Martin Voelk
Senior
Network and Security Consultant – Cisco Trainer
Cisco
Certified Internetwork Expert (CCIE # 13708)
Certified Cisco
Systems Instructor (CCSI # 31274)
Certified Ethical Hacker (C|EH)
Offensive Security Wireless
Professional (OSWP)
mail (at)
martinvoelk.com http://www.martinvoelk.com
Active IT Certifications
|
CCIE
|
Cisco Certified Internetwork Expert (CCIE # 13708)
|
|
|
CCSI
|
Certified Cisco Systems Instructor (CCSI # 31274)
|
|
|
INFOSEC
|
U.S. NSA Information Systems Security (INFOSEC)
Professional
|
|
|
4011
|
4011 Recognition - National Security Agency (NSA) and CNSS
|
|
|
4013
|
4013 Recognition - National Security Agency (NSA) and CNSS
|
|
|
DoD
|
U.S. Army / DoD Information Assurance Awareness
Certification
|
|
|
CEH
|
U.S. EC Council Certified Ethical Hacker
|
|
|
OSWP
|
Offensive Security Wireless Professional
|
|
|
CQS
|
|
Cisco Advanced Data Center Networking Infrastructure
Support Specialist
|
|
CQS
|
|
Cisco Advanced Routing and Switching Field Engineer
Representative
|
|
CQS
|
|
Cisco Advanced Routing and Switching Systems Engineer
Representative
|
|
CQS
|
|
Cisco Advanced Wireless Design Specialist
|
|
CQS
|
|
Cisco Advanced Wireless Field Specialist
|
|
CQS
|
|
Cisco ASA Specialist
|
|
CQS
|
|
Cisco Data Center Networking Infrastructure Design
Specialist
|
|
CQS
|
|
Cisco Data Center Networking Infrastructure Support
Specialist
|
|
CQS
|
|
Cisco Data Center UF Support Specialist
|
|
CQS
|
|
Cisco Firewall Security Specialist
|
|
CQS
|
|
Cisco Information Security Specialist
|
|
CQS
|
|
Cisco IOS Security Specialist
|
|
CQS
|
|
Cisco IPS Specialist
|
|
CQS
|
|
Cisco Network Admission Control Specialist
|
|
CQS
|
|
Cisco Routing and Switching Field Specialist
|
|
CQS
|
|
Cisco Routing and Switching Solutions Specialist
|
|
CQS
|
|
Cisco Sales Expert
|
|
CQS
|
|
Cisco Security
Monitoring, Analysis and Response System Specialist (MARS)
|
|
CQS
|
|
Cisco Unified Fabric Technology Support Specialist
|
|
CQS
|
|
Cisco VPN Security Specialist
|
|
CCSP
|
|
Cisco Certified Security Professional
|
|
CCIP
|
|
Cisco Certified Internetwork Professional
|
|
CCDP
|
|
Cisco Certified Design Professional
|
|
CCNP
|
|
Cisco Certified Network Professional
|
|
CCNP
|
|
Cisco Certified Network Professional Security
|
|
CCNP
|
|
Cisco Certified Network Professional Wireless
|
|
CCDA
|
|
Cisco Certified Design Associate
|
|
CCNA
|
|
Cisco Certified Network Associate
|
|
CCNA
|
|
Cisco Certified Network Associate Wireless
|
If you wish to check the validity of my current
certifications with Cisco Systems,
please e-mail me and I will initiate a certification report to be sent
to you from Cisco directly.
