PROFESSIONAL SUMMARY:

• Principal advisor to CIOs and CTOs on analysis, planning, design, implementation, documentation, assessment, and management of structural framework to align IT strategy, plans, and systems with mission, goals, structure and processes of organization
• Hands - on experience in leading the processes for the identification and assessment of new and emerging hardware, software technologies, products, methods and techniques and likely relevance to organization
• Demonstrated passion for innovation with a sophisticated understanding of various engineering systems and proven ability to further organization's long term goals
• Highly-skilled knowledge in the documentation of key processes and ensuring systems conform to information security policies, practices, applicable federal mandates, and meets or exceeds business needs
• Developed plans for defining a new cloud architecture and transitioning enterprise applications to target architecture, including remediation of all risks associated with legacy infrastructure and applications
• Excellent oral and written communication skills with demonstrated ability to communicate effectively across all organizational teams and with customer
• Strong understanding of DevOps CI/CD processes and implementation of related technologies; including version control and artefact repository tools

TECHNICAL SKILLS:

Operating Systems: Red Hat Enterprise Linux (RHEL) 6/7, CentOS 6/7

Automation: Ansible, Puppet, CloudForms, Jenkins, Bash

Core Technologies: Docker, Kubernetes, CloudForms 4, OpenStack, Ceph, OpenShift, AWS, VMWare VCloud, Red Hat Satellite 6, Red Hat Identity Manager (IDM), Elasticsearch 2.4, Qualys, Metasploit, Nagios, Jenkins, Git/GitHub, Artefactory

EXPERIENCE:

Chief Architect

Confidential

Responsibilities:

• Develop and deploy several large scale production quality software systems focused on N-Tier architectures in distributed systems with large storage and databases and high transaction throughput
• Architect capacity and performance, and tuning issues for large scale software systems
• Deliver Service Oriented Architecture (SOA) and deploy web service solutions
• Ensure that designed or reviewed solutions conform to architectural requirements such as scalability, maintainability, reliability, extensibility, usability and security
• Proactively interact with senior stakeholders as an expert advisor in the development, implementation and maintenance of enterprise-wide architecture practices
• Implement new Docker container images by extending existing images
• Apply environment variables naming requirement while linking Docker systems
• Orchestrate production services in large container farm using Kubernetes
• Use Ansible playbooks to configure systems to desired state
• Create and use templates to create customized configuration files
• Protect sensitive system data by using Ansible Vault in playbooks

Senior OpenStack Architect

Confidential

Responsibilities:

• Conduct formal application security assessments on applications identify weakness and or vulnerabilities
• Demonstrate real-world risk by exploiting vulnerabilities and documenting attack scenarios
• Communicate efficiently with customers during assessments
• Devise methods to automate testing activities and streamline testing processes
• Create written reports, detailing assessment findings and recommendations
• Highly familiar with vulnerability scanners such as Qualys, Nessus, Rapid7, etc
• Perform quarterly and Ad-hoc (risk assessment) internal, external and web site scans using Rapid 7 toolset; Nexpose, AppSpider, Metasploit
• Test, and conduct POC's as needed for new technology for the ISS security team
• Work with ISS and teams to resolve vulnerabilities discovered in scans
• Configure and deploy several hypervisors and VMs running OpenStack for DevOps, testing and production environments
• Provide direction to mission support in troubleshooting operational and infrastructural blockers
• Develop scripts and customization to OpenStack software and components to augment bank services and environments
• Use security scanning tools, such as Qualys and ESM, to assess and mitigate security risks to infrastructure components
• Engage in Agile methodology in sprint planning and code delivery
• Manage super-controllers and compute nodes in a HA setup using Ansible
• Document internal build procedures and processes in bank wiki for and knowledge transfer
• Deploy a highly available and resilient Ceph storage cluster to serve as backend for Glance, Cinder, and Nova services
• Participate in troubleshooting, capacity planning and analysis, performance analysis activities
• Advise management on OpenStack architecture, releases, and service delivery

Senior Application Security Architect

Confidential

Responsibilities:

