Vito Trimlett
- Head of I.T. Infrastructure - (lead architect)
- New York City, NY
- Member Since Jun 08, 2023
Candidates About
Vito Trimlett
Summary:
• Years: Over 25 years of experience in the technical and financial industry.
• Years: Over 20 years of Cisco Firewall experience starting with PIX and then ASA.
• Years: Over 20 years Content Management, filtering and easement.
• Years: Over 20 years of Network Design and Security design (Firewalls, IDS, Load Balancer and Proxy)
• Years: 15 years of Juniper related Experience, 20 years of Cisco, 7 or Arista ,Brocade, Force 10.
• General List of Hardware/Software supported,: Below Experience
• ROUTING: Designed and supported multiple designs using BGP at edge with redistribution into OSPF and EIGRP for IGP. Use of EIGRP or OSPF depending on design or company.
• FIREWALL MIGRATIONS: From Cisco ASA to Palo Alto for 3 different companies.
• FIREWALL DESIGN: Multiple designs using VPN IPSEC site to site tunnels to offices as well as Client to Site VPN.
• VRF routes: Have created multiple VRF’s for MPLS, VOICE Routing using BGP for routing.
• VPN IPSEC Site to Site – Configured Multiple designs w/ Cisco ASA and Routers using VPN IPSEC, GRE.
• VPN Client to Site – Configured and supported Client to site VPN on Cisco ASA. Managed a network of 20 branches all using VPN S2
• Network Routers and Switching Hardware Platforms: Cisco IOS, Cisco Nexus platforms, Arista , Blade Networks, Juniper (light), Cabletron, Bay Networks, Extreme, 3COM, HP switches, Brocade
• Firewall and Load Balancer Hardware: F5 BIG IP – LTM , Foundry 850, Cisco CSS, Brocade ADX, A10
• Designed : S.E.F. Venue Networks for AIEN LLC and TD Securities
• Migrations: Led migration From Foundry 850 to F5 BIG IP – LTM
• Support: Blue Cot Proxy issues for traders and users
• Support: Supported Source Fire IDS based off of alerting.
Migration 1a: Have Led and/or have made contributions to in 4 PBX to VOIP migrations for both Cisco CM and Avaya Media Gateways
Migration 2a: VOIP migrations ranged from 100 people to 700 employees.
• Migration: Led and Designed Direct Edge move and launch of their “Stock Exchange” from 545 Washington NJ to Equinix NY4. Designed server and cable layout, Network design and Firewall and/or ACL placement.
• Design: Have Led , designed, deployed and ultimately setup management of 5 Major Network build-outs and over 20 small to mid-size Network build-outs.
• Designed : Branch networks with MPLS, GRE, IPSEC w/BGP and OSPF using Riverbed WAN Optimizing for WAN
• Load Balancer Experience: Foundry 850 , F5-BIG IP (LTM) Brocade ADX, CISCO CSS
• Firewall Experience: Cisco ASA, PIX, Palo Alto, Checkpoint (7 years ago)
• Design and Audit: Designs included managing the integration of 350 clients with 1gig to 10 gigabit circuits or cross connects. Used BGP at Edge, EIGRP for IGP for Multicast Market data feeds to clients and OSPF for FIX Trading networks. Segmented Production trading from Corporate services by a throttle network. This network was audited and approved by the S.E.C as it was the New Stock Exchange for the United States at the time. The Audit was called an “A.R.P. Review”
• Migrations: Designed and Led TD securities Migration of trder and server “logins” from legacy network in NYC to Equinix and Savvis S.E.F Trading network and managed various S.E.F.s or ECN (BrokerTek, Tradition, Velocity,Garban (Brokertek), Prebon, ICAP…and more)
• Migrations: Amaranth, Led Migration 350 Employees from Building to building which included all new servers, Phones, Turrets , Feeds etc.
• Design: PIM w/Multicast Sparse-Dense Mode for Clients registering for EDGA EDGX Multicast market feeds.
• Network Management: Orion NPM, NCM, ISITUP for TCP port or WMI service monitoring. Orion Syslog, Splunk Syslog or Syslog watcher (my favorite as it is free) for alerting on parsed errors.
• 1 year of Source Fire IDS/IPS implementation and management. (7 years ago)
• GRE : GRE Tunnel w/IPSEC S2S using BGP and HSRP w/route tracking failover,
• VOIP migrations from Nortel 81 to Cisco VOIP system 2x and once to an Avaya Media Gateway, communication manager and session manager.
• Have been Lead Level 2-3 Analyst where I either assisted in or led the implementation of monitoring methodology and troubleshooting procedures.
