Curriculum Vitae

DJAN PHANG 6338 Sunset Cove Lane, Katy, TX 77494 281.693.0645 (home), 281.968.1619 (Cell) [email protected] SKILLS/TOOLS:

Operating Systems: Cisco NOS, Cisco IOS, Cisco FTD, Cisco ASA 8.4.7 – 9.x, Cisco CATOS, RiOS, Windows XP/2000, Windows 2016,Windows 2012, Windows 2008, Windows Server 2003, Linux: RedHat, CentOS F5 TMOS version 11.6 – 12.1.2, F5 LTM, F5 ASM, F5 APM. Network Hardware: Cisco ISE 1.1 – 2.7, WebSense 7.8.4 Cisco Nexus, 7000, 6000, 5500, 2200 series Cisco routers, 7200, 4300, 3900, 3800, 3700, 2800, 1800, 2600, 1700, 2500 series Cisco switches 6500, 4500, 4000, 4948, 3800, 3750X, 3500XL, 2900XL, 1900 series Cisco Aeronet 340, 350, 1100, 3700 series Cisco ASA 5520, ASA 5540, and Cisco ASA 5512X, ASA5525X CUCM 8.6.4 – 12.5, IPhone 8800, IPhone 9700, IPhone 7200,jabber, sparks, softphone, Nortel Meridian PBX, Lucent Merlin Magic PBX Cisco Content Switching Module/ACE Cisco TACACS, and Riverbed Cascade Checkpoint (CrossBeam & UTM 3070), Juniper Firewall SSG2000 F5-BigIP, Riverbed 5050 ADVA (DWDM switches) Software: PeopleSoft, Maximo, ACCPAC CQG, TransEnergy, Streamline, Quicktrade, Reuters, Gas Nomination Software, OASIS/TradeWave Microsoft SQL 6.5, Microsoft Project, Microsoft 2016-2003 office Cacti (Windows, Linux), Apache, PHP SolarWinds, Tcpdump, Wireshark Network Connections: DWDM, DecaMAN, GigaMAN, DS3, ELANE, MPLS, Lease line T1, FrameRelay, VSAT, Satellite, Microwave, ISDN, VPN, Wireless Network Protocols VTP, Spanning-Tree, Trunking, VLAN, VPC, HSRP, GLBP, GRE tunnel, IPSEC, DMVPN Routing Protocols: EIGRP, RIP, OSPF, BGP SCADA Hardware: Clear Scada, 4RF radio, GE Harris modbus, PI Excel add-on

TEACHING EXPERIENCE:

Houston Community College January 2017 to Present • Teaching Instrumentation and Controls Engineering Technology Curriculum o INTC 2366 Houston Community College August 2015 to Present • Teaching Network Infrastructure for Computer Department • Teaching Microsoft Curriculum American InterContinental University June, 2013 – January, 2019 • Information Security – Bachelor ITT Technical Institute June 2011 to September 2016 • Teaching CyberSecurity Bachelor degree and Network Systems Administrator Associates Degree o Teaching Network Infrastructure using Cisco PacketTracer simulator o Teaching Systems Administrator in Microsoft Windows and Linux o Teaching Security appliance such as Nessus, Firewall, DLP WestWood College December 2005 – January 2011 • Teaching Bachelor of Network Systems Administrator o Teaching Microsoft and Cisco Academy LoneStar College December 2005 – June 2011 • Teaching Cisco Academy

PROFESSIONAL EXPERIENCE:

MidCoast Energy, LLC December 2018 – Present Supervisor, Scada Network Operations • Supervise Scada Communication team • Manage Scada Communication Network • Design Scada Communication Network using network separation and zero trust security implementation

Calpine Corporation, Houston, TX November 1998 to May 2005 Scada Network Engineer • Supported Technical teams and Operators to do well site testing. Worked with Sensors, Transducers, and Actuators, Valves, and instrumentation controls instruments including Pressure, Temperature, and flow and level controls on site. • Designed electronics test fixtures • Supported engineering department • Developed control Instrumentation and test procedures including P&ID schematics for surface facilities equipment • Configured DCS, set-point for each pump, temperature, flow control, pressure sensor in Power Plant. Configured, identified tags using GE Harris ModBus • Configured Client DCS connection via PI excel add-on • Supported EMS (Emergency Management System) for Alert and Events in All Power Plant • Built a separate SCADA infrastructure parallel with Business Infrastructure by enabling Firewall in between • Designed/Implemented Network for Data, Voice for Power Plant • Worked with vendors (AT&T, Sprint, SBell) for ticket escalation, provision new network circuits • Replaced failed routers or switches, provided installation diagram and provided support for the installation remotely. • Worked with Remedy ticketing system • Provided IP addresses range, configured VLAN, configured trunking for new server and new VLAN segmentation • Supported Trading floor for network escalation issues

