Portfolio
Y1
delivers project and contract outsourcing solutions on-time and in a cost-effective manor.
This project portfolio highlights some of the many projects in which our expertise
has lead or played a major role in.
Network Monitoring and Alerting
Systems - Y1 Alerter -
Y1’s NMAS
provides 24x7 monitoring of servers, network hardware, security logs, data
circuits & connections, and other network enabled nodes.
An alerting escalation table offers instant notification of critical
events by the way of email, pager or cell phones as programmed for failures,
system errors, security events, or any degradation of these elements.
NMAS are
best developed over 6 phases. Starting
with a “Discovery Analysis” of the network nodes devices an Architect builds
a knowledge base about the infrastructure. Utilizing customer up-to-date network diagrams and device discoveries by
Y1 staff via visual analysis, configuration evaluations, and various tools, an
expandable 2D graphical map is created depicting network node utilization &
status. These first configurations
are added into the centralized log management and alerting system
Auditing is
initially implemented at 2 to 4 network devices (routers and/or switches) and 3 to
5 servers to start the initial collection process for the NMAS
configurations. Network-wide
rollout & testing adds the balance of desired network devices/servers into
the NMAS configurations.
As
network-wide details are recorded into the database, focus is put on developing
and fine tuning alerting levels, standardized reports and documents for the
unique network trending and system availability analysis leading to the
development of the documentation.
The final
phase of an NMAS project is reviewing the finalized documentation combined into
hands-on learning with the users on each of the designed steps and procedures.
Windows
2003 Server Migrations - Gaining
wide acceptance, many firms have undergone the major steps to migrate to Win2003
from WinNT or Win2000 servers. The
OS differences warrant analyzing new platforms for Exchange, PDC/BDC,
File/Print, or Application servers. All
migrations start the creation of migration / installation plans after the
discovery analysis of existing environment current operating servers, services,
and performance characteristics.
As most
infrastructures are designed for 3 or more years, forward looking hardware and
software specifications are created – considering both performance and cost
effectiveness. Finalized migration
plans determine necessary collaborative efforts and assuring the readiness for
the migration.
Automated
& manual software installation and update tools are utilized for effective
migrations. Most solutions
incorporate remote management and systems inventorying – additional
capabilities are utilized with Y1’a NMAS.
Remote
connectivity to FDIC Network
- Design and configure the Bank's firewall to permit VPN connectivity to
and from FDIC. The VPN was terminated on an FDIC device installed on the
Bank’s secure DMZ. Access controls and routing were modified on various
Bank network devices to permit many of the Bank’s internal networks to access
FDIC.
Voice
Over IP for multi-branch Financial Institution - Designed
and implementation of 25 site WAN using point-to-point fractional T1 circuits to
one central site. Central site
routers manage data traffic and several voice ports for connection to a PBX.
Remote site router connected to a key system with FXS ports.
Data and voice share the fractional T1 PPP circuits, saving intraLATA
charges between branches.
Windows
Server Upgrade Deployment - Certified
Sr. Engineers are provided as part of multi-year Windows 2000 and Windows 2003
server upgrade project. The tasks
require numerous engineers to build, setup and configure Win2000 or
Win2003 advanced server w/server clustering, install data center basic
applications such as NetBack-Up, VM Ware, SMS & other remote tools, and
Scripting tools included. Platforms
are typically Compaq or Dell Intel 2Way or 4Way based servers.
Wrote and maintained documentation for all build processes in addition to
checking tickets and progress tracking on Remedy.
Administration and on-site support requires monitoring, repairing,
maintenance, phone support, and daily support of over 1,200 servers
Secure
Network for Financial Institution - Designed
the migration from a shared network to a secure isolated network with WAN
connections. The Firewall core with
branch routers on the outside and inside of a Firewall allowed for unsecured
connections outside the firewall, while trusted connections were allowed inside.
This network contained both Ethernet and token ring internally, and Frame
and Point-to-Point connections outside. VPN
capabilities were built in for future expansion.
Redundant,
Secure Network for Credit Card Authorization Center
- Designed
and implementation of a five-phase migration plan. This plan contains redundant Internet connections through two
independent ISPs, full network redundancy using HSRP and redundant physical
connectivity for key servers. The
Firewall is the center of the security and the termination point for the VPNs.
Business maintains 100% 24x7 uptime to authorization and respond in
real-time to these requests.
