This document provides a summary of Joseph V. San Severo's experience and qualifications. It outlines his extensive experience working as a senior network engineer for various companies, where he designed, implemented and supported complex network infrastructures utilizing technologies such as Cisco, Juniper, Linux and more. It also lists the various hardware, software, protocols and projects he has worked with throughout his career spanning over 20 years in the industry.
1. JOSEPH V. SAN SEVERO
59 Hickory Hill Road, Newburgh, NY 12550
(646) 942-2670; jsansevero@servocomm.com
Page 1 of 5
SUMMARY A hands-on information technology professional with experience in a variety of systems
and applications ranging from PC to UNIXplatforms. In-depth expertise with networks
and telecommunications and a strong background in local area network (LAN) and wide
area network (WAN) design, system planning and technical support. In addition to my
networking background I also run my own email and web servers on Linux and host a
whole range of games servers on Verizon Fios.
HARDWARE Cisco Routers ISR 28XX, 38XX, 720X, 75XX and 7609. Cisco Switches 1900,
3750,3750x,3850x,45XX,6500,Nexus 7k, Nexus 5k, Cisco Load Balancers,Cisco ASA
firewalls, A10 Load Balancers, Enterasys Switches Expedition and SSR series,Foundry
switches Big Iron, Net Iron, Fast Iron and Foundry Server Iron Load balancers, Extreme
switches Black Diamond and Alpine 3808, Juniper Routers M5 to M20, Juniper
Netscreen firewalls, Ascend Access Servers,3Com Total Control Access Servers,
Livingston PM Access Servers,Network Associate's Sniffer,Netcom Smartbits,Wandal
and Golterman Sniffers
SOFTWARE HP OpenView,CiscoWorks, Visio, Spectrum, eHealth, Insight, Orion, UNIX, Solaris,
Linux, Windows, Snort, Wireshark, Asterisk PBX, MRTG, NT/2000 and Novell
PROTOCOL Ethernet, MPLS, DMVPN,TCP/IP,RIP,OSPF,EIGRP,BGP, SNA,Wireless and IPX.
EXPERIENCE
April 2011- (McGraw-Hill/MHFI/S&P Global) Senior Network Engineer (Consultant)
Present
The company has been through several name changes but my responsibilities remained the same
as I was still responsible for Design, Implementation, and Support throughout spin offs and
acquisitions. The following are some of the high level projects I was involved in:
Upgraded downtown NYC main office (Standard & Poor's with over 5,000 users) with over
17 floors and 34 closets.The design utilized Layer 3 to edge with OSPF and fully Multicast
capable (Sparse Dense mode) with Redundant Rendezvous points.
Implemented the same design as the downtown NYC office in the UK office.
Converted 60 plus MPLS sites worldwide from OSPF to BGP.
Moved Secondary Data Center from NYC (Lower Manhattan due to hurricane Sandy) to
Central New Jersey.
Upgraded the infrastructure from Cisco 6500 in Primary Data Center (South New Jersey)and
Secondary Data Center (Central New Jersey) to Nexus 7K with three VDCs.
Upgraded the infrastructure Design in the UK Data Center (EMEA Datacenter) from Cisco
6500 to Nexus 7k.
Separated MHE (McGraw-Hill Education a spin off of the parent company) and designed
their new MHE Data Center.
Designed and implemented smaller overseas sites to utilize DMVPN instead of using Site to
Site VPN on Checkpoint firewall. Migrated CapitalIQ (a subsidiary with its own it
infrastructure) over to DMVPN routing from VPN connectivity.During the SNL acquisition,
utilized the DMVPN infrastructure to connect the two networks together.
Migrated Cisco ACE30 Load Balancers and their VIPs to A10 Thunder product line.
Implemented and Designed QoS to allow Voice and Video to traverse shared WAN Links.
