Martin Voelk
Senior Network and Security Consultant – Cisco Trainer
Cisco Certified Internetwork Expert (CCIE # 13708)
Certified Cisco Systems Instructor (CCSI # 31274) Certified Ethical Hacker (C|EH)
Offensive Security Wireless Professional (OSWP)
mail (at) martinvoelk.com http://www.martinvoelk.com
Active IT Certifications
| CCIE | Cisco Certified Internetwork Expert (CCIE # 13708) | |
| CCSI | Certified Cisco Systems Instructor (CCSI # 31274) | |
| INFOSEC | U.S. NSA Information Systems Security (INFOSEC) Professional | |
| 4011 | 4011 Recognition - National Security Agency (NSA) and CNSS | |
| 4013 | 4013 Recognition - National Security Agency (NSA) and CNSS | |
| DoD | U.S. Army / DoD Information Assurance Awareness Certification | |
| CEH | U.S. EC Council Certified Ethical Hacker | |
| OSWP | Offensive Security Wireless Professional | |
| CQS | | Cisco Advanced Data Center Networking Infrastructure Support Specialist |
| CQS | | Cisco Advanced Routing and Switching Field Engineer Representative |
| CQS | | Cisco Advanced Routing and Switching Systems Engineer Representative |
| CQS | | Cisco Advanced Wireless Design Specialist |
| CQS | | Cisco Advanced Wireless Field Specialist |
| CQS | | Cisco ASA Specialist |
| CQS | | Cisco Data Center Networking Infrastructure Design Specialist |
| CQS | | Cisco Data Center Networking Infrastructure Support Specialist |
| CQS | | Cisco Data Center UF Support Specialist |
| CQS | | Cisco Firewall Security Specialist |
| CQS | | Cisco Information Security Specialist |
| CQS | | Cisco IOS Security Specialist |
| CQS | | Cisco IPS Specialist |
| CQS | | Cisco Network Admission Control Specialist |
| CQS | | Cisco Routing and Switching Field Specialist |
| CQS | | Cisco Routing and Switching Solutions Specialist |
| CQS | | Cisco Sales Expert |
| CQS | | Cisco Security Monitoring, Analysis and Response System Specialist (MARS) |
| CQS | | Cisco Unified Fabric Technology Support Specialist |
| CQS | | Cisco VPN Security Specialist |
| CCSP | | Cisco Certified Security Professional |
| CCIP | | Cisco Certified Internetwork Professional |
| CCDP | | Cisco Certified Design Professional |
| CCNP | | Cisco Certified Network Professional |
| CCNP | | Cisco Certified Network Professional Security |
| CCNP | | Cisco Certified Network Professional Wireless |
| CCDA | | Cisco Certified Design Associate |
| CCNA | | Cisco Certified Network Associate |
| CCNA | | Cisco Certified Network Associate Wireless |
If you wish to check the validity of my current certifications with Cisco Systems, please e-mail me and I will initiate a certification report to be sent to you from Cisco directly.