Core Networking Skills
Networking
Hardware
|
Routers:
|
Cisco, Juniper, Huawei
|
|
Switches, Bridges, Hubs:
|
Cisco, Juniper, Dell, HP
|
|
Load Balancers:
|
Cisco CSS, F5
Networks (Big-IP), Foundry, Coyote Point
|
|
Application Orientated:
|
Cisco ACE (Application Control Engine Module)
|
|
WAN Optimisation:
|
Cisco WAAS, Riverbed Steelhead Appliances
|
Security
VPNs (Site-to-Site, IPSec, Remote Access, SSL, WebVPN, GET
VPN, DMVPN, ezVPN), Cryptography, AAA,
Radius, TACACS+, Kerberos, Cisco CAR Radius Proxy, Cisco
Authentication Proxy, Access Lists, NBAR, IOS
Firewall, IOS Security, 802.1x, CBAC, DDoS prevention, Cisco
IDS, Cisco IPS, Cisco CSA, CiscoWorks Firewall
& IDS MC, PKI, CA, Cisco Secure ACS, Cisco VPN
Concentrator, Cisco PIX / ASA Firewalls, Cisco VPN Client,
Cisco AnyConnect Client, Cisco CSM, Cisco NAC / CANAC, Cisco
MARS, Cisco IronPort, Cloud Security
(ScanSafe, Cisco ASA 1000V), Cisco VSG, Cisco ISE, Cisco IP
Video Surveillance and Access Control, Juniper
Netscreen Firewalls, Astaro Firewalls, Checkpoint / Nokia
VPN-1/Firewall-1 NG, Fortinet Firewalls, Linux IPTables
Penetration
Testing / Ethical Hacking
Network & Web Application
Penetration Testing, Vulnerability Assessments, Social Engineering. Tools:
CANVAS PRO, Vulndisco, Dsquare Expl, VOIPPack, Agora Pack, NESSUS PRO, PENVAS,
Retina, Nexpose, ACUNETIX, Netsparker, SAINT PRO, ACUNETIX, BackTrack Suite,
Core Impact.
WLAN
(Wireless LAN)
Cisco Access Points and Bridges (standalone and controller
based), 802.11a, 802.11b, 802.11g, 802.11n standards, WLAN antennas, RF site
surveys (Airmagnet, Ekahau), Spectrum Expert, Cisco WLSE, Wireless L2/L3/Fast
Roaming, WLAN Security (“WEP”, WPA & WPA2 / AES, 802.1x, EAP, PEAP, LEAP,
TKIP), Cisco
Wireless Mesh Networking, Cisco Unified Wireless Networks,
Wireless LAN controllers & WiSM blades, Cisco
Wireless Control System (WCS), Cisco Network Control System
(NCS), WDS, Controller based infrastructures
(LWAPP / CAPWAP), Cisco LBS, Cisco MSE (Mobility Services
Engine), RFID Technology, Cisco Service
Selection Gateway (SSG) / SESM, Cisco Clean Air, BYOD, Band
Select, Client Link, Cisco AnyConnect, Cisco VideoStream
Routing
Static Routing, RIPv1, RIPv2, RIPnG, IGRP, EIGRP, OSPF,
IS-IS, BGPv4, ODR, GRE, MPLS,
IPv6, Traffic Engineering, Policy Based Routing PBR, Route
Filtering, Redistribution, Summarization
Switching
& Bridging
Catalyst CatOS and IOS based Switches, VTP, STP, MST, RSTP+,
Trunking, VLANs, Layer 3 Switches, Logical Ether Channels, Transparent
Bridging, IRB, CRB, DLSW+, MLS, Cisco Nexus (VPC), Cisco Catalyst 6k (VSS)
LAN
Media: Ethernet,
FastEthernet, GigabitEthernet, FDDI, CDDI, Token Ring, ATM LAN Emulation
Network
Analyzers: Ethereal / Wireshark, Paketyzer, Radcom, Etherpeek and others Load Generators: Spirent Smart Bits, iperf,
IPTraffic
WAN
Leased lines 64k - 155Mb (PPP / HDLC), Channelized
lines (E1 / T1 / E3 / T3), Fibre Optic Circuits
up to OC-48 speed, Frame Relay, ATM, ISDN, xDSL, Load Balancing, Multi
Homing, Satellite links
Various
Features & Services
IOS and CatOS Features, HSRP, IRDP, NAT, SNMP, SYSLOG, NTP,
DHCP, CDP, DNS, HTTP, TFTP and FTP
Management, IPv6 projects, RAS
Solutions, Cisco CNR (DNS & DHCP server)
QoS
(Quality of Service)
WRED, Queuing features, FRTP,