2. JOSEPH V. SAN SEVERO
59 Hickory Hill Road, Newburgh, NY 12550
(646) 942-2670; jsansevero@servocomm.com
Page 2 of 5
May 2009- Brookfield Properties Senior Network Engineer (Consultant)
April 2011
Brookfield has numerous buildings throughout the US and Canada and has recently expanded
into Europe, Asia Pacific, Australia and South America. Prior to the migration I had to
implement logging and Tacacs on all networking devices. During the MPLS migration I
removed legacy Watchguard firewalls and installed Cisco ASA 5520, and 5540 firewalls. The
majority of legacy Wan was Cogent Layer 2 and DMVPN. My assignment was intended for 6
months for the migration but was extended to help build an operational role. They recently had a
restructure and created an operational group and required my expertise to develop process and
procedures as well as knowledge transfer. The following is a bulleted list of accomplishments at
Brookfield:
● Design and implemented Orion network management.
● Migration of legacy Wan to MPLS
● Implemented NCM for network device backup and change management.
● Designed and implemented CAG integration into the network
● Build a test lab of the entire WAN on GNS3
● Configured and installed IPSLA on the routers and Orion for fault latency monitoring.
● Installed and configured Tacacs and logging to syslog.
● Developed operational processes and procedures.
● Knowledge transfer for both Engineering and Operational teams.
● Migrated legacy Watchguard firewalls to Cisco ASA firewalls.
● Build a cgi script to test the status ofall 19 Microsoft DNS servers.
● Build a script to backup VM on CCM devices.
● Identified Citrix issues with Wireshare debugging sniffer traces.
● Key player in determining and fixing any network outages.
● Configured QOS between both Data Centers to allow FCIP to traverse unrestricted.
April 2008- Mizuho Corporate Bank Senior Network Engineer (Consultant)
April 2009
I was brought on to migrate their primary data center from Jersey City to Connecticut. The 4
month contract required that I learn their current environment rapidly and deploy the network
infrastructure needed to accommodate their servers and applications. Head Office, which is
based out of Tokyo, Japan, designed the infrastructure. The design utilizes Cisco 6500’s with
Sup 720’s and Sup32’s. The design is a typical Cisco layer 3 core with layer 2
distribution/access switches.The overall wan is 10 gig metro Ethernet between 4 main sites. The
20 smaller remote sites are either connected via MPLS cloud or VPN via broadband.The
LAN/WAN’s igp of choice is EIGRP with a single autonomous system.Each main site has a
DMZ with dual homed gateways to the internet. I redesigned their gateways to utilize BGP.
Prior to the redesign the Checkpoint redundant firewalls would have to be manually failed over
to the directly connected router with the active link to recover. Utilizing EBGP with IBGP
allows Mizuho to fail over dynamically. In addition to migrating the data center I was
responsible for installing a second Spectrum server on Redhat Enterprise Linux and configuring
them to work in an active standby configuration. While working on the Spectrum I was asked to
help develop procedures and configure alerting for a new 24x7 NOC. The following bullets will
list all applications I worked on while consulting at Mizuho:
● Cisco ACS (TACACS)
● MRTG on Redhat Enterprise Linux to monitor and trend Remote office connectivity
bandwidth and latency of TCP/IP.
● NTOP on Linux Redhat Enterprise Server configured for NetFlow from all core routers at
Mizuho.
3. JOSEPH V. SAN SEVERO
59 Hickory Hill Road, Newburgh, NY 12550
(646) 942-2670; jsansevero@servocomm.com
Page 3 of 5
● Configured Linux RedHat enterprise servers in both data center locations to act as a
distributed sniffer for two core 6509 switches and two data center 6509 switches.Installed
and configured Wireshark for an open source sniffer and utilized span ports on the Cisco
switches for visibility into the network.
● Created shell scripts to minimize emails of reports from eHealth
● Installed Open source PBX Asterisk on Fedora Linux for demonstrating its use as a
potential replacement for Cisco call manger.
June 2005- TIAA-CREF Senior Network Engineer
April 2008
When I arrived at TIAA-CREF a Financial company based in NYC financial district, they
recently removed IT from the individual business groups and centralized under one
administrative control.
Implemented a RFP process for several networking vendors to bid on the new design.The RFP
process was broken into three separate RFPs.
