// Senior Network Engineer & Marine Corps Veteran

JUAN
VON VOGLER

CCNP Enterprise  ·  Active Top Secret Clearance  · 
Woodbridge, VA
TekSynap / DLA — JETS Contract
TS/SSBI Initiated Jun 2025
Get In Touch View Experience
// 01 — About

Who I Am

Senior Network Engineer with 6+ years of progressive DoD enterprise experience designing, implementing, and troubleshooting complex infrastructure across classified and unclassified environments. Currently supporting the Defense Logistics Agency (DLA) via TekSynap on the JETS Task Order, providing Tier 3 engineering across IOEE network infrastructure.

My work spans Cisco ACI/APIC, DMVPN/IPSec, ISE/802.1x/TACACS+, VoIP/CUCM, Oracle SBC, and network automation via Ansible and OpenText NA. I've led enterprise VLAN standardization across distributed DoD sites, ISE authentication migration, GitHub-based DevSecOps toolchain buildout, and STIG compliance automation on active production systems.

U.S. Marine Corps veteran (2/5 Marines, Camp Pendleton). In my final two years of service, I developed a passion for computer networking, security, and systems hacking. Starting with Cisco Packet Tracer, building my own labs, learning to code, and solving real operational problems. I assisted my unit with process and SOP reform and worked directly with our career planner to streamline his scheduling workflow using Calendly, one of the most innovative scheduling tools of that era. That was the spark. After five years of active duty as a Rifleman and Security Force Guard, I transitioned to IT in 2020 and haven't looked back. Pursuing my B.S. in Cyber Security at UMGC, with the CCIE in my sights.

6+ Years DoD Engineering
9 Active Certifications
TS Clearance / SSBI
5yr USMC Service
// 02 — The Operator's Mindset

How I Operate

I've been obsessed with growth since I was 14. Self-help books, systems thinking, finding ways to optimize. It's just how I'm wired. I have a systematic way of approaching problems, and I'm always looking for ways to add more to my plate by making what's already there run leaner. That drive is what led me to join arguably the hardest branch of the military. My recruiter told me I had the IQ for Intel or Communications. I chose the infantry anyway, because I wanted the challenge. I wanted to test my grit, build my resilience, and prove something to myself. Looking back, that decision shaped everything that came after it.

During my time in the Corps, I competed as a men's physique bodybuilder. The sport wasn't just about aesthetics. It was about discipline, structure, and competing with yourself every single day. It was a natural extension of everything I was already doing: showing up, pushing past what I thought I was capable of, and never settling for average.

Toward the end of my service, I picked up Mindset: The New Psychology of Success by Carol Dweck. One idea landed hard: we are only as capable as the time and effort we've invested in a given domain. That realization sent me toward something I knew nothing about, coding and computer systems. No background, no roadmap. Just a decision to keep hammering. I built labs, followed YouTube tutorials, pieced together concepts, and fell in love with networking and systems architecture. By the time I separated from the Marine Corps, I had already laid the foundation for the career I was about to build.

The military gave me discipline. Bodybuilding gave me structure. The growth mindset gave me permission to be a beginner at something hard and stay in it anyway. That combination is what I bring to every project, every ticket, and every new technology I encounter. I'm not just chasing titles or certifications. I'm a student of this domain, and I plan to stay one. The deeper I go, the more there is to learn, and that's exactly what keeps me excited for whatever comes next.

// 03 — Technical Skills

Core Competencies

Routing & Switching
  • BGP, OSPF, EIGRP, STP
  • Cisco Catalyst, Nexus, UCS
  • VLAN / 802.1Q / VPC / LACP
  • MPLS / WAN Architecture
  • Layer 2 & 3 Troubleshooting
Data Center & DC Fabric
  • Cisco ACI / APIC / NDO
  • Tenant, EPG, BD Provisioning
  • VMware vSphere / vCenter
  • Multi-pod Troubleshooting
  • Cisco UCS Fabric Interconnect
VPN & Tunneling
  • DMVPN (Phase 1/2/3)
  • IPSec / IKEv1 / IKEv2
  • GRE / mGRE / NHRP
  • Crypto Map & Tunnel Protection
  • SatCom / StarShield Integration
Identity & Security
  • Cisco ISE / 802.1x / TACACS+
  • RADIUS Authentication
  • Check Point Firewall (CCSA)
  • Cisco ASA / ACLs / NAT
  • DISA STIG / DoD Compliance
Unified Communications
  • Cisco CUCM / Dial Plan
  • Oracle SBC (Acme Packet 3900/4600)
  • SIP Trunking / TLS/SRTP
  • VoIP QoS & CAC Policies
  • RightFax / Fax-over-IP
Automation & DevSecOps
  • Ansible / OpenText Network Automation
  • GitHub Enterprise / Version Control
  • Python / PowerShell Scripting
  • Jira + ServiceNow Integration
  • STIG CKL Automation
Monitoring & Analysis
  • nGenius Packet Analysis
  • SolarWinds
  • Wireshark / PCAP Analysis
  • ServiceNow Ticketing
  • EVE-NG / GNS3 Lab Simulation
Cloud & Emerging
  • Microsoft Azure (AZ-900 in progress)
  • AWS Environments
  • PostgreSQL / pgvector / AI/ML Pipelines
  • Python RAG / LLM Integration
  • Zero Trust Architecture
// 04 — Experience