CAR, RTP, MLS QoS, LLQ, Policy Based Routing, CBWFQ
Multicast
Implementations from medium
sized to large environments (Videostream over Multicast). Auto RP, Bootstrap
RP, Anycast RP, IGMP, CGMP, Multicast Security, Shared & shortest path
models
VoIP
(Voice over IP) / IPT (IP Telephony)
IP Telephony utilizing Cisco ISR routers, FXS, FXO, Call
Manager, QoS implementation
Network
Monitoring and Management Systems
HP-Openview, Netcool Omnibus, IBM Tivoli Netview, IBM Tivoli
Argus, IBM Tivoli NMC, Cisco NAM, Cisco Works Suite, Cisco SDM, Network Health,
Concorde eHealth, MRTG, Cricket, Naigos
Ticketing
Systems
Remedy ARS, Clarify, Impact, Infovista
ISP
(Internet Service Provider) related
Registry Handling with RIPE, ARIN, AP-NIC, DNS handling with
various NICs
Data
(ATM & Frame Relay Tools)
Nortel NMS and Alcatel 5620 NM
Cisco Course Delivery Skills
As a fully Certified Cisco
Systems Instructor (CCSI # 31274), I am
currently certified to teach most of the following Cisco classes:
Cisco
Routing & Switching Courses
ICND1, ICND2, CCNABOOT, CCNAX, ROUTE, SWITCH, TSHOOT,
IPV6 Courses, RSSSE, ARSFE, DCNI-1, CIERS-1
Cisco
Design Courses
DESGN, ARCH
Cisco
Sales Courses
Cisco Channel Partner Workshops, First Look Workshops, Cisco
Sales Expert (CSE)
Cisco
Security Courses
SECURE, FIREWALL, VPN, IPS, ACS, SSECMGT, MARS, CANAC, NAC,
802.1x, ISE,
DDOS, SSSE, FWSMD, Cisco IP Video Surveillance (CCTV, IPTV,
Cisco IP camera, Video Storage, MCAST)
Cisco
Service Provider Courses
BGP, QOS, MPLS, AMPLS
Cisco
Wireless LAN Courses
IUWNE, IAUWS, IUWMS, IUWVN, CUWSS, CAWSS, WLSE, CWLF, CWLAT,
CUWN
Vendor
Neutral Courses
Certified Ethical Hacker,
Introduction to Penetration Testing, Advanced Penetration Testing
General IT Skills
Hardware
PC and Server hardware, TTL and
CMOS, PLD Chip Programming, Real Time Interrupt Programming
Software
MS-Office Package (Word, Excel, Powerpoint, Outlook etc.),
Netscape Suite,
MS-Frontpage, Adobe Photo
Shop, Dream Weaver, Fireworks, Paint Shop, MS-Visio
Desktop
Operating Systems
MS-DOS, DR-DOS, Windows 3.x,
Windows 95/98/ME, Windows NT/2K/XP/7/8
Client
/ Server Architecture - Multiuser / Multitasking Architecture
Novell Fileserver, Novell Access System, Administration of
Novell Networks (Netware), Unix file system, access system, VI editor, etc.,
Web-, Mail-, FTP-, TFTP- DNS-, MySQL , Server Setup under Linux / Unix,
Distributions: RedHat, SuSE, Free BSD and Solaris. Unix / Linux maintenance and
System Administration
Server
– Microsoft based
Setup, Operation and Maintenance of WIN NT 4.0, WIN 2K, WIN
2K3, WIN 2K8 Server
Microsoft Client/Server:
Active Directory, SQL, DHCP, DNS, Exchange, SharePoint, Hyper-V
Virtualization
VMware, vSphere, ESX Server, ESXi Server, Fusion, Microsoft
Hyper-V
Programming
Languages and Databases
Shell Scripts, C, C++,
Assembler, Java, Javascript, HTML, Perl / CGI, PHP, MySQL databases
Professional Experience
January
2009 - present
Cyber
51 LLC
Co-Owner,
Senior Network and Security Consultant
Business focus is on strategic planning, direction,
development and bringing new technologies to market. In addition I am
establishing strategic partnerships for Cyber Security and Network Consulting
Services and engage in Network Security Consulting and Penetration Testing
Services for our customers.