1. Wan networking vendor
2. LAN networking vendor
3. Telecomm vendor.
TIAA-CREF has three major sites with over 40 closets containing 200 plus nodes and over 50
branch office sites throughout the US. Configured and deployed twelve Cisco 7609’s wan
routers utilizing BGP confederations to isolate backbone sites and data centers. The Backbone
Inter site WAN connectivity is OC48’s and OC12’s on a OC192 SONET ring.
The 50 plus branch office sites utilized Cisco ISR 28xx, 38xx and 720X routers.The
connectivity varied from T1 to T3 depending on the size of the site. Two routers in each location
running Multi homed HSRP. The LAN connectivity is most branch office locations were 37XX
Poe switches. A handful of the larger offices used the 65XX with the Hybrid Catos and MFSC2
as well as the Native IOS with MFSC and sup 720.
● Migration of major data center from Denver CO to Broomfield CO
● Design and implemented a 400+ call center in Dallas Texas
● Designed and implemented a 3 tiered DMZ design in both data centers with external facing
Juniper M series routers for dual vendorsecurity.
● Implemented QOS on the converged Wan for VOIP and Data to coexist
● Installed and Supported ReconnexiGuard for data risk assessment on Linux Redhat
enterprise.
● 802.1W (Rapid Spanning Tree)
August 2000- Lucent Technologies Senior Network Engineer (Consultant)
May 2005
Designed and implement Lucent’s E-Business hosting center in Aurora, Colorado consisting of
three M20 Juniper routers, four Foundry Big Irons and four Foundry Server Irons used for
Server Load Balancing. The Internet Gateways consisted oftwo Cisco 7513 and two Cisco 6509
and one Cisco Arrow Point used for global load balancing of Proxy servers. Designed and
implemented ASBR’s using two Cisco 7507 running Dual Process OSPF in multiple 4,000 +
nodes campuses to provide Layer 3 Switching down to the Closet level. Other responsibilities
included Vendor interoperability testing and the certification process for Lucent’s Network
infrastructure. Vendors had to be certified by myself to ensure their equipment would
interoperate with Lucent’s current infrastructure. I verified the following functionalities in each
Vendor:
4. JOSEPH V. SAN SEVERO
59 Hickory Hill Road, Newburgh, NY 12550
(646) 942-2670; jsansevero@servocomm.com
Page 4 of 5
● OSPF Compatibility
● BGP Compatibility (if supported)
● 802.3(AD) Link aggregation (Port Channel in the Cisco World)
● 802.1Q Tagging/ 802.1d (Spanning Tree)
● VRRP
● Network Management
● Port Mirroring Capabilities
● Hot Swappable Modules
June 1999- Prodigy Communications Senior Network Engineer
August 2000
Designed and Built a Layer 3 Redundant Gigabit switching environment using Cisco Catalyst
6500 Layer 3 switches. Implement MHSRP on all Networks to provide redundancy and load
balancing between two Layer 3 switches.Transitioned the Network from RIP to EIGRP and
separated the Public Network from the Private Network. Configured BGP for Prodigy’s Internet
Access to Load balance and provide Redundancy between four Transient Providers.
Implemented Security using Cisco Access List preventing Spoofing of TCP/IP packets and
Smurf attacks on the ingress and egress.
Implemented CWSI Campus for monitoring and archiving of over 75 Cisco devices. Instituted
HPOV on Unix Solaris for Network Monitoring and fault isolation of the entire Network.
Implemented MRTG on Unix Sparc stations for trending analysis on all links and Network
segments.Installed four NAI DSS sniffers with the ability to see every Network segment
throughout the Network infrastructure. Implemented a WEB page where all monitoring and
trending analysis can be viewed. Built a Mega pop in the Yorktown Facility utilizing 3COM
Total Control Access servers for over 1200 ports used by Prodigy’s Enrollment CD.