Career History

Senior Network Engineer — Telecommunications
JUN 2025 — PRESENT
TekSynap — Defense Logistics Agency (DLA), JETS Task Order | Hybrid, Fairfax VA
  • Led enterprise VLAN standardization across distributed DoD remote sites using Cisco ACI and APIC; architected migration from VLAN 6 to VLAN 2504/DNS-Raptor, authored SOPs adopted as the team standard, and conducted live walkthroughs for the engineering team.
  • Conducting Tier 3 DMVPN/IPSec troubleshooting on SatCom (StarShield/DoD Starlink) forward-deployed sites; performing config delta analysis across NHRP registrations, IKEv2 SA states, SIP ALG, NAT, and QoS to resolve CUCM phone registration failure on Unit 6 vs. Unit 10 baseline.
  • Architecting ISE/TACACS+ migration to replace RSA key-based SSH authentication across DLA devices — enabling centralized identity management and downstream Ansible automation at scale.
  • Engineering Ansible automation workflows through OpenText Network Automation (NA), collaborating cross-functionally to validate playbooks against live DLA LAN infrastructure.
  • Founded DLA's GitHub Enterprise Configuration Review Repository — designed branch/repo structure for network configuration version control as part of the DevSecOps Tools initiative.
  • Driving Jira + ServiceNow integration project to unify the DevSecOps toolchain; managing stakeholder coordination and implementation milestones across engineering and operations.
  • Automated STIG compliance reporting using PowerShell to parse and evaluate 100+ CKL files, reducing manual audit time and improving deliverable accuracy.
  • Configured Oracle SBC (Acme Packet 3900) SIP trunk parameters for RightFax migrations; supporting Okinawa IOEE site relocation to Fort Buckner with WAN circuit coordination.
ACI/APICDMVPN/IPSec ISE/TACACS+Ansible OpenText NAGitHub Enterprise CUCMOracle SBC STIG/PowerShellServiceNow/Jira
Unified Communications Design Engineer
2024 — JUN 2025
Leidos — DoD Enterprise UC Infrastructure | Remote
  • Designed and implemented enterprise UC infrastructure across DoD environments — Cisco CUCM call routing, SIP trunk architecture, and endpoint provisioning at multi-site scale.
  • Configured Oracle Session Border Controllers (Acme Packet 3900/4600) for classified and unclassified deployments; managed codec negotiation, TLS/SRTP, CAC policies, and geographic redundancy.
  • Led VoIP migration projects and RightFax server integrations with zero-downtime production cutovers across multi-site DoD environments.
  • Aligned UC infrastructure with DoD STIG and Zero Trust requirements; collaborated with network and security teams across media, signaling, and management planes.
Cisco CUCMOracle SBC SIP/TLS/SRTPVoIP Migration STIGZero Trust
Senior Network Engineer
2021 — 2024
Leidos — DoD Enterprise Network Infrastructure | Remote / On-Site
  • Provided Tier 3 engineering support spanning hundreds of DoD locations — BGP, OSPF, EIGRP, MPLS, DMVPN, RSTP, VPC, LACP at enterprise scale.
  • Engineered and maintained DMVPN hub-and-spoke architectures connecting forward-deployed and CONUS DoD sites; managed NHRP, mGRE, IKEv2/IPSec, and crypto policies in production.
  • Administered Cisco ACI/APIC data center fabrics — tenant provisioning, EPG/BD policy, contract management, and multi-pod troubleshooting.
  • Managed Cisco ISE for 802.1x NAC across wired and wireless enterprise segments; maintained RADIUS/TACACS+ policies, certificate profiles, and posture compliance rules.
  • Administered VMware vSphere/vCenter environments; managed virtual switching, vMotion, and physical-to-virtual integration for mission-critical workloads.
  • Maintained Check Point and Cisco ASA firewall policies — rule base audits, NAT, and IPS tuning per DoD security standards.
DMVPN/IPSecBGP/OSPF/EIGRP ACI/APICISE/802.1x VMwareCheck Point/ASA Cisco UCSMPLS
IT Service Desk Analyst
2019 — 2021
Perspecta (DXC Technology) — DoD Enterprise IT Support | On-Site
  • Provided Tier 1/2 IT support for DoD users — network connectivity, VPN, Active Directory; managed tickets via ServiceNow. Foundation for progression to network engineering.
ServiceNowActive DirectoryVPN
Rifleman / Marine Security Force Guard
2014 — 2019
United States Marine Corps — 2nd Battalion, 5th Marines (2/5), 1st MarDiv | Camp Pendleton, CA & Kings Bay, GA
  • Served 5 years active duty as MOS 0311 Rifleman and Marine Security Force Guard; completed IT/helpdesk support role in final assignment. Honorably discharged September 2019.
  • Good Conduct Medal, GWOT Service Medal, Sharpshooter Rifle, Marksman Pistol. Security Force Training (M4Y, Jun 2015).
MOS 0311Security Force DoD OperationsHonorable Discharge
// 05 — Personal Projects