Core Networking Skills
Networking Hardware
| Routers: | Cisco, Juniper, Huawei |
| Switches, Bridges, Hubs: | Cisco, Juniper, Dell, HP |
| Load Balancers: | Cisco CSS, F5 Networks (Big-IP), Foundry, Coyote Point |
| Application Orientated: | Cisco ACE (Application Control Engine Module) |
| WAN Optimisation: | Cisco WAAS, Riverbed Steelhead Appliances |
Security
VPNs (Site-to-Site, IPSec, Remote Access, SSL, WebVPN, GET VPN, DMVPN, ezVPN), Cryptography, AAA,
Radius, TACACS+, Kerberos, Cisco CAR Radius Proxy, Cisco Authentication Proxy, Access Lists, NBAR, IOS
Firewall, IOS Security, 802.1x, CBAC, DDoS prevention, Cisco IDS, Cisco IPS, Cisco CSA, CiscoWorks Firewall
& IDS MC, PKI, CA, Cisco Secure ACS, Cisco VPN Concentrator, Cisco PIX / ASA Firewalls, Cisco VPN Client,
Cisco AnyConnect Client, Cisco CSM, Cisco NAC / CANAC, Cisco MARS, Cisco IronPort, Cloud Security
(ScanSafe, Cisco ASA 1000V), Cisco VSG, Cisco ISE, Cisco IP Video Surveillance and Access Control, Juniper
Netscreen Firewalls, Astaro Firewalls, Checkpoint / Nokia VPN-1/Firewall-1 NG, Fortinet Firewalls, Linux IPTables
Penetration Testing / Ethical Hacking
Network & Web Application Penetration Testing, Vulnerability Assessments, Social Engineering. Tools: CANVAS PRO, Vulndisco, Dsquare Expl, VOIPPack, Agora Pack, NESSUS PRO, PENVAS, Retina, Nexpose, ACUNETIX, Netsparker, SAINT PRO, ACUNETIX, BackTrack Suite, Core Impact.
WLAN (Wireless LAN)
Cisco Access Points and Bridges (standalone and controller based), 802.11a, 802.11b, 802.11g, 802.11n standards, WLAN antennas, RF site surveys (Airmagnet, Ekahau), Spectrum Expert, Cisco WLSE, Wireless L2/L3/Fast Roaming, WLAN Security (“WEP”, WPA & WPA2 / AES, 802.1x, EAP, PEAP, LEAP, TKIP), Cisco
Wireless Mesh Networking, Cisco Unified Wireless Networks, Wireless LAN controllers & WiSM blades, Cisco
Wireless Control System (WCS), Cisco Network Control System (NCS), WDS, Controller based infrastructures
(LWAPP / CAPWAP), Cisco LBS, Cisco MSE (Mobility Services Engine), RFID Technology, Cisco Service
Selection Gateway (SSG) / SESM, Cisco Clean Air, BYOD, Band Select, Client Link, Cisco AnyConnect, Cisco VideoStream
Routing
Static Routing, RIPv1, RIPv2, RIPnG, IGRP, EIGRP, OSPF, IS-IS, BGPv4, ODR, GRE, MPLS,
IPv6, Traffic Engineering, Policy Based Routing PBR, Route Filtering, Redistribution, Summarization
Switching & Bridging
Catalyst CatOS and IOS based Switches, VTP, STP, MST, RSTP+, Trunking, VLANs, Layer 3 Switches, Logical Ether Channels, Transparent Bridging, IRB, CRB, DLSW+, MLS, Cisco Nexus (VPC), Cisco Catalyst 6k (VSS)
LAN
Media: Ethernet, FastEthernet, GigabitEthernet, FDDI, CDDI, Token Ring, ATM LAN Emulation
Network Analyzers: Ethereal / Wireshark, Paketyzer, Radcom, Etherpeek and others Load Generators: Spirent Smart Bits, iperf, IPTraffic
WAN
Leased lines 64k - 155Mb (PPP / HDLC), Channelized lines (E1 / T1 / E3 / T3), Fibre Optic Circuits up to OC-48 speed, Frame Relay, ATM, ISDN, xDSL, Load Balancing, Multi Homing, Satellite links
Various Features & Services
IOS and CatOS Features, HSRP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, HTTP, TFTP and FTP
Management, IPv6 projects, RAS Solutions, Cisco CNR (DNS & DHCP server)
QoS (Quality of Service)
