Technologies

EBGP, IBGP, Linux, KVM/Libvirt, SaltStack, Ansible, git, python, terraform, EVPN, VXLAN, Public Cloud

Systems Engineering

• Designed and deployed a multi-region OCI tenancy using a declarative and repeatable approach.
• Designed an automation toolchain to enable programmatic provisioning of compute and network resources.

Communication and Leadership

• Provided architectural guidance for automation systems and served as a sounding board for other engineers to help them refine their ideas and approaches.
• Mentored my peers, both formally and informally, to help them reach their own professional milestones.
• Assisted network engineers to make the transition to a devops-focused way of working.

Technologies

EBGP, OSPF, python, Netbox, Redisdb, SaltStack, Ansible, HAProxy, Whitebox switching, Network Disaggregation, FRR (Free Range Routing), Linux (Cumulus, Debian, CentOS), KVM/libvirt, git, NFV, iptables, keepalived, ZTP, IBGP

Network Engineering

• Served as the senior subject matter expert for routing design projects.
• Designed a campus network using whitebox switches and open source components.
• Used Infrastructure-as-Code tools and approaches to enforce consistency in configuration management practices.
• Used bash shell scripting to wrap various Linux tools into simpler utilities.
• Designed a backbone network to provide interconnectivity between multiple datacenters and various IP transit providers.
• Used NFV and server virtualization concepts to modularize network designs and accelerate maintenance work.
• Designed an automation and configuration management ecosystem which included SaltStack and Ansible as central components.

Communication and Leadership

• Worked as a product manager to integrate the work of engineers of many different skill levels, ultimately leading to the development and implementation of a successful home-grown SD-WAN platform.
• Guided junior engineers in the successful execution of complex infrastructure projects.
• Maintained balance between delivering a product quickly and delivering that product in a way that preserved the revenue-generating capacity of the business.
• Worked to build relationships with leaders and individual contributors in other technical silos.
• Introduced Git Flow concepts to the team to accelerate development work and keep defect rates low.
• Provided formal and informal training for other engineers who were actively improving their skills.

Technologies

EBGP, IBGP, OSPF, LDP, MPLS, Internet Routing, Private Peering, Multicast, Carrier Ethernet, IOS, IOS-XE, IOS-XR

Architecture

• Developed technical strategy to guide the expansion of the service provider business into government and large enterprise market segments.
• Provided the network design guidance needed to answer various Requests for Proposals (RFPs).

Network Engineering

• Advised executive leadership on critical operational issues and served as last tier of escalation for technical problems.
• Provided subject matter expertise and technical leadership to guide the deployment of service provider technologies.

Communication and Leadership

• Trained junior, mid-level, and senior network engineers as part of new technology deployment intiatives.
• Presented technical strategy concepts to executive leadership to secure business sponsorship and funding.

Technologies

EBGP, IBGP, Inter-AS MPLS, IS-IS, LDP, RSVP, MPLS-TE, Internet Routing, Private Peering, Firewalls, IPSec VPN, Load Balancers, IOS-XE, IOS-XR

Network Engineering

• Deployed and supported MPLS VPNs using Inter-AS Options A, B, and C.
• Deployed and supported MPLS Traffic Engineering using dynamic and explicit path configurations.
• Deployed and supported private peerings using IXPs around the globe for improved packet delivery for Adobe products.
• Used Ansible and python to reduce human error in network operations and deployment tasks.
• Deployed AWX to provide an ansible-based automation framework for the network engineering team.

Communication and Leadership

• Trained and mentored junior network operations team members.
• Worked to develop engineering processes for improving the delivery of new network designs.
• Introduced git as a tool for peer review and collaboration to the network engineering team.