Lab & Builds

PROJECT 1
EVE-NG Network Automation Lab
Production-grade EVE-NG topology mirroring a DoD network environment — Cisco ISE, Active Directory/DNS, Ansible control node, RADIUS/NTP server, and Cisco routers/switches. Used to develop and validate Ansible playbooks, TACACS+ authentication workflows, and routing changes prior to DLA production deployment.
EVE-NGAnsible ISE/TACACS+Cisco IOS
PROJECT 2
AI Second Brain (PostgreSQL / pgvector)
Personal AI assistant backed by PostgreSQL with pgvector (Supabase), Voyage AI embeddings, and a custom MCP server integrated with Claude Desktop. Supports semantic memory retrieval, multi-calendar management, project tracking, and workflow automation across personal and professional life. Secondary retrieval pipeline built on ChromaDB and OpenAI embeddings.
PostgreSQL/pgvectorPython SupabaseVoyage AI MCP Server
PROJECT 3
Multi-Agent AI Operating System
Modular multi-agent AI system built on an Obsidian knowledge vault, with specialized agents for email triage, calendar management, and workflow automation. Flask dashboard in development for orchestration and control. Directly applies LLM, API integration, and automation skills relevant to DevSecOps toolchain development.
PythonFlask Obsidian/RAGMulti-Agent
PROJECT 4
STIG PowerShell Automation Engine
PowerShell automation pipeline to parse and evaluate 100+ DoD STIG CKL (Checklist) files, producing compliance reports that previously required days of manual review. Deployed in production at DLA — reduced audit time significantly and improved accuracy of security compliance deliverables.
PowerShellDISA STIG CKL ParsingDoD Compliance
PROJECT 5
Custom Web Builds — Multi-Client
Designed and deployed custom websites for multiple businesses, each with a different technical stack based on the client's specific use case:

PepTek LLC — Research-grade peptide e-commerce store built on Shopify with custom theme development, age verification gate, legal disclaimer integration, and Bankful payment processing API integration for high-risk merchant compliance.

JBExclusive Studios [SITE OFFLINE] — Full barbershop booking platform with online appointment scheduling, service catalog, and client management. Built on WIX with custom CSS; managed domain, DNS, and hosting.

Divine Assisted Care LLC — Professional services site for an in-home mental health nursing practice. Built with a custom intake/inquiry form, backend form handling, HIPAA-conscious data collection design, and full server and hosting management post-launch.
Shopify/LiquidAPI Integration Payment SystemsCustom Backend DNS/HostingWIX
PROJECT 6
Python Network Automation Framework
Building Python-based network automation scripts and tools integrating with Ansible and REST APIs to streamline device management, compliance checks, and configuration auditing. Goal is to combine network engineering expertise with modern scripting for enterprise-scale automation workflows.
PythonAnsible REST APIsNetmiko
// 06 — Credentials

Certifications & Education

CCNP
Cisco CCNP Enterprise
Active — Jun 2025 → Jun 2028
CORE
Cisco Specialist: Enterprise Core
Active — Sep 2024 → Sep 2027
ADV
Cisco Specialist: Enterprise Advanced Infra
Active — Jun 2025 → Jun 2028
CCNA
Cisco CCNA
Active — Sep 2021 → Sep 2027 | ID: CSCO14048202
CASP+
CompTIA SecurityX (CASP+) CAS-004
Active — Oct 2024 → Oct 2027
A+
CompTIA A+ CE
Active — Oct 2024 → Oct 2027
CCSA
Check Point CCSA R81
Active — Jul 2025 → Jul 2027
ITIL
ITIL Foundation v4
Issued Feb 2020
DCSA
Derivative Classification — DCSA
Issued Oct 2025
AZ-900
Microsoft Azure AZ-900
In Progress
CCIE
CCIE Enterprise Infrastructure
In Progress — Active Study Track
B.S.
B.S. Cyber Security — UMGC
Expected Aug 2026
Clearance Level
ACTIVE TOP SECRET
TS Status
SSBI INITIATED — Jun 2025
// 07 — Contact

Get In Touch

Open to senior network engineering, DoD infrastructure modernization, and DevSecOps opportunities. If you need a sharp eye on your network or a team to solve what's been sitting in your backlog, let's talk.

Need an Expert Eye on Your Network? Infrastructure modernization, AI and automation strategy, or a stubborn problem that's been circulating your engineering team with no end in sight — my team provides in-depth analysis, tool recommendations, and hands-on consulting tailored to your environment.

Email juanmvonvogler@gmail.com Phone (571) 205-2907
Send a Message
Message Received
Thanks for reaching out. I'll review your message and get back to you as soon as possible — usually within 24 hours.