WRED, Queuing features, FRTP, CAR, RTP, MLS QoS, LLQ, Policy Based Routing, CBWFQ
Multicast
Implementations from medium sized to large environments (Videostream over Multicast). Auto RP, Bootstrap RP, Anycast RP, IGMP, CGMP, Multicast Security, Shared & shortest path models
VoIP (Voice over IP) / IPT (IP Telephony)
IP Telephony utilizing Cisco ISR routers, FXS, FXO, Call Manager, QoS implementation
Network Monitoring and Management Systems
HP-Openview, Netcool Omnibus, IBM Tivoli Netview, IBM Tivoli Argus, IBM Tivoli NMC, Cisco NAM, Cisco Works Suite, Cisco SDM, Network Health, Concorde eHealth, MRTG, Cricket, Naigos
Ticketing Systems
Remedy ARS, Clarify, Impact, Infovista
ISP (Internet Service Provider) related
Registry Handling with RIPE, ARIN, AP-NIC, DNS handling with various NICs
Data (ATM & Frame Relay Tools)
Nortel NMS and Alcatel 5620 NM
Cisco Course Delivery Skills
As a fully Certified Cisco Systems Instructor (CCSI # 31274), I am currently certified to teach most of the following Cisco classes:
Cisco Routing & Switching Courses
ICND1, ICND2, CCNABOOT, CCNAX, ROUTE, SWITCH, TSHOOT,
IPV6 Courses, RSSSE, ARSFE, DCNI-1, CIERS-1
Cisco Design Courses
DESGN, ARCH
Cisco Sales Courses
Cisco Channel Partner Workshops, First Look Workshops, Cisco Sales Expert (CSE)
Cisco Security Courses
SECURE, FIREWALL, VPN, IPS, ACS, SSECMGT, MARS, CANAC, NAC, 802.1x, ISE,
DDOS, SSSE, FWSMD, Cisco IP Video Surveillance (CCTV, IPTV, Cisco IP camera, Video Storage, MCAST)
Cisco Service Provider Courses
BGP, QOS, MPLS, AMPLS
Cisco Wireless LAN Courses
IUWNE, IAUWS, IUWMS, IUWVN, CUWSS, CAWSS, WLSE, CWLF, CWLAT, CUWN
Vendor Neutral Courses
Certified Ethical Hacker, Introduction to Penetration Testing, Advanced Penetration Testing
General IT Skills
Hardware
PC and Server hardware, TTL and CMOS, PLD Chip Programming, Real Time Interrupt Programming
Software
MS-Office Package (Word, Excel, Powerpoint, Outlook etc.), Netscape Suite,
MS-Frontpage, Adobe Photo Shop, Dream Weaver, Fireworks, Paint Shop, MS-Visio
Desktop Operating Systems
MS-DOS, DR-DOS, Windows 3.x, Windows 95/98/ME, Windows NT/2K/XP/7/8
Client / Server Architecture - Multiuser / Multitasking Architecture
Novell Fileserver, Novell Access System, Administration of Novell Networks (Netware), Unix file system, access system, VI editor, etc., Web-, Mail-, FTP-, TFTP- DNS-, MySQL , Server Setup under Linux / Unix, Distributions: RedHat, SuSE, Free BSD and Solaris. Unix / Linux maintenance and System Administration
Server – Microsoft based
Setup, Operation and Maintenance of WIN NT 4.0, WIN 2K, WIN 2K3, WIN 2K8 Server
Microsoft Client/Server: Active Directory, SQL, DHCP, DNS, Exchange, SharePoint, Hyper-V
Virtualization
VMware, vSphere, ESX Server, ESXi Server, Fusion, Microsoft Hyper-V
Programming Languages and Databases
Shell Scripts, C, C++, Assembler, Java, Javascript, HTML, Perl / CGI, PHP, MySQL databases
Professional Experience
January 2009 - present
Cyber 51 LLC
Co-Owner, Senior Network and Security Consultant
Business focus is on strategic planning, direction, development and bringing new technologies to market. In addition I am establishing strategic partnerships for Cyber Security and Network Consulting Services and engage in Network Security Consulting and Penetration Testing Services for our customers.