March 1996 - Lucent Technologies Senior Business Systems Specialist
June 1999
Developed and built a three tiered fault redundant Switched Network Architecture for Lucent
Technologies Murray Hill Corporate Headquarters from Server to Desktop. The design
comprised of over150 Switches using Gigabit Ethernet trunking and 802.1Q technology to feed
6500 end-points. Implemented over 80 VLANs with load balancing by adjusting spanning tree
to utilize the maximum bandwidth capacity. Developed an Out-of-Band Management Network
that did not rely on VLAN technology so access to every device was achievable regardless of
network topology or failure points.
Implemented HP OpenVeiw on Unix Sparc station to monitor the newly built switched
Architecture. Created scripts that monitor errors on trunks and ports and generate E-mails to
technicians for further investigation when thresholds were met. Developed pager functionality
in the event certain pertinent devices go down such as main Servers, Switches and Routers that
will page key personnelthat the device went down. Developed Web Pages to Document the
Lan/Wan Infrastructure that allowed a one click access to get to all Murray Hill's Network
Devices via the Web.
Developed and installed numerous Max TNT's, Max 4004 and Livingston PM3/4 Access Servers
to provide Remote Access into Lucent's Backbone. The design has the capability to
accommodate 40,000 Analog users and 25,000 ISDN users throughout the United States.
Created documentation and trained Lucent Personnel in Maitland Florida on how to configure
the Cisco 770 Series and Ascend 75/85 Series SOHO Routers for ISDN access into the Lucent’s
Network.
5. JOSEPH V. SAN SEVERO
59 Hickory Hill Road, Newburgh, NY 12550
(646) 942-2670; jsansevero@servocomm.com
Page 5 of 5
January 1995 – MFS Intelenet Lan/Database Administrator
February 1996
Designed and supported a 200 node Novell IPX LAN. Operated and maintained two Cisco 2500
series Routers, ten Synoptics intelligent Hubs, and two Novell servers. Implemented a 64 LU
Novell SAA gateway for access to the 800 Number Administration Database (SMS a proprietary
Nationwide Database used by Telephone Carriers for 800 Number reservations and activation's)
alleviating the expense of ten workstation accessing the SMS database via modems over long
distance pots service. Setup Novell user accounts,Login scripts, directory and file access rights,
print servers, and queues. Installed and configured Chameleon for Windows to enable PCs to
access the Unix SPARC Servers alleviating the need to purchase additionalSPARC Workstations.
June 1993 – Lockheed IMSSystem Support Analyst
December 1994
Designed and supported a fifty node Novell IPX LAN. Maintained two Novell 3.12 servers and
one Novell SAA gateway. Installed and managed Novell GroupWise Mail and performed daily
backups using Arcserve. Database Administrator for LINCCS (A proprietary database using
Paradox 4.0 to gatherstatistical information on help deskcalls). Installed an eight processorCubix
Box for remote access to the LAN environment. Designed a training facility using a Proxima
Video Projector for graphic presentations.
July 1987 – United States Navy Advanced Electronic/Computer Technician
April 1993
Work Center Supervisor for the Aegis Weapon System. The Aegis Weapon Systemconsisted of
twenty-five Consoles,four Phased Arrays, two 6.4-Megawatt Transmitters, and eight computers
used for detection,evaluation, and designation of Missile and Gun
Fire Control systems.The computers onboard are the same as the computers housed onboard the
space shuttle and are capable of detecting and evaluating of over 200 targets simultaneously.
Responsible for all CIC (Combat Information Center) consoles,displays,Radar and Computer
equipment. The majority of my duties otherthan maintenance on the Weapons Systemis
classified Secret and I cannot elaborate in any more detail. Other duties onboard the San Jacinto
included support and maintenance of 50 IBM compatible PCs.
Military Training 64 weeks of various courses at Navy schools. Each was eight hours a day, five days a
week and will be converted to college equivalency credits for an Associate Degree after
English requirements are satisfied.
EDUCATION CCNP Cisco Certified Network Professional, December 1999
CCNA Cisco Certified Network Associate, November 1999
Network Associates Sniffer Training, Woodbridge, New Jersey, December 1996
C.N.E. (CERTIFIED NETWARE ENGINEER), Orange, New Jersey, January, 1994
St. George School, Staten Island, New York, December 1986