JASON DAVIS Lewisville, TX • (940) 340-9369 • newton214@gmail.com linkedin.com/in/jason-davis-27442118a -------------------------------------------------------------------------------- PROFESSIONAL SUMMARY -------------------------------------------------------------------------------- Solutions Architect with 15+ years of experience designing and delivering secure, scalable, and compliant infrastructure solutions for Fortune 500 enterprises, financial institutions, and hyperscale cloud environments. Deep expertise in cloud architecture (AWS, hybrid, with accelerating Azure adoption), microservices integration, API design, and automation-first operations. Proven ability to translate complex business and regulatory requirements (PCI DSS, SOX, HIPAA, NIST) into reference architectures, patterns, and reusable components. Bridge the gap between traditional data center fabrics and modern cloud-native platforms. Now seeking to apply this architectural depth at Fiserv to shape the future of fintech infrastructure. -------------------------------------------------------------------------------- CORE COMPETENCIES – TECHNICAL -------------------------------------------------------------------------------- CLOUD ARCHITECTURE CONTAINERIZATION & ORCHESTRATION • AWS (GovCloud, Direct Connect) • Docker / Kubernetes (AKS – accelerating) • Hybrid Cloud Interconnect • Azure Kubernetes Service (studying) • Azure (accelerating proficiency) • Container networking / CNI • AWS Transit Gateway / VPC • Helm / Kustomize • Infrastructure as Code (IaC) • Service mesh concepts (Istio) MICROSERVICES & API AUTOMATION & IaC • REST API design / integration • Python (Netmiko, NAPALM, Flask) • API gateway patterns • Ansible (Cisco, Fortinet, Linux) • Event-driven architecture • Terraform (AWS, Equinix) • Domain-Driven Design (DDD) • YANG / NetConf / REST APIs • Message queues (conceptual) • Git / CI/CD (GitHub Actions, Jenkins) SECURITY & COMPLIANCE SYSTEMS & PLATFORMS • PCI DSS (implemented) • Red Hat Enterprise Linux (RHCSA) • SOX / NIST 800-53 • RHCE (in progress – Ansible focus) • HIPAA / HITRUST • Unix (AIX, Solaris) • Zero Trust Architecture • Kernel tuning / sysctl • Identity & access (IAM, RBAC) • Network performance analysis ADDITIONAL EXPERTISE • EVPN/VXLAN Fabric Design – multi-tenant, L3VNI, anycast gateway • Fortinet Security Fabric (NSE 4, NSE 5 in progress) • Meraki SD-WAN / Versa / Viptela • Financial services domain experience (TIAA-CREF, PCI DSS clients) -------------------------------------------------------------------------------- CERTIFICATIONS & DEVELOPMENT -------------------------------------------------------------------------------- • AWS Certified Solutions Architect – Associate • Red Hat Certified System Administrator (RHCSA) • Red Hat Certified Engineer (RHCE) – In Progress (Ansible Automation) • Fortinet NSE 4 – Certified • Fortinet NSE 5 – In Progress (FortiManager, FortiAnalyzer) • Cisco CCNP Enterprise & Data Center • Cisco DevNet Associate -------------------------------------------------------------------------------- PROFESSIONAL EXPERIENCE -------------------------------------------------------------------------------- TBX May 2022 – Sept 2024 Solutions Architect – SD-WAN & Security Served as the lead Solutions Architect for enterprise SD-WAN and security fabric engagements, translating business objectives into technical reference architectures, patterns, and reusable deployment frameworks. • DEVELOPED REFERENCE ARCHITECTURES for Fortinet Security Fabric and Meraki SD-WAN, including multi-site IPSec VPN topologies, application-aware routing policies, and Zero Trust network access patterns – adopted by multiple partners as standard design templates. • DESIGNED END-TO-END API INTEGRATION SOLUTIONS between FortiManager and internal orchestration systems, enabling automated policy provisioning and reducing deployment cycles by 30%. • LED PROOF-OF-CONCEPT ENGAGEMENTS for Fortune 500 financial