______________________________________________________________________________ Kimmo Suominen Espoo Finland kimmo at suominen dot com ______________________________________________________________________________ Summary Innovative technology leader with a wide-ranging skill set. Designed, built, and supported best-of-breed systems infrastructure for applications in derivatives trading, large-scale Internet access, and web/mobile content management. Extensive software development experience with hands-on contributions to noted open source projects (NetBSD, BIND, Sendmail, Emacs). Deep knowledge of modern network, operating system, and database technologies from both an engineering and operations perspective. Capable team leader and able communicator. Seeking a lead position in network and systems design and implementation. ______________________________________________________________________________ Professional Experience 2006 to present CTO, Director ICT 2006 Product Manager, Social Media Technologies Oy Red Tail Media Ltd, Helsinki, Finland Red Tail Media provides Social Media strategies, concepts, service formats and technologies for brand marketers and media. * Designed and developed a syndication engine that can provide near real time information about activity both across all products and on external systems using standard interfaces such as RSS and XML-RPC. * Implemented a powerful blogging service platform by extending WordPress MU. * Enabled mobile blogging by designing an MMS to XML-RPC gateway. * Enhanced service scalability and management through a database driven DNS architecture and application-specific plugins. * Designed a comprehensive search service for cross-product deployment using Sphinx. Implemented an XML-RPC interface for the service. * Expanded server capacity to facilitate better separation of development and production environments and to establish a controlled environment for software upgrade testing. * Designed a new server environment using Debian Linux that provides better service isolation, flexible disk space allocation, better on-going software maintenance and enhanced security when compared to earlier out-sourced solution. * Planned service routines and customer coordination for efficient server maintenance. 2001 to 2005 Vice President of Network Infrastructure Commerzbank Capital Markets Corporation (CCMC), New York, NY, USA CCMC is a wholly owned registered broker-dealer of Commerzbank AG, trading, selling and structuring bonds and equities. * Automated network connectivity fail-over using a combination of dynamic routing and layer 2 redundancy techniques, completely replacing manual fail-over procedures. * Established centralized logging, log monitoring and reporting, and availability, bandwidth and service level monitoring for all network infrastructure. * Implemented a centrally managed authentication service using replicated RSA SecurID and RADIUS servers. * Migrated to a unified 3-layer Internet firewall that supports transparent use of multiple incoming and outgoing access paths for added capacity and fail-over. * Redesigned market data connectivity to address several problems: * Improved router CPU utilization over 70% by reconfiguring IOS features. * Implemented a packet-filtering firewall for added security. * Designed and implemented transparent multi-site fail-over. * Enhanced Disaster Recovery environment to provide constant service to support use as a Business Continuity Center that can also augment normal production capacity. * Established a web-based document authoring system encouraging regular documentation updates. The system was also adopted by technical groups at other Commerzbank offices. * Provided technical review for overall architecture and especially for network connectivity and security issues for both internal and vendor-proposed applications. * Managed and handled day-to-day operational activities for network and data center infrastructure (problem resolution, capacity management, planning, vendor relations). 2000 to 2001 Network Strategist Blink.com, Inc., New York, NY, USA Blink created a smarter Internet through its interactive community where members could access and share their bookmarks from any wired or wireless Internet-enabled device. * Migrated to a global VPN structure that provides secure and resilient connectivity. * Implemented a transparent fail-over scheme for Internet connectivity, first at application level and later also at transport level using dynamic routing. * Established network traffic and route monitoring. * Reconfigured e-mail delivery to utilize multiple redundant systems for high availability. * Implemented a fully automated custom installation of Red Hat Linux. * Migrated the office workstations to a uniform Windows 2000 environment. * Developed documented routines for maintaining the computing environments. * Developed enhancements for proprietary web portal software. 