• Designed full network design with MSFT platform Servers, SAN, Network, SAN switch, RAM SAN, Firewalls, Load Balancers
Hardware/Software:
• Exegy Ticket Plant solutions
• Blue Coat – support only
• Riverbed WAN Optimizing
• Arista 7508, 7150,7124
• Cisco ASA 5505,5510,5540,5580
• Palo Alto 5050,,4050, 4020
• F5 BIG IP – LMT ----light use of APM, ASM, GTM” …
• Foundry 850’s
• Brocade switches and Load balancer
• Cisco VOIP: Call Manager, Call Center and Unity
• Cisco 4500,4900M, 3750, 6500 and Nexus series (3000,5000,7000) including 2200 FEX’s
• Cisco Multicast Manager software
• BrocadeMLX32
• Source-fire IDS
• Nortel 81c, 11 PBX
• NICE Logging for IPC Turrets
• IPC Turrets
• HP 5800,5400,7500 series Switchs.
• HP DL 360,380,580,785 servers
• HP XP24000
• Brocade SAN switches
• Wireshark, Tshark
• ORION NCM,NPM
• Manage Engine
• ISITUP
• Whats Up Gold
• Honey-D Honey-pot
• Splunk and Syslog Watcher syslog tools.
• Surf Control content filter
Data Or Colo Centers Familiar With/ Have Worked At
Equinix (NY2,NY4,NY5,NY7),Savvis (NJ2) Weehawken, Telx-Clifton, Rochele Park (Espeed), Mahwah (NYSE) , 1400 Federal Verizon (NASDAQ\ RiverBend (Stamford), 3500 Steeles (TSX) , 2 Slough London
Work Experience:
Latency Watch – Own S-Corp. April 2011-Present
Technical Advisor or Director
Clients listed below. Below List is the varied list of projects and jobs worked on for our clients. Highlight or signature project next to each client. Green is active, Yellow is Expired Projects, Fuscial is on demand (when I am available)
Designed and support 15 Multiple data centers for both Network and Security. Hardware ranges from Arista, Nexus, Force10, Juniper MX., Brocade, A10, F5, Firewalls ( Cisco ASA, Palo Alto) . Deployed Juniper MX series routers for Internet plant. Also deployed Juniper SRX5800 and vSRX series along with Netscreen firewalls for Amsterdam network.
· CitiBank- Supported Cisco Call Manager and IPT For FIXED Income, Supported over 2000 phones.
· Network Design: Using Nexus and FEX implementation w/ BIG IP LTM and Palo Alto 5050.
· For Branch delivery, Migrated from Cisco ASA to Palo Alto 5050. Migrated from Cisco to Juniper Routers for client Branch delivery.
· In addition, deployed "Next Gen Juniper SRX550" for Corporate remote network.
· Managed trouble tickets and configuration of new servers added to Pools (Content Checks)
· SOBERLINK –Technical Advisor
· Designed Colocation CISCO VOIP network using SIP for multi office setup. This allowed for branch adds or moves.
· Designed and Implemented 2 site, 6 tunnel setup with GRE, IPSEC, BGP and Palo Alto (Outside and Pub/Priv DMZ) and Cisco ASA firewalls (inside zone segmentation). Migrated 20,000 Hand Held Wireless Breath checks.
· Held wireless breath devices to New network I designed and implemented.
· UBS –"Lead Analyst" "V.P." Lead Analyst on peer with Engineering, managed Palo Alto 5050. Supported Blue Coat Proxy issues for trading network. Supported 350 Branches with HP 5400,7500 and 5300 Series withes. Avaya Media Gateway VOIP
· CenterBridge Technical Advisor"– Migration to Palo Alto Firewalls from Cisco ASA sets. Designed trading and corporate network using EIGRP network Supported 200 Cisco Phones for M.A.C. needs
· TD securities – "Director of Network/Telecom
· 1A) Migrated 700 Phones from Nortel 81C to Cisco Call Manager with Unity Voice Mail using SIP.
· 1B) Migrated Trading for 150 traders, 30 servers who traded with 10 different S.E.F. and ECN’s on Legacy Network in 31W52nd NYC…..>>… to, New Network I Designed using BGP with OSPF Triangle design with failover. Also migrated 10 S.E.F. and ECN connections to Equinix via various methods, circuits, cross connects and VPN in 2 cases.
· 1C) The above migration also proved financially beneficial as the design of the Colo SEF/ECN Network produced savings $100,000 in spending per SEF and thus reducing time to market turn up from 4 months to 7 days.
· 2) Migration from Cisco ASA to Palo Alto 4050,5050 and Source Fire IPS/IDS.
· Driven by compliance and Audit analysts to change, this Audit driven migration allowed TD to remove 10 either sunset or ill equipped Cisco Firewalls to New Palo Alto versions. 10 firewalls all together migrated to 4 Palo Alto’s.
• Managed Cisco ASA’s,, Palo Alto, Sonic Firewalls.
• Provided Network Management of Firewalls with Event logging and correlation.
• Managed andImplemented day to day Firewall requests both CISCO AS and Palo Alto
• Managed day to day Load Balancer (F5-BIG-LTM_) issues and possible requests.
• Decreased WAN spend by 50% while upgrading bandwidth on average by 5x.
• Decreased WAN latency by 50% and overall network latency end to end by 40%.
• Worked with software developers to create customized network for trading application.
• Designed a Global co-location network that decreased spend on average by 60% when connecting to each ECN or SEF while decreasing the time to market from 4 months to 7 days. (connectivity wise)
• Created EEI Scripting failover for hot/hot load balancer network
• Created and documented Failover design using BGP along with EIGRP and OSPF to separate traffic zones.