Technologies

EBGP, IBGP, MPLS, OSPF, LDP, Firewalls, EIGRP, VRF-Lite, GLBP, IPSec VPN, DMVPN Phase 1, 2, and 3, STP, DHCP, IPv6, LAN Switching, HSRP, Cisco VSS, QoS, Multicast, Wireless, Remote Access VPN, Legacy IOS, IOS-XE, NX-OS

Network Engineering

• Deployed and supported enterprise MPLS VPNs, which included BGP route reflectors for scalability.
• Designed and implemented internet-facing BGP connectivity for both IPv4 and IPv6.
• Designed and implemented remote branch office networks in 68 countries using DMVPN, zone-based firewall, IP SLA, and various other branch office technologies.
• Deployed (and retired) WAN acceleration at remote offices using virtual WAN acceleration appliances running on ISR 2900 UCS-E blade servers.
• Designed and implemented a campus metro ethernet strategy to improve availability for critical network resources.
• Deployed and supported wireless LANs with Cisco WLAN controllers and lightweight access points.
• Designed and implemented a global WAN strategy for improving application performance using private connectivity and globally-distributed Points of Presence.
• Identified and resolved network performance problems at remote branch office locations.
• Designed and implemented a Cisco VSS-based campus network to improve network availability in a large 24x7 manufacturing environment.
• Designed, tested, and documented network standards for deployment by other network implementation engineers.
• Designed secured PCI networks conforming to DSS 3.1.
• Created basic deployment automation tools using PHP and other open source software.
• Created infrastructure audit tools using PHP, Python, SNMP and REST API's from Cisco Spark, Zscaler, and Meraki.
• Used Ansible to automate lab provisioning tasks.
• Designed and implemented an international video broadcast distribution network using draft-Rosen MVPN.
• Designed and implemented QoS techniques to protect critical application and voice traffic on the WAN.

Communication and Leadership

• Overcame language barriers to resolve network issues at international sites where limited networking expertise was available.
• Trained and mentored junior network operations team members.
• Worked to overcome differences between engineering and operations teams.
• Developed methods for evaluating the technical skills of candidates applying for network engineering roles.
• Worked with internal customers to understand technical and business requirements and produce network design proposals that met those requirements.

Technologies

LAN Switching, Infiniband, OSPF, OSPFv3, Linux, DHCP, DHCPv6, IPv6, Fibrechannel, Cisco Anyconnect VPN, IPSec VPN, iSCSI

Network Engineering and Operations

• Responsible for network architecture and design for all datacenter, storage, and high-performance networks.
• Supervised day-to-day operations for CHPC's network infrastructure at the University of Utah, which included 3 datacenters, about 80 switches and routers, and about 1500 servers.
• Designed and implemented fibrechannel and iSCSI SANs to support central storage resources.
• Designed, implemented, and maintained datacenter Infiniband networks for various compute cluster I/O fabrics.
• Designed the Infiniband fabric for an HPC cluster which included IB-to-ethernet bridging technology.
• Worked on the SCinet team designing and building the show floor infiniband network for the SC 2009 conference.
• Implemented multi-vendor (HP and Cisco) OSPF and OSPFv3 to replace a large static routing infrastructure.
• Implemented Cisco ASA VPN in both LAN-to-LAN and Remote Access roles.
• Deployed RHEL4 and RHEL5 Linux servers for various high-performance benchmarking projects.
• Implemented a Cisco UCS environment to test the viability of using UCS blade servers (running VMWare ESX) for low-latency, high-performance computational problems.
• Implemented Linux routers (running Quagga) to route IPoIB traffic for a large Infiniband fabric.

Project Management

• Led an organization-wide IPv6 deployment.
• Managed the implementation of several network monitoring system projects using Cacti and Nagios.
• Managed a successful Infiniband-over-Ethernet technology demonstration at SC09 that involved organizing engineers from six different national and regional networks, including Ames Laboratory and Internet2.

Communication and Presentation

• Proficient in communicating technical processes and concepts to non-technical audiences.
• Experience instructing technical subjects and developing technical curriculum to support that instruction.

Weber State University

B.S., Telecommunications Administration

CCIE #57102, Routing & Switching

Other Samples of My Work

• Blog at PacketPushers.net
• tomammon @ Github
• tomammon @ Dockerhub
• "Using MPLS In The Enterprise" - PacketPushers Show 389
• "Peering with Providers" - Network Collective Episode 43
• "BGP Peering in the Real World" - Network Collective Episode 48
• "Derick Winkworth and Automation" - The Hedge Episode 3
• "Geoff Huston on DOH" - The Hedge Episode 5
• "Single Source of Truth" - The Hedge Episode 24
• "Ethan Banks and Network Fundamentals" - The Hedge Episode 30