October
2006 – December 2012
Fast
Lane, London, United Kingdom
Freelance
Cisco Trainer / Senior Network Consultant
Worldwide delivery of authorized Cisco training courses
(CCNA (R&S and Wireless), CCNP (R&S, Security and
Wireless), CCDA, CCDP and CCIP tracks.) for the Cisco
Learning Partner Fast Lane. Course Development of Cisco Authorized Course
Material. Network Consulting for clients of Fast Lane. Network Design, Support,
Implementation and Troubleshooting of complex Cisco based networks in addition
to Network Security Audits.
September
2006
Nil
Data Communications, Lisbon, Portugal
Senior
Security Consultant
Complete Firewall migration
from Cisco Works VMS Firewall MC to Cisco Security Manager (CSM). Setting up
virtual VMWare lab machines in order to test before migrating to the live
system. Migrating thousands of network objects, services, service groups, NAT
translation rules, firewall rules etc. to the CSM. Fine tuning the CSM and
customer handover.
January
2005 – August 2006
Motorola,
Swindon, Wiltshire, United Kingdom
Senior
Network / Security Consultant
Re-design of Motorola's internal UK core network. Migrating
from EIGRP and RIPv2 routing protocols to an OSPF multiple area network design.
Interconnect through BGP to the other existing departments. Upgrade from 3550
series switches to Cisco 6509 Catalysts. Design, implementation and support of
the core network (Spanning tree re-design, Trunking, VLAN setup). 3rd.
level support for both LAN (Gigabit Ethernet) and WAN mainly consisting of
Frame-Relay and ATM circuits. Fault finding by means of sniffers such as
Ethereal and Packetyzer.
Responsible for the overall network security including
Intrusion Detection Systems (IDS), Cisco PIX Firewalls, Checkpoint FireWall-1
NG Firewalls, Cisco ACS Servers and VPNs. Building a Cisco based IDS solution
from nothing. 3rd. level support and performance management for the
entire network. Support and maintenance of Cisco SSG, Cisco SESM, Cisco CNR,
Cisco CAR, Cisco CSS Load Balancers and Cisco WLSE. Perl- and Shell script
development in order to automate daily backup and monitoring tasks. Design,
implementation and rollout of special event WLAN hotspot solutions.
Implementation of roaming partners.
Core network redesign to move from IOS Access Points to an
LWAPP based centralized solution.
Teaching in-house Cisco courses
(CCNA, CCNP, IPv6, WLAN) to internal departments. Internal security audits and
penetration tests on small to large networks in order to tighten up network
security utilizing the following toolsets: IPScanner, Immunity Canvas,
Metasploit, NMAP, Nessus, ISS Internet Scanner, GFILANGuard NSS, Cisco Security
Scanner, N-Stealth Scanner, CyberCop Scanner, Ettercap, Etherape and Linux Live
Security CDs such as "The Auditor", "PHLAK",
"iWHAX", "BOSS", “BackTrack” and others.
October
2004 – December 2004
LAN
Solutions, Reading, Berkshire, United Kingdom
Cisco
Trainer / Senior Network Consultant
Delivering CCNA, CCNP, CCIE and IPv6 training courses to
various clients. Security audits and penetration tests for some of England's
most known online bookmakers. Making recommendations on how to close discovered
security holes. Wireless LAN security assessments. Securing Wireless LAN with
WPA (Wifi Protected Access) and AES. On-site consulting for clients on Cisco
based network designs and configurations.
Design of a highly redundant WLAN core network.
Recommendation on suitable products, configuration and maintenance work on both
Cisco kit as well as on Unix Server components. Development of automatic
maintenance and monitoring systems. Setting up "CA" and
"pre-shared key" based site-to-site VPNs to ensure secure
communication. Implementing QoS requirements in co-operation with local
carriers. Design and implementation of special temporary WLAN hotspots. VoIP
and WLAN rollout projects.
