for telephony systems, some contributions include: - SS7 ISUP decoders targeted at ICS Convergent and Nortel DMS-100 phone switches (C and Perl) - Call Detail Record decoders and analyzers - Reverse engineered proprietary binary ICS databases and event logs (C and Perl) * Maintainer of RADIUS authentication servers for national dialup ISPs, Ziplink and WorldNet and several smaller local ISPs * Intrusion analysis, detection and recovery including post-mortem analysis on compromised machines and experimental honey-pots using home grown tools and various open source packages. * Implemented various DDoS countermeasures and prevention techniques across the network, including tracing attacks back to source hosts across different autonomous systems. * Was permitted to work on open source projects. Some contributions include numerous patches to Blowfish cipher implementations for instant messaging clients ServInt Internet Services Senior Network Engineer 1997 - 2007 ------------------------- * Aided in the design and deployment of a nationwide clear channel DS3 and OC-3 backbone. * Monitored and maintained a national backbone, POPs, and connectivity to major NAPS such as MAE-East, MAE-West, Ameritech AADS, PACBell. Implemented different routing techniques and switching technologies across the network. * Built and turned up numerous POP's around the country including: wiring cabinets/racks, building and configuring routers. * Assembled servers from custom parts and installed operating systems. * Administered 300+ servers running various Unices. - Troubleshooting hardware, software, and kernel problems. - Finetuning and recompiling system kernels. - Compiling and installing software. Managing services: HTTP, SMTP, DNS, SQL, FTP, NNTP, etc. - Designing and implementing security policies, regular security auditing. * Wrote various custom tools and programs for Engineering and the Network Operations Center, some contributions include: - Customer database and trouble ticketing system. (C and Perl using SQL and HTTPS). - Network monitoring system, monitoring hundreds of servers and leased lines in under 30 seconds. (C and Perl). - Automated Installation tool to assist in building servers. Customizing system and packages in minutes. (Tcl and Expect). - Custom whois client/DNS cleanup program, looking up 25,000 zones in under an hour. (C and bash). - Automated auditing and installation tool to assist in the upgrading/patching of 300+ servers in under an hour. (Perl). * Devised an encrypted data backup RAID system, backing up data incrementally over the network. * Coordinated leased line installations and all related aspects. * Managed all IP address allocations, making efficient use of a /18 and several /19's * Maintained company firewall, writing rules, filters and enforcing policy. CAIS Internet Installations Coordinator 1994 - 1997 ------------------------- * Coordinated all leased line installations including POTS, ISDN, E1, DS1, DS3 and FNS lines and colocation. * Handled all aspects of the turn-up process, including: - Configuring all hardware, CSU/DSU's, routers, switches, racks, and cabling. - Deploying equipment at POPs and at customer locations. - Designing and implementing router configurations based on customer needs. - Managing and maintaining routers, updating firmware, revising configurations. * Troubleshooting and repairing faulty circuits in cooperation with various IXCs. * Managed all IP address allocations and subnetting of two /16's, one /15 and numerous /24's. * Handled internal wiring and cabling. Knowledge of different cabling standards, schematics and pinouts.