Security
– Multiple Firewall Integration - For
an IRS production data center. Integration
of several multi-point firewalls into a single Checkpoint based Firewall
platform solution. In-depth analyze
of the multiple vendor hardware and software Firewall solutions involving the
data & network resources. Work
closely with IT Security team on the development of the integration plans,
rules, policies, and procedures for the successful cutovers during non-critical
usage times. Additional feature
allows the coordinated effort the IT Security staff to monitor situations via
Y1’s NMAS (detailed previously).
Automated Vehicle Locator System - Provide
Network / Systems Infrastructure design and support expertise for the AVL System
starting at architecture design, provide Y1 staff project management, hardware
and software installation, configurations, administration, test, and support
functions. Determine network
operations policies, evaluate network problems, and develop problem management
procedures. Designed for 99.97%
uptime, network design used Cisco/Nortel switches with core Gig Backbone for NT
Server Clustering, NAS, and other high availability devices. Outdoor WLAN implementation included LEAP and WDS.
WAN designed over multiple T1s, Frame, SONET, Point-to-Point Wireless,
and VPNs. Internet connectivity
utilized PIX/Checkpoint Firewalls on T1s or DS3 with HSRP & BGP design on
multi-layer security, ACL, IDS, and Content Filters.
Final deliverables include documentation and test procedures for network
hardware and software.
Management
Tools - Castle Rock SNMPc, Cisco Secure ACS, Cisco Works.
Security
– Firewall with IDS - Firewall
for a Public Utility. Designed and
implemented a Cisco based Firewall solution from a previously unsecured
multi-segmented LAN/WAN infrastructure scheme. Required multi-platform integration plans including database servers,
embedded control systems, and employee workstations. Final solution included Cisco IDS for complete monitoring,
alerting, and log reporting.
Internet
Enabled VPN Software Rollout - Rollout
support team traveling to various sites across the country to install
client-server applications. Configure
network and servers to provide content and send results via VPN to data center.
Provide Help Desk Support for on-going requirements.
Wireless Point-to-Point
- Design
and implementation of secure 802.11b Cisco 340 based bridges to extend an
existing network. This bridge cost
effectively provided a solution over ordering a DSL or Frame connection to a new
facility within line-of site of an existing campus building.
System utilized rotating WEP Keys and Clients VPN services.
Secure
Web Portal for Patient Data Sharing - Designed
and implemented an Oracle back-end with Java front-end that enabled various
medical organizations operating in 50+ sites to share patient data.
Incorporated within this site is high SSL e-mail, data encryption,
middleware applets for disparate databases, and complete administrative
functions for non-IT staff
Secure
Frame Relay WAN for Medical Facility
- Design,
and implementation of a 15 site independent clinics and offices Frame Relay WAN
connection with one hospital. This
WAN connects to the secure internal LAN of the hospital and the clinics.
The hospital has utilized T1’s into two separate Frame Relay
providers’ clouds. Remote sites
have Frame connections to the closest ISP’s cloud.
High-Volume
e-Commerce Hosting / ASP
- Designed
and implemented T/3 connectivity to two separate Internet Service Providers.
Installed dual core routers with BGP and HSRP for redundancy, additional
PIX Firewalls for enhanced security, Local Directors and core switches with ASLB
for server load balancing and high speed backbone switching including a second
site to accommodate for geographic redundancy and load balancing.
Communications
/Telco Company Corporate Backbone & Frame Relay WAN
- Re-design
support, implementation, and rollout of a Core ATM/Gigabit backbone and remote
sites on Frame Relay network. Redesigned
the Nortel ATM core to 6500 Cisco Catalyst switches with gigabit ethernet.
Redesigned
and moved many remote sites from Point to point T1s to a Frame relay. Implemented VoFr at remote sites using 3620 Cisco routers on
sites and 3660 at the core. Assisted
in implementing a centralized NOC to monitor the entire network.
World
Trade Organization – 2001 Summit -
System
designed for maximum security and fault-tolerance; utilized redundant Internet
connectivity using dual core routers with BGP and HSRP, multi-layer security
with PIX Firewalls and ISS Real-Secure IDS, high availability and response time
using cache engines dual packet shapers. Core
Network & WAN built around Cisco Core Switch, dual routers with HSRP,
Win2000 Servers, Network Area Storage, Local Director and for 99.999% up-time.
24x7 Network monitoring & management with HP OpenView &
CiscoWorks
Our
solutions address the critical components for your business to utilize and realize
the growth the Internet offers.
|