• Created Cisco Config reporting via IOS commands and Syslog parsing lerts.. Email would report changes per login.
• Created Syslog parsing for VOIP Network via Orion.
• Led Migration of 700 phones from Nortel 81C PBX to Cisco Cm,Unity, Router Gateway and Call Center Design.
• Created Sniffer Analysis tool w/ T-Shark and various TCP errors , save to hourly file system.
• Created change management process
• Created Operations procedures (ticket system and escalation flow)
• Standardized Network configuration
• Standardized tools and scripts
• Created daily Start of Day and End of day operation meetings
• Created RFO and Post Mortem process
Direct Edge Stock ECN 2007-2010--- 1ST I.T. Employee Hired. 2010-2011
Now B.A.Ts stock exchange)
Direct Edge Stock Exchange
Head of I.T. Infrastructure - (lead architect)
• Designed and Led Migration from D.E. ECN to Stock Exchange consisting of 400 clients, 700 circuits and/or connections
• Design and built new Stock Exchange network using Cisco 6509’s based on modular design
• Designed and implmeneted "New D.E." Stock Exchange network consisted of BGP on edge for client integration, redistribute into OSPF for FIX trading application, redistribute into EIGRP for Multicast market data feed network
• Migrated from Cisco PIX to Cisco ASA and Checkpoint. Designed Corporate and Trading networks using Firewall to control access.
• Reported to S.E.C. and passed Audit ARP review of S.E.C. for Exchange
• Deploy Alcatel 7450 ESS for Purpose of GRE and MPLS implemented change Trading based on full breathe security approach from Work Stations to ticketing approach This for DR and Production
• Created and designed “Connect Edge”. This was an initiative to provide clients with method to deliver market data using D.E. Market data plant. This was/is a service being used by D.E. Network which I turned and developed into a profit center. This produced a net-net zero spend for our market data network. 1.3 Million spend was turned into net-net zero spend. This service is still advertised in Trade Magazines. I created, designed and implemented the service.
• Designed and led VOIP migration from Nortel PBX network to Cisco CM,CC and Unity network.
• Led pro-active monitoring team and supported Cisco Call Manager and Call Center using windows events log converting to syslog.
• Created Market data delivery network using PIM SPARSE-DENSE and was the first exchange to use this method instead of the inefficient “DENSE MODE”.
• Created “Port cost” charge program for clients that in return turned a $500,000 profit over network switch spend.
• Wrote document and was lead rep. to the S.E.C. “ARP” committee for D.E. the stock exchange audit.
• Responsible for all technology network systems, facilities, real estate build out, BCP, vendor management.
• Manage Infrastructure organization consisting of 25 analysts, application support, system & network engineers and VOIP professionals.
• Responsible for engineering and designing the building out of the primary and secondary Direct Edge “Next Generation” LOW LATENCY platform and implementing the build out at Equinix and Telx Data Centers
• Designed Market Data ticket plant using Exegy and integration of Market data feeds.
• Designed low latency network for Client connectivity
• Designed D.E. Stock exchange network that segmented Trading traffic from Market Data Network.
• Designed and built D.E. Corporate network with S.E.C. approved path to D.E. Trading network.
• Created and managed multimillion dollar revenue generating through client network port charges and NTP offerings for clients to mitigate trade order time sync discrepancies.
• Created network design, applications and test plan of Direct Edge Next Generation Primary and Secondary ECN Platform
• Engineered RFP specifications for cabling and network projects for Equinix and TELX
• Managed and negotiated contracts for SFTI, Radianz, TNS, SAVVIS, NASDAQ, DTCC, Verizon Business, Level3 and Abovenet
Morgan Stanley Oct 2005 – Sep 2007
Manager of Network Operations
• Lead of Global Network Operations Engineering Team
• Lead for 30 Network analysts monitoring global Network
• Client and Business unit interface for all network issues
• Network hygiene Lead using network report analysis and infrastructure audits
• Network Sustaining Engineering Support for purpose of network upkeep
• Hands-on application support of proprietary trading and vendor applications using protocol analysis
Amaranth Group Inc. Dec 2002 – Oct 2005
Sr. VP, Communications and Lead Architect (Network, Security Telecom and BCP)
• Managed build outs of New data center and disaster recovery site.
• Managed build out of BCP seating site.
• Implemented and supported Source Fire IDS
• Designed Security layout with Cisco ASA and Public server DMZ
• Designed Extranet network
• Designed new data center network
• Created and setup HoneyPot reports
• Member of security policy committee
• Managed and supported VPN Concentrator
Application for Trade related
• Project management, design, implementation, and resolution of issues for FIX connectivity solutions to various entities (Btrade, INET, Redi, Credit Lyonnais and JP Morgan).
• Management Team for “Trader Help Desk “for all critical network and trader infrastructure.
• Managed group responsible for hardware asset management and allocations
• Member of security policy committee
• Managed remote access services allocations for VPN and Citrix user accounts