CCNP SECURITY CERTIFIED
Frank-Armel Dipita
Senior Network Security Engineer with a decade of enterprise experience specializing in Cisco routers, Palo Alto firewalls, Cisco ASA security appliances, and BGP routing. Currently supporting critical DoD network operations while delivering 99.9% uptime for Fortune 500 infrastructure.
TECHNICAL EXPERTISE
01.
Network Infrastructure
Expert in Cisco router configuration (IOS, Catalyst, Nexus), BGP/EIGRP/OSPF routing protocols, enterprise LAN/WAN architecture design, SD-WAN migration, and high availability solutions (HSRP, VRRP). Maintained 99.9% uptime across 50+ global locations.
02.
Security & Firewalls
Specialized in Palo Alto firewall deployment, Cisco ASA security appliances, next-generation firewalls (NGFWs), VPN solutions (IPsec, SSL/TLS), and IDS/IPS systems. Achieved FedRAMP compliance 6 months ahead of schedule with zero security incidents.
03.
Cloud & Automation
Proficient in AWS cloud networking (VPC, Direct Connect), Azure infrastructure, hybrid cloud connectivity, infrastructure as code (IaC), Python/Ansible automation, and comprehensive monitoring with SolarWinds and NetFlow Analyzer.
PROVEN RESULTS
Quantifiable Achievements
Track record of delivering secure, high-performance network infrastructure with measurable business impact across enterprise and government environments. Led complex migrations, security implementations, and operational excellence initiatives.
99.9% network uptime across 50+ global locations with zero unplanned outages (Caterpillar Inc.)
40% cost reduction ($2M+ annual savings) through MPLS to SD-WAN migration
500+ secure remote users deployed with zero security incidents over 2-year period
FedRAMP compliance achieved 6 months ahead of schedule (government projects)
50+ network cutovers executed with 100% success rate and seamless transitions
35% reduction in Mean Time to Repair (MTTR) for DoD network operations
95% proactive issue resolution before user impact through comprehensive monitoring
INDUSTRY CREDENTIALS
Certifications & Training
Committed to continuous learning and maintaining industry-leading certifications in network security, cloud infrastructure, and automation. All certifications are current and verifiable through Credly digital badges.
© 2025 Mansa IT. All rights reserved.
About Me
My journey to becoming a network security engineer didn't follow a traditional path, it's a story of opportunity, gratitude, and service.I was born and raised in Cameroon, West Africa, where I developed an early fascination with technology despite limited resources. While my peers were content with what they had, I spent countless hours at internet cafés, teaching myself networking fundamentals and dreaming of what was possible beyond our small corner of the world.After earning my Bachelor's degree at the University of Buea, I made the life-changing decision to move to the United States, a place that represented endless possibilities. America didn't just give me access to world-class technology and education; it gave me the chance to transform my passion into a career that could make a real impact.But with opportunity comes responsibility.The United States had given me so much, a platform to grow, the freedom to innovate, and a community that believed in meritocracy over circumstance. I realized I couldn't just take; I needed to give back. So I made a decision that surprised many: I enlisted in the United States Air Force.Serving wasn't just about patriotism, it was about being part of something greater than myself. It was about protecting the digital infrastructure that keeps our nation safe, securing the networks that enable our warfighters to complete their missions, and ensuring that the freedoms I had come to cherish would be there for the next generation.
Today, as a CCNP Security certified Network Security Engineer supporting critical Department of Defense operations, I bring a unique perspective to every challenge: the humility of someone who once had limited access to technology, the gratitude of an immigrant who found opportunity in America, and the dedication of a service member committed to operational excellence.My story isn't just about technical expertise in Cisco routers, Palo Alto firewalls, or BGP routing protocols. Though I've spent a decade mastering those skills. It's about proving that where you start doesn't determine where you finish. It's about understanding that the best networks, like the best communities, are built on trust, resilience, and the willingness to serve others.Whether I'm maintaining 99.9% uptime for Fortune 500 infrastructure or troubleshooting network issues at 2 AM to keep DoD operations running, I approach every challenge with the same mindset: this isn't just a job, it's my way of honoring the opportunities I've been given and the people who believed in me along the way.From the internet cafés of Cameroon to the network operations centers of the United States Air Force, my journey has taught me that technology is powerful, but purpose is what makes it meaningful.I'm available for contract opportunities where I can bring not just technical excellence, but also the perspective of someone who understands that behind every network configuration, every firewall rule, and every security protocol, there are real people depending on us to get it right.