April
2003 – September 2004
Hypo
Vereins Bank Information Systems, Munich, Germany (04/2003 – 09/2004) Senior
Network Consultant / Project Manager
Consultancy for the HVB Treasury Investment bank. Meeting
tight deadlines and taking proactive measures in order to guarantee optimal
network performance for market traders. Time critical network support and
troubleshooting under pressure. Network, performance and security audits by
means of cutting edge technologies. Migration and Re-Design of external
customer Banks networks to latest technologies in terms of design, hardware and
software. Personal on-site consulting for customer banks of HVB Info (such as
the investment bank HVB Treasury, Bethmann Maffei Bank, DAB Bank, Noris Bank
and others). Operation and ReDesign
of the international WAN. Design, rollout and operation of one of the world's
largest VPNs connecting 2 core sites to around 800 branch offices.
Project Manager for the "Backup of 800 branch
offices" project. Conception, Design, lab pilot tests and rollout of
Backup solutions including ISDN, channelized E1 bundles, redundant ATM- and
Frame Relay PVCs as well as satellite links to different ISPs. 3rd.
level troubleshooting support for the complete network (LAN and WAN) including
complex technologies such as Cisco’s CSS or F5 Network’s BigIP. Using protocol
analyzers to locate application specific network problems. Responsible for
TCP/IP to X.25 converting systems running Linux on top.
Setup and maintenance of DNS Systems. Maintanance and
further development of internal monitoring tools. Migrating all services from ATM LANE to
Gigabit Ethernet technology. Evaluation of new hardware or new technologies in
a high end lab environment. Making recommendations on where and how to use the
evaluated equipment or tool.
Dense-mode Multicast design and rollout over new Gigabit
topologies to grant video on demand services for employees.
Security Consultant of Wireless LAN pilot project. Selection of suitable
RADIUS servers and protocols to achieve the best solution. Testing Cisco
wireless IP Phones. Maintaining Cisco’s Wireless LAN Solution Engine and the
Microsoft Radius / CA Server. Conducting site surveys. Mentoring internal
workshops such as IPv6, WLAN and VoIP to colleagues. Arrange meetings with
external providers and carriers to evaluate performance and SLAs. Open and
manage Cisco Service-Requests (TAC) and attend regular telephone conferences w/
Cisco Systems
March
2003
Networkers
International PLC, Singapore
Senior
Network Engineer
Short rollout contract role. Configuring Routers, Switches,
VPN Concentrators and PIX Firewalls. Inter connecting various client sites
through VPNs. Carrying out function- and performance tests. Configuration of
multi-homed backup solutions. Failover tests.
September
2001 – March 2003
Cable
& Wireless, Munich, Germany
Senior
Network Engineer
Support, maintenance, upgrades, new installations and
troubleshooting on the core networks consisting of both
Cisco and Juniper routers running OSPF, IS-IS, BGP and MPLS.
Migration of other ISPs with all services into the C&W network.
Installation of new POPs and NCPs. Design, Re-Design, implementation and
rollout of customer networks. Development and consultancy of customized
end-to-end solutions for customers. Supporting various implementations of
special and complex customer set ups. Delivering both English and German CCNA
certification and other networking courses to colleagues and the provisioning
department as needed.
Registration of domains with NICs, administration,
documentation and troubleshooting of domain processes, maintaining customer NIC
contracts. Supporting the domain robot. Maintaining, updating and
troubleshooting the company’s DNS servers. Occasional Team Leader replacement
(Vice Team Lead). Responsibilities: Assigning tasks within the shift team,
supervision, escalation procedures, reports to the management and performance
management
August
2001
Telcel
Telecommunicaciones, Guadalajara, México
Senior
Network Engineer
4 weeks contract role for Mexico’s biggest ISP. Establishing
a new BGP Internet Exchange utilizing both Cisco and Juniper components.
Configuring all devices from the scratch. Interaction with some 10 other
service providers. Carrying out tests and fine tuning the new setup.
September
1999 – July 2001
The
Educational Department of the County Bavaria, Munich, Germany
Network
Engineer
Long term hands-on study-related project at the technical
college in Munich. Sub-netting and IP addressing, configuring Cisco Routers,
Switches, PIX Firewalls for hundreds of schools in the Munich area. Goal was to
provide all schools with internet access and to build up a centralised
management for all networking components involved. Project was successfully
finished in summer of 2001.