Ensco PLC October 2013 - December 2018 Senior Network Engineer • Perform analysis of LAN/WAN requirements and architect and generate proper design according to business needs. • Develop technical networking standards within Data Center networking technologies. • Evaluate networking hardware, software and tools requirement and provide recommendation. Project 2017 • Upgrade F5 host, VCMP guest version 12.1.2 from 11.6.0 • Replace, Install and Configure ASA 5508X and ASA 5555X • Install FMC, Firepower module for all ASA in Data Center and Business Unit • Upgrade Cisco ISE 2.2, Configure Guest Sponsor Portal, Configure EAP Chaining for Wired and Wireless 2016 • Designed Corp, Guest and MDM wireless using ISE 2.1 and redirect to MobileIron for register and compliance • Migrated TACACS for ACS 5.5 to Cisco ISE 2.1 • Designed, Installed and configured OpenDNS replacing Websense as url filter • Upgraded and configured Cisco ISE version 2.1 in High Available Pair 2015 • Installed and configured Cisco ISE version 1.3 in High Availability Pair • Installed and configured WebSense version 7.8.4 in replica mode and multi distribution policy server • Installed and configured Cisco Wireless Controller 5508 with HA SKU for 10 floors and 100 AP • Installed and configured Cisco 6509 in VSS mode 2014 • Built, Installed and configured Disaster Recovery Data Center in Austin o Installed and configured F5 in HA mode o Installed and configured Nexus 7016, Nexus 5596, Nexus 2248 • Mitigated security vulnerability for remote access, weak cipher SSL per IT Audit • designed, Installed and configure PVLAN for third party connection in Drillship network • Designed,Installed network refresh with new subnet in a manually summarized network

T-Systems, Houston, TX March 2010 to October 2013 Senior Network Engineer • Perform analysis of LAN/WAN requirements and architect and generate proper designs according to business needs. 2

• Develop technical networking standards within Data Center networking technologies. • Evaluate networking hardware, software and tools requirements and provide recommendations. • Provide 3rd. level support for switching, firewall and load balancing technologies. • Perform customer network assessment and due diligence and provide recommendations. • Lead and coordinate technical projects involving remote virtual teams. • Delegate tasks and project related work to associate level team members. • Provide technical support in multi-suppliers environment. • Support and maintain Dark fiber between 3 Data Center via ADVA DWDM. Project o Build new Data Center Expansion ▪ Design/Implement Data Center using Cisco 6509 (Core), Nexus 5500 (Distribution) and 2200 series (Access). ▪ Design/Implement with Cisco framework for vPC and FEX. ▪ Design WAN connection With ATT via DWDM. ▪ Design/Implement Nexus 7000 series for storage connection using Context/Virtual. o Lear ▪ Design customer network in virtual environment (VMWare and Vsys) ▪ Create Network and implementation document ▪ Execute an implementation - virtual system in Juniper Firewall SSG2000 ▪ Execute an implementation – vrf on Cisco switch 6509 and switch 3750 stack ▪ Execute an implementation – Checkpoint firewall for adminlan access ▪ Execute an implementation – NetApps Filler connectivity ▪ Execute an implementation – VmWare ( Windows 2008 servers and Linux RedHat) connectivity o Vitro ▪ Design customer network in virtual environment (VMWare and Vsys) ▪ Create Network and implementation document ▪ Execute an implementation - virtual system in Juniper Firewall SSG2000 ▪ Execute an implementation – vrf on Cisco switch 6509 and switch 3750 stack ▪ Execute an implementation – Checkpoint firewall for adminlan access ▪ Execute an implementation – NetApps Filler connectivity ▪ Execute an implementation – VmWare ( Windows 2008 servers and Linux RedHat) connectivity o BP External DNS ▪ Review design network and make recommendation ▪ Implement the design network • Create an AdminLAN access – Checkpoint Firewall • Configure ADVA switch - DWDM connection • Configure InfoBlox and Cisco 3750 stack switch • Configure Virtual Systems in Jupiter Firewall for Customer access o Mattson Migration ▪ Implement Netapps Filler Infrastructure installation ▪ Configure Brocade 5100 for DWDM connection ▪ Configure Virtual Systems in Jupiter Firewall for Customer access o Philips Electric ▪ Review design network and provide recommendation ▪ Implement the design network • Create an AdminLAN access – Checkpoint Firewall • Configure ADVA switch - DWDM connection • Configure Cisco 3750 stack switch and 6509 switch • Execute an implementation – NetApps Filler connectivity • Execute an implementation – VmWare ( Windows 2008 servers and Linux RedHat) connectivity o Shell ▪ Review design network and provide recommendation ▪ Implement the design network • Server migration from Classic to VMWare environment • Server consolidation 3