October 2006 – December 2012
Fast Lane, London, United Kingdom
Freelance Cisco Trainer / Senior Network Consultant
Worldwide delivery of authorized Cisco training courses (CCNA (R&S and Wireless), CCNP (R&S, Security and
Wireless), CCDA, CCDP and CCIP tracks.) for the Cisco Learning Partner Fast Lane. Course Development of Cisco Authorized Course Material. Network Consulting for clients of Fast Lane. Network Design, Support, Implementation and Troubleshooting of complex Cisco based networks in addition to Network Security Audits.
September 2006
Nil Data Communications, Lisbon, Portugal
Senior Security Consultant
Complete Firewall migration from Cisco Works VMS Firewall MC to Cisco Security Manager (CSM). Setting up virtual VMWare lab machines in order to test before migrating to the live system. Migrating thousands of network objects, services, service groups, NAT translation rules, firewall rules etc. to the CSM. Fine tuning the CSM and customer handover.
January 2005 – August 2006
Motorola, Swindon, Wiltshire, United Kingdom
Senior Network / Security Consultant
Re-design of Motorola's internal UK core network. Migrating from EIGRP and RIPv2 routing protocols to an OSPF multiple area network design. Interconnect through BGP to the other existing departments. Upgrade from 3550 series switches to Cisco 6509 Catalysts. Design, implementation and support of the core network (Spanning tree re-design, Trunking, VLAN setup). 3rd. level support for both LAN (Gigabit Ethernet) and WAN mainly consisting of Frame-Relay and ATM circuits. Fault finding by means of sniffers such as Ethereal and Packetyzer.
Responsible for the overall network security including Intrusion Detection Systems (IDS), Cisco PIX Firewalls, Checkpoint FireWall-1 NG Firewalls, Cisco ACS Servers and VPNs. Building a Cisco based IDS solution from nothing. 3rd. level support and performance management for the entire network. Support and maintenance of Cisco SSG, Cisco SESM, Cisco CNR, Cisco CAR, Cisco CSS Load Balancers and Cisco WLSE. Perl- and Shell script development in order to automate daily backup and monitoring tasks. Design, implementation and rollout of special event WLAN hotspot solutions. Implementation of roaming partners.
Core network redesign to move from IOS Access Points to an LWAPP based centralized solution.
Teaching in-house Cisco courses (CCNA, CCNP, IPv6, WLAN) to internal departments. Internal security audits and penetration tests on small to large networks in order to tighten up network security utilizing the following toolsets: IPScanner, Immunity Canvas, Metasploit, NMAP, Nessus, ISS Internet Scanner, GFILANGuard NSS, Cisco Security Scanner, N-Stealth Scanner, CyberCop Scanner, Ettercap, Etherape and Linux Live Security CDs such as "The Auditor", "PHLAK", "iWHAX", "BOSS", “BackTrack” and others.
October 2004 – December 2004
LAN Solutions, Reading, Berkshire, United Kingdom
Cisco Trainer / Senior Network Consultant
Delivering CCNA, CCNP, CCIE and IPv6 training courses to various clients. Security audits and penetration tests for some of England's most known online bookmakers. Making recommendations on how to close discovered security holes. Wireless LAN security assessments. Securing Wireless LAN with WPA (Wifi Protected Access) and AES. On-site consulting for clients on Cisco based network designs and configurations.
Design of a highly redundant WLAN core network. Recommendation on suitable products, configuration and maintenance work on both Cisco kit as well as on Unix Server components. Development of automatic maintenance and monitoring systems. Setting up "CA" and "pre-shared key" based site-to-site VPNs to ensure secure communication. Implementing QoS requirements in co-operation with local carriers. Design and implementation of special temporary WLAN hotspots. VoIP and WLAN rollout projects.
April 2003 – September 2004
Hypo Vereins Bank Information Systems, Munich, Germany (04/2003 – 09/2004) Senior Network Consultant / Project Manager
Consultancy for the HVB Treasury Investment bank. Meeting tight deadlines and taking proactive measures in order to guarantee optimal network performance for market traders. Time critical network support and troubleshooting under pressure. Network, performance and security audits by means of cutting edge technologies. Migration and Re-Design of external customer Banks networks to latest technologies in terms of design, hardware and software. Personal on-site consulting for customer banks of HVB Info (such as the investment bank HVB Treasury, Bethmann Maffei Bank, DAB Bank, Noris Bank and others). Operation and ReDesign of the international WAN. Design, rollout and operation of one of the world's largest VPNs connecting 2 core sites to around 800 branch offices.