June
1999 – August 1999
National
Australia Bank, Sydney, New South Wales, Australia
Network
Engineer
Contract role with leading bank in Australia. Fault
management and support of the IT department. Daily tasks included: Maintenance
on network and server components, troubleshooting, user support, call and
trouble ticket management as well as on-site field engineer tasks.
February
1997 – May 1999
German
Railways Group, Munich, Germany
Systems
Engineer
Systems Engineer in the electronics central workshop of
German Railways Group.
Server and Network Administrator of a WIN NT 4.0 LAN.
Installation, User Support, Upgrades, Maintenance and Troubleshooting. Securing
the network from internal and external threats.
Freelance Consulting Work
Network / IT Consulting work with the following clients
(Project scale 1 day – 3 months)
LAN Solutions Ltd. (United Kingdom), Singtel Telecom
(Singapore), März Network Services (Germany), The
Hilton Hotel Group (Mexico), Banco Central de Costa Rica
(Costa Rica), Cityfinc Corporation (USA), The State of
Peru (Peru), CanTV (Venezuela), Webinvest (Russia), Telcel
(Mexico), WalMart (USA), Sysplain (Germany), TPN
The Public Network AG (Switzerland), SecureTronix (United
Kingdom), Network Angels (United Kingdom), SDA
Partnership (United Kingdom),
Nil Data Communications (Slovenia), Universidad de Manizales (Colombia), Repton (UK), Intergence (UK), Coleman
Research Group (USA), Think Equity (USA), NetDefense (UK) and others.
Education
College
State Certified IT-Technician (equals U.S. Bachelors Degree
in Computer Science)
Technical College, Munich, Germany (09/1999 - 07/2001)
Final exam grade: good
Vocational
Training
Vocational Training as an Energy Electronics Engineer
German Railways Group, Munich, Germany (09/1993 -
02/1997)
Final exam grade: good
School
Secondary modern school
Successfully graduated in
summer 1993
Courses, Seminars and Study Projects
At
the Technical College in Munich, Germany
•
TCP/IP Networking (Course)
•
The UNIX Operating System (Course)
•
Creation of an English version of the college's
UNIX course (Project)
•
Internet Programming in HTML und Perl (Course)
•
The Checkpoint Firewall (Course)
•
Measurement of the aggregate bandwidth of the
campus network (Project)
•
Setup, Integration and Operation of a
communication server on the Internet (Project) • The Parallel Port (Project)
At
Cisco Systems, Hallbergmoos, Germany
•
Building Core Networks with OSPF, BGP and MPLS
Bootcamp
At
HypoVereinsbank, Munich, Germany
•
Introduction into Project Management
At
the International Council of E-Commerce, New York, USA
•
1 week intensive CEH (Certified Ethical Hacker)
training
Soft Skills & Other Skills
Communication
Skills
My writing skills, both in
German and English, are very good and I certainly am a clear speaker. Being
comfortable speaking in front of an audience I can easily facilitate meetings
and brainstorming sessions. I simply enjoy communicating with others.
Interpersonal
Skills
As a friendly, polite person,
with positive attitude I work well with others and in the past often have
proven myself to deal with difficult situations in a careful and considerate
manner.
Learning
Skills
I have a high capacity for learning, pick up new skills and
ideas quickly, and generally thrive on challenges. Enthusiasm and creativity
give me an edge on difficult projects.
Problem
Solving Skills
My analytical skills help me troubleshoot problems
and uncover root causes. I am creative
and tenacious.
Online
Marketing Skills
Google Certified and highly experienced in Pay Per Click
(PPC) Marketing and Search Engine Optimization
(SEO)
Business
Skills
As a result of running my own business I have acquired sound
knowledge around: Business environment,
Accounts and Finance, Current Business Issues, International
Business, Managing Professional Development,
Business Psychology, Marketing, Business Context, Business
Strategy and Organisational Dynamics, Small
Business Management and
Entrepreneurship
Languages
German (Mother
tongue)
English (Excellent
skills)
Spanish (Basic skills)
Personal
Citizenship: German
Current Location: Guadalajara, Mexico
Hobbies: Travelling,
Dogs, Latin Music, Sports, IT in General
No comments:
Post a Comment
Hi