• Infrastructure expansion such as NetApps Filler

Baker Hughes, Houston, TX January 2010 to March 2010 Senior Network Engineer (Contract) • Implemented MPLS connection using BGP as Backbone and EIGRP as Internal protocol • Implemented VPN tunnel as a backup connection via GRE tunnel • Implemented VLAN for VMWare installation project

LPS – RealEC Technologies, Houston, TX September 2008 to December 2009 Senior Network Engineer • Designed/Built/Implemented new second Data Center in Jacksonville • Added rules in CheckPoint Firewall for allowing access or denying access for clients • Added nodes, pools and virtual servers in BIGIP (F5) • Added Mac addresses in VMPS database • Troubleshot client’s connection to the web services • Added network connectivity for clients either via VPN or dedicated connection • Configured VPN Concentrator 3005 and 3030 for user and client LAN to LAN connectivity • Built Network Disaster Recovery Center in Jacksonville, FL • Built core switches 6513 for redundancy • Installed and configured CheckPoint Firewall, UTM 3070 for high availability • Installed and configured ASA 5520, ASA 5540 and Checkpoint for VPN connection: LAN to LAN and Remote Access connection • Built VMPS database, FreeRadius version 2.14 in Red Hat Linux • Built IP tracking, NorthStar, in Red Hat Linux • Built cacti for monitoring all networks • Installed Riverbed for WAN optimization

MD Anderson Cancer Center, Houston, TX February 2008 to August 2008 Senior Network Engineer • Provided leadership in maintaining highly appropriate, tightly integrated, consistently available, secure, flexible and fault-tolerant networking systems • Developed and enhanced core infrastructure systems to better meet identified needs • Modified network configuration for routers, switches, wireless equipment and all related networking and peripheral equipment, including master host table, name server database, DHCP, electronic mail and other network services • Monitored network performance, analyzed performance data and made recommendations to correct anomalous behavior • Assisted in the creation, engineering, developing and installing of network solutions to complex technical, procedural and logistical problems • Tested and implemented Information Technology security mechanisms and systems in the context of the networking infrastructure • Prevented and coordinated responses to security and disaster recovery incidents • Assisted the network architects in identifying, testing, developing and implementing new technologies • Project o Network refresh – replaced 4000, 4500, to 6504 and 6506 and upgraded CATOS to IOS o WAN migration – built WAN aggregation routers for all WAN sites o Campus Network install – installed 6504, 6506, 6509 switch for building floor o Disaster Recovery build-up – designed and implemented Disaster Recovery Center site

EPCO, Inc., Houston, TX March 2006 to February 2008 NOC Engineer • Monitored Enterprise Network via WhatsUp Gold, CiscoWorks and SolarWinds • Monitored servers via HPSIM • Updated network devices into management monitoring tools such as WhatsUp Gold, CiscoWorks and SolarWinds • Changed configuration via CiscoWorks and configured routers and switches for new site

• Monitored different type of network media such as DS3, Lease Line, FrameRelay, microwave, VSAT and Satellite

AIM Investments, Houston, TX November 2005 to March 2006 Network Engineer • Supported daily network operation duties such as activating ports, setting VLAN and monitoring network via SolarWinds • Changed Cisco configuration via CiscoWorks • Upgraded and supported F5 products such as BIGIP and 3DNS by changing WIP and VI • Updated and maintained IP addresses via EASYIP