Project Manager for the "Backup of 800 branch offices" project. Conception, Design, lab pilot tests and rollout of Backup solutions including ISDN, channelized E1 bundles, redundant ATM- and Frame Relay PVCs as well as satellite links to different ISPs. 3rd. level troubleshooting support for the complete network (LAN and WAN) including complex technologies such as Cisco’s CSS or F5 Network’s BigIP. Using protocol analyzers to locate application specific network problems. Responsible for TCP/IP to X.25 converting systems running Linux on top.
Setup and maintenance of DNS Systems. Maintanance and further development of internal monitoring tools. Migrating all services from ATM LANE to Gigabit Ethernet technology. Evaluation of new hardware or new technologies in a high end lab environment. Making recommendations on where and how to use the evaluated equipment or tool.
Dense-mode Multicast design and rollout over new Gigabit topologies to grant video on demand services for employees.Security Consultant of Wireless LAN pilot project. Selection of suitable RADIUS servers and protocols to achieve the best solution. Testing Cisco wireless IP Phones. Maintaining Cisco’s Wireless LAN Solution Engine and the Microsoft Radius / CA Server. Conducting site surveys. Mentoring internal workshops such as IPv6, WLAN and VoIP to colleagues. Arrange meetings with external providers and carriers to evaluate performance and SLAs. Open and manage Cisco Service-Requests (TAC) and attend regular telephone conferences w/ Cisco Systems
March 2003
Networkers International PLC, Singapore
Senior Network Engineer
Short rollout contract role. Configuring Routers, Switches, VPN Concentrators and PIX Firewalls. Inter connecting various client sites through VPNs. Carrying out function- and performance tests. Configuration of multi-homed backup solutions. Failover tests.
September 2001 – March 2003
Cable & Wireless, Munich, Germany
Senior Network Engineer
Support, maintenance, upgrades, new installations and troubleshooting on the core networks consisting of both
Cisco and Juniper routers running OSPF, IS-IS, BGP and MPLS. Migration of other ISPs with all services into the C&W network. Installation of new POPs and NCPs. Design, Re-Design, implementation and rollout of customer networks. Development and consultancy of customized end-to-end solutions for customers. Supporting various implementations of special and complex customer set ups. Delivering both English and German CCNA certification and other networking courses to colleagues and the provisioning department as needed.
Registration of domains with NICs, administration, documentation and troubleshooting of domain processes, maintaining customer NIC contracts. Supporting the domain robot. Maintaining, updating and troubleshooting the company’s DNS servers. Occasional Team Leader replacement (Vice Team Lead). Responsibilities: Assigning tasks within the shift team, supervision, escalation procedures, reports to the management and performance management
August 2001
Telcel Telecommunicaciones, Guadalajara, México
Senior Network Engineer
4 weeks contract role for Mexico’s biggest ISP. Establishing a new BGP Internet Exchange utilizing both Cisco and Juniper components. Configuring all devices from the scratch. Interaction with some 10 other service providers. Carrying out tests and fine tuning the new setup.
September 1999 – July 2001
The Educational Department of the County Bavaria, Munich, Germany
Network Engineer
Long term hands-on study-related project at the technical college in Munich. Sub-netting and IP addressing, configuring Cisco Routers, Switches, PIX Firewalls for hundreds of schools in the Munich area. Goal was to provide all schools with internet access and to build up a centralised management for all networking components involved. Project was successfully finished in summer of 2001.