and healthcare clients, documenting measurable outcomes (latency reduction, failover speed, operational overhead) that directly influenced seven-figure deals. • ESTABLISHED INTEGRATION STANDARDS for hybrid SD-WAN + public cloud connectivity, defining BGP peering patterns and route advertisement policies between on-premises FortiGate and AWS/Azure virtual networks. • COLLABORATED WITH PRODUCT AND ENGINEERING TEAMS to validate new firmware features, providing architectural feedback that shaped the Fortinet and Meraki roadmaps. -------------------------------------------------------------------------------- AMAZON WEB SERVICES (GOVCLOUD) Sept 2021 – May 2022 Cloud Solutions Architect – Hyperscale Networking Acted as a technical authority for AWS GovCloud networking, designing secure, multi-tenant overlay solutions for high-compliance government and financial tenants. • ARCHITECTED REFERENCE PATTERNS for VXLAN/EVPN overlays integrated with AWS Transit Gateway and Direct Connect, enabling consistent segmentation and hybrid connectivity for PCI DSS and ITAR-regulated workloads. • DEFINED NON-FUNCTIONAL REQUIREMENTS (scalability, availability, latency) for cloud network services and validated them through rigorous POCs and production pilots. • CREATED ARCHITECTURAL BLUEPRINTS AND MODELING DOCUMENTATION that traced customer security controls (NIST 800-53) directly to implemented AWS configurations – used by compliance auditors and solution architects. • DEVELOPED AUTOMATION FRAMEWORKS (Python, CloudFormation) that transformed manual networking tasks into codified, repeatable patterns, reducing provisioning time by 40% and eliminating configuration drift. • COLLABORATED WITH SECURITY, OPERATIONS, AND PRODUCT TEAMS to evolve reference architectures based on emerging threats and customer feedback. -------------------------------------------------------------------------------- VERIZON ENTERPRISE SOLUTIONS Jan 2020 – Sept 2021 Principal Solutions Architect – Cloud & Network Transformation Led solution architecture for Fortune 500 clients in finance, healthcare, and retail, designing hybrid cloud and SD-WAN transformations that balanced business agility with regulatory compliance. • DESIGNED END-TO-END HYBRID CLOUD ARCHITECTURES integrating on-premises data center fabrics (VXLAN/EVPN) with public cloud providers (AWS, Azure) via Direct Connect / ExpressRoute and BGP route exchange. • DEVELOPED REFERENCE ARCHITECTURES FOR SD-WAN MIGRATION (Versa, Aruba), including application steering, security policy federation, and zero- touch provisioning – reused across multiple enterprise engagements. • ESTABLISHED REUSABLE INTEGRATION COMPONENTS AND API-BASED AUTOMATION (Python, Ansible, YANG/NetConf) that reduced client onboarding time from weeks to days. • COLLABORATED WITH PRODUCT, SECURITY, AND OPERATIONS STAKEHOLDERS to translate business drivers (M&A, application modernization) into technical roadmaps and success measures. • MENTORED SOLUTION ARCHITECTS ON CLOUD-NATIVE DESIGN PRINCIPLES, IaC, AND API-FIRST OPERATIONS – shifting team mindset from device‑level configuration to system‑level architecture. -------------------------------------------------------------------------------- CHARTER COMMUNICATIONS Sept 2018 – Oct 2019 Senior Network Architect – Overlay & Cloud Platforms • ARCHITECTED EVPN/VXLAN OVERLAY FABRICS on Nexus 9K platforms to support multi-tenant segmentation and workload mobility across national data centers – defined L3VNI, anycast gateway, and route reflection policies. • DESIGNED API-BASED AUTOMATION FRAMEWORKS for TACACS configuration management, eliminating manual errors and ensuring consistent security posture across 500+ devices. • LED ROOT CAUSE ANALYSIS FOR CRITICAL PERFORMANCE INCIDENTS, including buffer tail drops on encrypted replication traffic; presented architectural recommendations that resolved MTU mismatches and oversubscription. • COLLABORATED WITH LINUX SYSTEMS TEAM