Various Companies, Houston, TX June 2005 to November 2005 Independent Consultant

The Computer Merchants Ltd. – CitiGroup • Rolled out network refresh project to all Smith Barney networks • Decommissioned all Cisco 2500 series routers and Cisco 5000 series switches • Installed new 3745 series routers and Cisco 3560 and 6509 series • Coordinated new cable installation with third party EPIXX – SCA Company • Supported 30 network users • Maintained Exchange Server 2003 and Active Directory 2003 • Prepared and scheduled network move to new location • Configured wireless gateway and access point at new location DISYS - GCA Services Company • Designed a VPN network connection • Converted a lease line network connection to a VPN network connection • Installed Cisco 1750 series routers for IPSec tunneling • Configured Cisco PIX 501and 525 series • Configured firewall-to-firewall using IPSec tunneling connection • Configured VoIP using H323 protocol between sites

Calpine Corporation, Houston, TX November 1998 to May 2005 Network Engineer • Supported Technical teams and Operators to do well site testing. Worked with Sensors, Transducers, and Actuators, Valves, and instrumentation controls instruments including Pressure, Temperature, and flow and level controls on site. • Designed electronics test fixtures • Supported engineering department • Developed control Instrumentation and test procedures including P&ID schematics for surface facilities equipment • Configured DCS, set-point for each pump, temperature, flow control, pressure sensor in Power Plant. Configured, identified tags using GE Harris ModBus • Configured Client DCS connection via PI excel add-on • Supported EMS (Emergency Management System) for Alert and Events in All Power Plant • Built a separate SCADA infrastructure parallel with Business Infrastructure by enabling Firewall in between • Designed/Implemented Network for Data, Voice for Power Plant • Worked with vendors (AT&T, Sprint, SBell) for ticket escalation, provision new network circuits • Replaced failed routers or switches, provided installation diagram and provided support for the installation remotely. • Worked with Remedy ticketing system • Provided IP addresses range, configured VLAN, configured trunking for new server and new VLAN segmentation • Supported Trading floor for network escalation issues • Project o Implemented Trading floor Data Center and Disaster Recovery Center o Migrated Lease T1 or Partial T1 circuit to VPN managed services o Configured VPN managed services using GRE tunnel to Corp network o Implemented and Configured Cisco CallManager 3.1 o Managed, designed and implemented Data and Voice connection for new Power Plant site from construction to a full operation Power Plant 5

o Managed vendor for Data and Voice cable installation at Power Plant o Managed vendor for Lucent Merlin Magic PBX installation at Power Plant o Migrated network connection from Construction site to new Power Plant Administration building via wireless bridge (Cisco Aeronet 340) o Installed standalone AP in Conference room o Built Backup Controller, DHCP scope, and DNS o Installed DameWare for remote control for all servers o Installed Backup Exec for all servers in Power Plant o Merged purchased Enron Plants to Calpine network ▪ Provisioned new lines ▪ Migrated all applications to new network such as Platinum Accounting

Avista Energy, Inc., Houston, TX December 1997 to November 1998 Systems Administrator • Maintained and installed Windows NT 4.0 as a backup domains that connected to headquarters at Washington State • Maintained and installed Microsoft SQL Server 6.5 for TransEnergy trading software • Regularly applied patches for Microsoft and TransEnergy • Dumped all transaction logs daily and backed up all database dumps by using Veritas Backup Exec • Maintained 50+ user accounts in Microsoft Exchange 5.5 • Purchased a dedicated T1 Internet connection from Onramp Company and configured Cisco 2500 series for Internet access and Raptor Firewall • Supported 50+ users in Windows NT workstation and Windows 95 environment for trading floor including different types of software for trading such as Streamline, CQG, Reuter and Quick Trade • Implemented Altiris for imaging trading desktop for quick response if disaster occurred

Coastal Products & Chemicals, Houston, TX March 1996 to December 1997 Systems Administrator • Responsible for maintaining Accounting servers, Novell servers and a day-to-day operations supporting users • Maintained Accounting software, ACCPAC that ran on Btrieve database • Backed up the database for the end of the month and recreated accounting details for the following month • Maintained a company network, LANTASTIC • Migrated Novell 3.11 to Windows 4.0 and converted LANTASTIC network to workgroup 3.1 networks

EDUCATION: • Houston Baptist University, Houston, TX o MS, Management Computing Systems o Graduated: May 1995 • University of Houston, Houston, TX o BBA, Management Information Systems and Operation Management o Graduated: May 1993

CERTIFICATIONS: • Cisco Certified Network Associate (Since 2000) • Cisco Certified Network Professional (Since 2001)