June 1999 – August 1999
National Australia Bank, Sydney, New South Wales, Australia
Network Engineer
Contract role with leading bank in Australia. Fault management and support of the IT department. Daily tasks included: Maintenance on network and server components, troubleshooting, user support, call and trouble ticket management as well as on-site field engineer tasks.
February 1997 – May 1999
German Railways Group, Munich, Germany
Systems Engineer
Systems Engineer in the electronics central workshop of German Railways Group.
Server and Network Administrator of a WIN NT 4.0 LAN. Installation, User Support, Upgrades, Maintenance and Troubleshooting. Securing the network from internal and external threats.
Freelance Consulting Work
Network / IT Consulting work with the following clients (Project scale 1 day – 3 months)
LAN Solutions Ltd. (United Kingdom), Singtel Telecom (Singapore), März Network Services (Germany), The
Hilton Hotel Group (Mexico), Banco Central de Costa Rica (Costa Rica), Cityfinc Corporation (USA), The State of
Peru (Peru), CanTV (Venezuela), Webinvest (Russia), Telcel (Mexico), WalMart (USA), Sysplain (Germany), TPN
The Public Network AG (Switzerland), SecureTronix (United Kingdom), Network Angels (United Kingdom), SDA
Partnership (United Kingdom), Nil Data Communications (Slovenia), Universidad de Manizales (Colombia), Repton (UK), Intergence (UK), Coleman Research Group (USA), Think Equity (USA), NetDefense (UK) and others.
Education
College
State Certified IT-Technician (equals U.S. Bachelors Degree in Computer Science)
Technical College, Munich, Germany (09/1999 - 07/2001)
Final exam grade: good
Vocational Training
Vocational Training as an Energy Electronics Engineer
German Railways Group, Munich, Germany (09/1993 - 02/1997)
Final exam grade: good
School
Secondary modern school
Successfully graduated in summer 1993
Courses, Seminars and Study Projects
At the Technical College in Munich, Germany
• TCP/IP Networking (Course)
• The UNIX Operating System (Course)
• Creation of an English version of the college's UNIX course (Project)
• Internet Programming in HTML und Perl (Course)
• The Checkpoint Firewall (Course)
• Measurement of the aggregate bandwidth of the campus network (Project)
• Setup, Integration and Operation of a communication server on the Internet (Project) • The Parallel Port (Project)
At Cisco Systems, Hallbergmoos, Germany
• Building Core Networks with OSPF, BGP and MPLS Bootcamp
At HypoVereinsbank, Munich, Germany
• Introduction into Project Management
At the International Council of E-Commerce, New York, USA
• 1 week intensive CEH (Certified Ethical Hacker) training
Soft Skills & Other Skills
Communication Skills
My writing skills, both in German and English, are very good and I certainly am a clear speaker. Being comfortable speaking in front of an audience I can easily facilitate meetings and brainstorming sessions. I simply enjoy communicating with others.
Interpersonal Skills
As a friendly, polite person, with positive attitude I work well with others and in the past often have proven myself to deal with difficult situations in a careful and considerate manner.
Learning Skills
I have a high capacity for learning, pick up new skills and ideas quickly, and generally thrive on challenges. Enthusiasm and creativity give me an edge on difficult projects.
Problem Solving Skills
My analytical skills help me troubleshoot problems and uncover root causes. I am creative and tenacious.
Online Marketing Skills
Google Certified and highly experienced in Pay Per Click (PPC) Marketing and Search Engine Optimization
(SEO)
Business Skills
As a result of running my own business I have acquired sound knowledge around: Business environment,
Accounts and Finance, Current Business Issues, International Business, Managing Professional Development,
Business Psychology, Marketing, Business Context, Business Strategy and Organisational Dynamics, Small
Business Management and Entrepreneurship
Languages
German (Mother tongue)
English (Excellent skills)
Spanish (Basic skills)
Personal
Citizenship: German
Current Location: Guadalajara, Mexico
Hobbies: Travelling, Dogs, Latin Music, Sports, IT in General
No comments:
Post a Comment