Michael LaPlante

• Engineered and optimized flight network and computational systems for a high-altitude vehicle reaching 101,000 ft, ensuring 99.9% uptime from launch to retrieval.
• Designed and deployed a VMware ESXi environment to host 40+ virtual flight software servers (Linux & Windows), achieving full single-fault tolerance for mission-critical systems.
• Configured and managed Cisco ASA firewalls and Catalyst switches to support LAN and WAN communications for 300+ devices, enhancing network security and reliability.
• Led troubleshooting efforts, swiftly diagnosing and resolving complex technical issues to maintain operational efficiency.
• Mentored and developed junior engineers in advanced networking concepts, fostering a culture of continuous learning and professional growth.
• Strengthened network security by implementing robust policies, procedures, and access controls, safeguarding mission-critical data and infrastructure.
• Deployed and optimized PRTG network monitoring tools, enabling proactive detection and resolution of WAN, LAN, VM, and server issues, significantly reducing downtime.
• Designed a resilient WAN architecture using the Pendragon SD-WAN appliance, improving bandwidth utilization, latency, and link failover capabilities across multiple sites.
• Architected and implemented the entire network infrastructure for seamless communication between land-based mission control, ship-based mission control, and an in-space capsule, ensuring continuous support for life-sustaining systems.
• Re-engineered and optimized 10+ firewalls, routers, and switches that were previously misconfigured, enhancing network performance and security.

• Ensured compliance with ITAR, NIST, ISO, and CMMC standards, reducing security risks and ensuring regulatory adherence.
• Designed, configured, and optimized scalable network infrastructure to enhance performance, manage load, and support future growth.
• Strengthened network security by managing FortiGate firewalls, VPNs, and Fortinet network devices, ensuring robust perimeter defense.
• Managed Active Directory services, including Windows DNS, DHCP, and SMTP, improving authentication security and system reliability.
• Directed VMware vSphere operations, optimizing ESXi host management to improve resource allocation and reduce operational costs.
• Administered and secured 12 critical servers, including print, backup, ERP (IFS), and domain controllers, ensuring business continuity.
• Managed Azure Office 365 accounts, implementing automated backups and access controls to enhance security and reduce downtime.
• Deployed SolarWinds Web Helpdesk to streamline IT incident management, improving response times and user satisfaction.
• Implemented ManageEngine Log360 SIEM, conducting daily log analysis and security audits to detect and mitigate cyber threats.
• Developed IT policies, SOPs, and compliance documentation, ensuring consistent security and operational best practices.
• Led the migration to Microsoft Office 365 GCC High, enhancing compliance and secure communications for sensitive data.
• Implemented a disaster recovery solution using Government Azure Blob storage, ensuring data resilience and regulatory compliance.
• Managed Veeam Backup & Replication, reducing downtime risks and enhancing cost-effective data protection in virtualized environments.
• Configured and maintained the IP phone system with Polycom Smartdial, improving communication efficiency and reducing VoIP costs.

• Led implementation of a high-performance ISE server, replacing an under-provisioned appliance to significantly enhance user authentication speed and system scalability.
• Optimized network infrastructure by configuring advanced routing protocols and load-balancing techniques to boost overall network performance and reliability.
• Spearheaded project to enforce user command restrictions on network devices, leveraging ISE to ensure compliance with security policies and reduce risk.
• Configured and integrated Cisco Nexus 7000/9000 series switches to facilitate high-speed data transfer, improving network capacity and efficiency.
• Upgraded legacy ASA firewalls to NGFW Cisco Firepower devices, enhancing security posture and integrating SAML for seamless Single Sign-On (SSO) access.
• Managed Cisco Firepower Threat Defense (FTD) devices, ensuring proactive network security through continuous monitoring, threat prevention, and policy enforcement.
• Developed and enforced comprehensive firewall policies, access control rules, and VPN configurations on Cisco Firepower to safeguard network access and prevent unauthorized threats.
• Conducted monthly security audits using Cisco Firepower tools, ensuring adherence to compliance standards and identifying potential vulnerabilities for timely resolution.
• Led successful replacement and deployment of 200+ access points through Cisco Prime, improving wireless network coverage, reliability, and performance across the enterprise.
• Engineered and managed VIP configurations for critical applications on F5 LTMs, optimizing load balancing to reduce latency and ensure high availability for mission-critical services.

• Promoted from GS-12 to GS-13 within the first year for exceptional leadership and successful project execution
• Awarded 6 Army Civilian Achievement Medals for outstanding performance and contributions to mission success
• Led the design, configuration, and maintenance of RSN Data Center infrastructure, ensuring operational excellence
• Directed the development and integration of security policies for the GoArmy Recruitment Network, enhancing network security
• Conducted monthly compliance audits across 700+ routers, ensuring adherence to IOS version standards, port status, and STIG requirements
• Supervised a team of 7 engineers, providing leadership, performance evaluations, and career development
• Spearheaded CCRI inspections, identifying vulnerabilities and developing POA&Ms to address findings
• Coordinated logistics and delivered regular updates to senior Navy officials, ensuring alignment with mission objectives
• Expertise in FIPS, DIACAP, and NIST RMF standards, ensuring compliance with federal regulations
• Consolidated 20+ Cisco ASA firewalls into 4 multi-context units, achieving significant cost savings and improved efficiency
• Deployed a new Cisco ISE infrastructure for centralized authentication, replacing TACACS servers and streamlining security management
• Resolved critical firewall issues, minimizing downtime and ensuring consistent network reliability
• Managed firmware upgrades and security patches for Cisco ASA and Firepower firewalls, enhancing threat protection
• Conducted security assessments and audits using Cisco Firepower Management Center, identifying and mitigating risks
• Implemented Cisco FTD devices for advanced threat detection, including Intrusion Prevention Systems (IPS) and Advanced Malware Protection (AMP)
• Led firewall audits and optimizations, improving performance, security posture, and compliance
• Configured Cisco ASA with Firepower Services for enhanced intrusion prevention and threat mitigation
• Investigated and resolved a security breach related to outdated Juniper SSL VPNs, restoring network integrity
• Subject Matter Expert in firewall management, switches, routers, and Infoblox DNS, providing technical leadership and guidance
• Developed the ACAS system for automated vulnerability scanning, enhancing security posture across the US Army network
• Authored and maintained comprehensive documentation for enterprise communications architecture and security protocols
• Optimized network connectivity by consolidating over 200 switches into efficient switch stacks, improving performance and reliability
• Led the migration of 10 Cisco ASA firewalls to Firepower 9300, enhancing scalability and security capabilities