Featured Projects
Project 1:
🎖️ DoD Dual-Enclave Network InfrastructureU.S. Department of Defense | Site PATTON | 2025
Lead Network Engineer | Full Lifecycle Deployment
Designed and deployed mission-critical network infrastructure supporting 211 military endpoints across classified (SIPR) and unclassified (NIPR) security domains. Led complete greenfield implementation from architecture design through operational validation.🔐 KEY TECHNOLOGIES- Cisco ISR 4321 Router with BGP/OSPF routing
- Dual Cisco Catalyst 9200 Layer 3 switches
- KG-175D TACLANE NSA-certified encryption
- Cisco Unified Communications Manager (VoIP)
- DISA Security Technical Implementation Guides🎯 MISSION RESULTS✅ 211 endpoints operational across dual enclaves
✅ 100% DISA STIG compliance (14 of 14 controls)
✅ Zero security violations during validation
✅ Zero post-deployment configuration errors
✅ BGP peering established with Global Information Grid
✅ Complete documentation for audit compliance🛡️ SECURITY ACHIEVEMENTS- NSA Type 1 encryption for cross-domain data flow
- Complete physical separation of classified/unclassified networks
- SSH v2 hardening with 2048-bit RSA keys
- Port security with MAC address sticky learning
- Management access control lists restricting unauthorized access💼 BUSINESS IMPACTEnabled immediate operational capability for 200+ DoD personnel supporting mission-critical operations. Delivered on-time, zero-defect network deployment with comprehensive security compliance, setting the foundation for long-term operational excellence and audit readiness.
Project 2:
🏢 Enterprise SD-WAN Migration
Caterpillar Inc. | 2023-2024Designed and deployed SD-WAN infrastructure across 50+ global locations, replacing legacy MPLS. Achieved 40% cost reduction ($2M+ annual savings) and 55% performance improvement while maintaining 99.9% uptime with zero service disruptions.Technologies: Cisco Routers, BGP, SD-WAN, SolarWinds, NetFlow Analyzer
Project 3:
☁️ AWS Hybrid Cloud Integration
Caterpillar Inc. | 2023Integrated on-premises infrastructure with AWS cloud services using VPC, Direct Connect, and secure VPN backup. Deployed comprehensive monitoring with SolarWinds across hybrid environment, achieving 95% proactive issue resolution before user impact.Technologies: AWS VPC, Direct Connect, VPN Gateway, Hybrid Cloud, SolarWinds
Project 4:
🔐 FedRAMP Security Implementation
Bailiwick, Inc. | 2022-2023Led comprehensive security architecture deployment for government clients requiring FedRAMP compliance. Implemented Palo Alto firewall security, secure VPN solutions with MFA, and defense in-depth strategies. Achieved certification 6 months ahead of schedule with zero security incidents over 2 year period.Technologies: Palo Alto Firewalls, VPN (IPsec, SSL/TLS), IDS/IPS, Cisco ASA
Services & Expertise
Service 1:
Network Architecture & DesignEnterprise LAN/WAN design, SD-WAN migration, high-availability architecture, BGP routing optimization, network segmentation, and redundancy planning.
Service 2:
Security InfrastructurePalo Alto firewall deployment, Cisco ASA configuration, next-gen firewall (NGFW) implementation, VPN solutions, IDS/IPS integration, and security compliance (FedRAMP, PCI-DSS).
Service 3:
Cloud NetworkingAWS cloud infrastructure (VPC, Direct Connect), hybrid cloud connectivity, cloud migration planning, multi-cloud architecture, and infrastructure as code (IaC).
Service 4:
Network Operations & Monitoring24/7 network monitoring (SolarWinds, NetFlow), performance optimization, troubleshooting and incident response, capacity planning, and documentation.
Service 5:
Security & ComplianceSecurity assessment and hardening, compliance implementation (FedRAMP, DoD, PCI-DSS), vulnerability management, security automation, and audit support.
Service 6:
Technical Leadership & MentoringTeam leadership, knowledge transfer, technical documentation, project management, and junior engineer mentorship.
Let's Connect
Available for remote contract opportunities in network engineering, security architecture, and cloud infrastructure.I'm particularly interested in:
✓ Long-term contract roles (6+ months)
✓ Enterprise network design & implementation
✓ Security architecture & compliance projects
✓ Cloud migration & hybrid infrastructure
✓ DoD and government contractingPreferred Industries:
Government/Defense • Enterprise Technology • Financial Services • Manufacturing