to optimize DNS infrastructure migration, ensuring seamless cutover of national traffic. -------------------------------------------------------------------------------- ZIVARO (CONSULTING SOLUTIONS ARCHITECT) Oct 2018 – Jan 2020 Senior Solutions Architect – Healthcare & Enterprise • ARCHITECTED HIPAA-COMPLIANT VXLAN DATA CENTER FABRIC for Denver Health, designing micro-segmentation policies, multi-tenancy isolation, and disaster recovery patterns – successfully passed compliance audit. • DEVELOPED ANSIBLE-BASED AUTOMATION STRATEGY for Simmons Foods, displacing proprietary DNA Center and delivering $50K+ in licensing savings; created reusable playbooks for configuration validation. • PROPOSED AND IMPLEMENTED LAYER 3 TO THE EDGE ARCHITECTURE for CDPHE despite organizational resistance; provided architectural trade-off analysis that ultimately won team adoption. • CONTRIBUTED TO CISCO GOLD PARTNER RECERTIFICATION by leading technical deep-dives on ACI, EVPN, and automation capabilities. -------------------------------------------------------------------------------- ENTRUST (ZIVARO CONSULTING) Jan 2020 – Present Cloud Solutions Architect – PCI DSS Compliance • DESIGNED PCI-DSS-COMPLIANT AWS NETWORK ARCHITECTURE including VPC segmentation, Transit Gateway routing, and security group/NACL stratification – successfully audited by QSA. • ARCHITECTED STAGING ENVIRONMENT for pre-production validation of Ansible ACL playbooks, overcoming organizational resistance by demonstrating risk reduction and change accuracy. • PROVIDED EMERGENCY ARCHITECTURE SUPPORT for Illinois Credit Union VPN deployment, troubleshooting BGP peering and IPsec tunnels to restore member-facing services. -------------------------------------------------------------------------------- AT&T (TIAA-CREF – FINANCIAL SERVICES) Jul 2010 – May 2016 Lead Solutions Architect – $100M Infrastructure Modernization • LED END-TO-END ARCHITECTURE AND DESIGN for a $100M+ network refresh at a top-tier financial institution, encompassing Nexus 9K, ASR9K, and F5 BIG-IP platforms – delivered under budget and ahead of schedule. • ENGINEERED MAINFRAME INTEGRATION PATTERNS, optimizing OSPF Area 51 routing and ensuring sub-second convergence for trading applications. • IDENTIFIED AND REMEDIATED LACP RFC NON-COMPLIANCE on NetApp storage via custom Tcl scripting; vendor acknowledged defect and released firmware patch – saved client from undetected link failure risk. • CREATED REFERENCE ARCHITECTURES AND STANDARDIZED CONFIGURATION TEMPLATES for blackhole routing, security policies, and high-availability designs – adopted globally across the enterprise. -------------------------------------------------------------------------------- ADDITIONAL RELEVANT EXPERIENCE -------------------------------------------------------------------------------- KAISER PERMANENTE Senior Data Center Architect 2016–2018 • Architected Cisco ACI fabric migration (Nexus 7K→9K) • Resolved Exadata OSPF issues and Data Domain buffer drops AMERICAN RESIDENTIAL SERVICES Senior Network Architect 2018–2019 • Architected 100+ site Cisco Viptela SD-WAN migration • Designed cost-saving OOB/UPS solution with repurposed hardware DYNAMIC IMPACT MARKETING LLC Principal Architect 2024–Present • Founder consultancy applying infrastructure architecture to marketing tech • Build automated data pipelines (Python) and technical audit frameworks -------------------------------------------------------------------------------- EDUCATION & MILITARY SERVICE -------------------------------------------------------------------------------- UNITED STATES AIR FORCE Senior Airman – Honorable Discharge [CONTINUOUS LEARNING] • Azure Kubernetes Service (AKS) & APIM – self‑study, hands‑on lab • Domain‑Driven Design (DDD) – reading/application to network segmentation • Event‑Driven Architectures – applying to telemetry and assurance pipelines • Arch Linux maintainer – kernel tuning, systemd, network namespaces