Darren Bolding
13010 NE 112th ST, Kirkland, WA 98033
SUMMARY
Network, Security and Systems expert, Manager. Seventeen years experience with TCP/IP, routers, and UNIX. Eleven years management experience. Demonstrated management, consulting, project and team leadership skills.
I am seeking an opportunity to apply my technical expertise, my leadership experience and my customer-focused background to a set of challenging and rewarding technical and business problems.
SKILLS
Networking:
Expert in data networking, all aspects of network life cycle. Including: Design and Implementation, Project management, budgeting, design, debugging, reengineering, and analysis. Performed security and performance audits.
TCP/IP: Thorough understanding of IP networking from physical layer through routing protocols, NAT, Security issues. Extensive experience with routing, routing protocols (OSPF, BGP) and redundancy.
Switches: Exhaustive understanding of layer-2 switching, trunking, VLAN’s, advanced security and performance features.
Analysis and Monitoring: Use of network and packet analyzers, monitoring/trending tools to analyze and diagnose network problems. Thorough background analyzing and diagnosing network performance and connectivity problems.
Load Balancing and advanced traffic manipulation: Extensive design, implementation and use of Load Balancers (BIG-IP, 3-DNS), routers and firewalls to manipulate, optimize and control network traffic.
Wireless: Deployment of corporate WLAN’s and security policies. Site surveys, AP tuning, WIDS deployment and monitoring, Rogue AP detection.
WAN technologies: Engineered multiple WAN's using Metro and Wide-Area Ethernet and point-to-point technologies. Including: Circuit turn-up, routing design and implementation, monitoring, troubleshooting, documenting and training.
Vendors: Extensive experience with Cisco, Juniper and F5, across many product lines and versions. Significant experience with many other manufacturers and products.
Systems management and applications: Thorough understanding and experience managing DNS and DHCP deployments using BIND, Active Directory, ISC DHCPD and clients as well as commercial solutions. Design and deployment of large scale addressing and DNS infrastructures. Deployment and use of network and system monitoring tools, commercial and open-source.
VoIP, IPTV, Multicast: Deployed VoIP solutions in multiple locations using Cisco Callmanager, Cisco Callmanager Express, Nortel/Avaya CS1000. Implemented migration from existing system to VoIP infrastructure and new carriers.
CDN, Monitoring: Defined requirements, selected vendors and deployed Content Delivery Networks (CDN) and internal and external network and performance monitoring systems. Built business cases around these systems and tracked metrics and value associated with them.
Security:
Significant experience managing network and system security, deploying systems, developing and enforcing policies, creating reports, responding to incidents and educating customers.
Firewalls and Intrusion Detection: Design, deployment, administration, maintenance and auditing of Firewalls (Juniper SRX/Netscreen, Cisco Pix, Firewall-1, OpenBSD), host and network based Intrusion Detection Systems (Juniper, Sourcefire, Snort, Tripwire, Aide), and Vulnerability Assessment (Qualys, Rapid 7, Nessus)
VPN/Remote Access: Selection, debugging, deployment and ongoing management of IPSec and SSL VPN’s for site to site and end-user applications, remote access solutions, SSH Gateways and bastion hosts.
Compliance:Managed technology compliance programs- policy reviews and modifications, code review, partner compliance, training and many other programs. Negotiations with auditors, remediation projects, revised audit standards reviews. Multiple successes at reducing PCI and other compliance system scope.
Audit Response: Successfully led responses to multiple Level-1 merchant PCI assessments, audits of compliance with Sarbanes Oxley (IT), ISO 27001, GLBA and other standards. Initiated auditor selection process and chose new, superior auditing vendor.
Sensitive Information Tokenization: Initiated and implemented project to tokenize sensitive information as a method of reducing risk and compliance scope.
Monitoring: Use of log analysis, event correlation, and homegrown tools to monitor security infrastructure and respond to network and system threats. Experience with honeynets.
Host Security: Rolled out host security policies, evaluation of host-based firewall solutions, Active Directory Group policies, patch policies.
Linux/UNIX and Windows system administration:
Management and use of numerous versions of Linux/UNIX as well as Windows systems. Including host security design and audits, system design and management of many applications. Experience with scripting languages including shell scripting and Python, as well as previous C/C++ application development experience.
LEADERSHIP:
Demonstrated ability to hire, build and motivate exceptional employees and teams. Success negotiating, setting, achieving and measuring business goals including budget and cost objectives. Track record of creating positive relationships with other teams, providing timely and succinct reporting, tackling challenges head on and leading teams through challenging times.
TeamBuilding: Several instances of growing teams and increasing management responsibility and delegation, as well as implementing turn-around projects for failing organizations.
Staff Management: Repeated success helping team members line their personal goals up with businesses goals and mentoring and motivating them. When necessary, worked with failing employees to help them recover and if required helped them move on to their next opportunity.
Budget and contracts: Built and maintained budgets, working with accounting to properly track purchases, assets, services and expenses. Implemented vendor selection processes to increase savings, cut unnecessary projects, negotiated contracts.
EXPERIENCE
Intelius, Bellevue, WA, 2006 – Present
Director Network Engineering, Information Technology/Security. Responsible for leading the networking, security and IT organizations.
Built Network and Security organizations and systems. Currently, the infrastructure includes four offices and multiple production and development/IT datacenters. The network has had exceptional reliability and performance and we have an excellent security record to date.
Reorganized the IT and helpdesk organizations in early 2011 to resolve a number of customer satisfaction and delivery issues. Initiated programs to modernize corporate server and desktop systems, support mobile platforms and radically improve helpdesk response.
Digeo, Kirkland, WA, 2002 – 2006
Principal Network Architect. Responsible for architecture, specification, design, implementation and management of internal and customer facing networks and security systems as well as hiring and management of Network Engineering staff, budgeting, project proposal and management, cost analysis.
Threshold Networks, Bothell, WA, 2001 - 2002
Director of Professional Services. Responsible for building and leading the Professional Services organization at Threshold, participating in product strategy and company technical focus.
F5 Networks, Seattle, WA, 1998 - 2000
Consulting Manager. Responsible for starting and growing group to staff of ten, defining role within F5, developing productized services and sales tools. Managed engagement risk, reviewed contracts, made staffing decisions and delivered performance reviews.
Consulting and Contracting, 1994-1998
Provided network, security and software development services to numerous clients. Design, implementation and consulting for seven Internet Service Providers.