1993 to 2000 Network Operations Manager Manager of Systems Systems Programmer Juno Online Services, Inc. / D. E. Shaw & Co., L.P., New York, NY, USA Juno was a leading provider of Internet online services in the United States. It was the largest technology venture investment to date by the D. E. Shaw group. * Designed and implemented a multiple autonomous system network that provides a high level of redundancy, extended control of traffic flows and complete support for VLSM. * Developed a configuration library for Cisco IOS to unify router configurations. * Managed the Systems department supporting the office and development environments. * Evaluated and selected Internet and network service providers and co-location facilities. * Designed the beta test system and expanded it into a scalable production environment. * Configured LANs, leased lines, CSU/DSU hardware and channel banks. * Provided primary support for standards conformance of proprietary e-mail software. * Drafted and implemented security measures and policies. * Developed telecommuting solutions (secure access via ISPs, analog and ISDN dialup). * Evaluated VoIP solutions for replacing a traditional PBX/Voicemail system. * Provided second-level support and participated in UNIX system maintenance. D. E. Shaw & Co., L.P., is a global securities and investment firm whose activities center on various aspects of the intersection between technology and finance. * Maintained and expanded local and wide area networks. * Designed global dynamic routing policy with automatic connectivity fail-over. * Designed and installed several remote stand-alone and office systems. * Developed and supported telecommuting solutions over analog lines and ISDN. * Evaluated and enhanced open source software to provide desired functionality. * Wrote tools for UNIX system maintenance and support tasks. * Provided primary support for electronic mail and Usenet News. * Provided system support for trading application environments. 1991 to 1992 Freelance Systems Analyst 1988 to 1991 Senior Systems Analyst Lappeenranta University of Technology, Computing Centre Lappeenranta, Finland * Designed and coordinated the integration of multiple UNIX platforms to a common environment through extensive use of services on the local area network. * Planned the use of applications in a networked multi-vendor environment. * Installed and managed HP-UX systems (HP9000 Series 800, 700 and 300). * Ported open source software to multiple UNIX platforms. * Supported users on UNIX, VMS, ConvexOS, Apollo DomainOS and MPE. * Taught exercise classes and graded home assignments and assignment projects for Data Structures and Algorithms, Information Systems and Systems Design, and Languages, Compilers and Interpreters. ______________________________________________________________________________ Education B.S. equivalent, Information Technology Lappeenranta University of Technology, Lappeenranta, Finland Studies include a one year scholarship in the Master of Science program of the Department of Computer and Information Sciences at the University of Delaware, Newark, DE, USA. ______________________________________________________________________________ Related Interests NetBSD Developer I was sponsored and accepted as a member of the NetBSD Foundation and gained full commit privileges to the NetBSD code repository in 1998. I had selected NetBSD as my primary operating system in 1994. Access to source code allowed me to properly and permanently fix problems in the operating system. NetBSD also has extensive multiplatform support, and over time my network has included i386, shark, sparc and vax machines. Earlier UNIX-like operating systems I have run include Dell SVR4 and ISC. Open Source Software When I started working on UNIX systems I very soon was introduced to the concept of Open Source (or Public Domain). I am a strong supporter of the concept, and have contributed to numerous efforts over the Internet. I have actively participated in developing several commonly used pieces of software (e.g. BIND 1993-1998, Sendmail 1990-1998, Emacs 1989-1995). Since 1998 my primary channel for supporting Open Source initiatives has been through the NetBSD Packages Collection (pkgsrc), which is a framework for building third-party software on NetBSD and other UNIX-like systems. ______________________________________________________________________________ Key Words Languages Finnish: Native. English: Excellent. Swedish: Good. German: Basics. Networking Hardware: Cisco (series 7500, 7200, 6500, 5500, 4700, 3600, 3550, 2900, 2600, 2500, 1900, 1000, 800), IOS 10-12. Extreme Networks. Bay Networks. Wellfleet. Intel Shiva. Netopia. Xylogics Annex. Ascend. Netgear. 3Com. Allied Telesyn. Xylan. Chipcom. MorningStar. Adtran. Larscom. Routing: BGP4+. OSPF. RIP. EIGRP. PIM. IGMP. RPSL. MHSRP. Transport: IPv4. IPv6. AppleTalk. IPX. X.25. Link: HDLC. PPP. Frame Relay. ATM. CDMA. Media: Ethernet (1000BaseSX, 1000BaseTX, 100BaseTX, 10BaseT). DS-3. T-1. DS-0. Wireless LAN (IEEE 802.11a/b/g, Symphony). DSL. ISDN. Dialup. Services: DNS. NIS. DHCP. BOOTP. NFS. SMTP. NNTP. HTTP. XML-RPC. SNMP. RADIUS. IPsec. Kerberos 5. Kerberos IV. RSA SecurID. Firewalls: IP-Filter. Cisco IOS/FW/IDS (CBAC). Cisco PIX. Check Point FW-1. IP Chains. UNIX Systems: NetBSD. Linux (Redhat, Debian, Ubuntu). Solaris. SunOS 4. HP-UX (3.10-10.20). Digital Unix. IRIX. SCO. Dell SVR4. Apollo DomainOS. ConvexOS. Software: BIND. MyDNS. IP-Filter. Postfix. Sendmail. Cyrus. Procmail. Anomy Sanitizer. Apache. Nginx. MySQL. Sphinx. Icecast. Leafnode. C-News/NNTP. Zebra. Quagga. GateD. IRRd. UUCP. AMD. AutoFS. Automount. Samba. MMDF. CVS. RCS. Subversion. svk. KickStart. X11. Rsync. Amanda. Other Systems Windows Vista/XP/2000/NT/98/95. Mac OS X. Vax/VMS. DOS. MPE. VM/SP. PDP-11/RSX. Programming Shell Programming (e.g. sh, awk, sed, make, m4). PHP. Perl. Tcl. C. C++. Topics Network Design. Dynamic Routing. Global Routing Policies. Network Security. Firewalls. Business Continuity. Disaster Recovery. Design of UNIX Environments. UNIX Integration. UNIX System Tools. Open Source Software Development. ______________________________________________________________________________ @(#)$KimmoSuominen: ksuominen.en.txt,v 1.3 2008/10/29 21:26:06 kim Exp $