• Coordinate automated spin-ups of virtual machines on OpenStack platform
• Deploy and configure OpenStack Kilo
• Test HAProxy load balancers before integration into production
• Evaluate and test OpenStack services such as neutron, cinder, and nova
• Troubleshoot deployment and network issues with OpenStack hosts and VMs
• Assist in capacity planning for current virtualized environment
• Document defects and solutions to issues related to performance testing
• Automate integration and deployment of OpenStack components using Ansible and Puppet
• Experience supporting DevOps environment using tools such as Git and Jenkins
• Deploy containers, pods, and services on Red Hat OpenShift platform
• Perform vulnerability assessment of information systems to detect deficiencies and validate compliance
• Develop plan of actions and milestones for documenting, prioritizing, remediating, and monitoring corrective actions.
• Conduct assessments of the effectiveness of enterprise security architecture, including governance, compliance, business process, technical solutions, stakeholder communications, and strategy.
• Assist with the development of security management framework and solution architectures to address identified gaps. Develop implementation road map document for clients.
• Perform technical and functional evaluation of security tools which includes vulnerability scanning tools, and provide recommendations as necessary.
• Performed log and event management with the use of ArcSight SIEM, Splunk
• Performed security risk assessments, developed security risk mitigation recommendations, and identified security controls for systems, applications, and networks.

Senior Systems/Cloud Architect

Confidential, Gaithersburg, MD

Responsibilities:

• Create designs for OpenStack-based enterprise cloud implementation.
• Work with customers to understand business needs, project goals, and help define requirements.
• Articulate in crisp and intelligent language cloud solution blueprints.
• Develop engaging and personal relationships with principals, including executives and engineering leads.
• Install and configure Red Hat OpenStack Platform for private cloud deployment.
• Configure and implement OpenStack architecture for HA solution using pacemaker.
• Load balance OpenStack services using HAproxy.
• Manage users, roles, flavors, quotas, images, and tenants on Red Hat OpenStack Platform 5 (Icehouse).
• Advise management on consideration and integration of OpenStack components into enterprise infrastructure.
• Configure OpenStack Neutron plug-in using OpenVSwitch in a ML2 framework.
• Create and manage volumes in OpenStack.
• Automate repetitive system tasks using Puppet configuration management tool.
• Configure and deploy Nova for network management on instances.
• Configure Swift object storage and Cinder block storage for OpenStack implementation.
• Add additional compute nodes to OpenStack deployment.
• Build and deploy virtual machines using Red Hat Satellite server in a virtualized enterprise environment.
• Manage and troubleshoot both hardware and software issues on HP Proliant Gen8 servers, e.g. BL460c, running Red Hat Enterprise Linux Operating System in a 3,600-server global infrastructure.
• Execute and deliver timely patches to enterprise OS in both development and production environments; with good understanding of software versioning.
• Working experience using Git for CI/CD.
• Hands on implementation, configuration and deployment experience with Linux virtualization.
• Actively engage teams in capacity planning, as well as process management through all phases of systems development life-cycle.
• Resolve cluster-related issues on systems running High Availability software such as Red Hat HA.
• Hands on implementation, configuration and deployment experience with Confidential UCS.
• Provide support for Apache web server administration.
• Configure and deploy NFS server in live production environment.
• Document, create, execute, and follow system changes and incidents using BMC Remedy ticketing system.
• Advanced knowledge of UNIX Clustering in Red Hat Linux, virtualization (RHEV), package creation; as well as a working knowledge of fencing.
• Provide maintenance of Logical Volumes through file system extension, etc.
• Troubleshoot unresponsive and inaccessible servers though ILO console access, log monitoring, physical hardware inspection, etc.
• Familiarity operating in a PCI environment.
• Work with DevOps teams in creating and maintaining stable and efficient test environment before applications are deployed into production.
• Provide weekly on-call assistance to junior staff regarding system stability issues, such as unstable filesystems, partitions needing cleanup, etc.
• Working experience of ITIL process.
• Extensive knowledge in installation/configuration/support of Red Hat, RHN Satellite on HP Proliant and IBM x series systems.
• Rebuild hardware and software RAID on both HP and IBM x series systems.
• Troubleshoot NFS accessibility problems and lead to resolution.

Infrastructure Architect

Confidential, Upper Marlboro, MD

Responsibilities:

• Create, modify and delete users, groups, and policy. Establish collaborative group directories.
• Install, configure and maintain Red Hat/CentOS flavors of Linux Operating system.
• Install and Manage Red Hat Enterprise High Availability clusters using Red Hat Enterprise Virtualization (RHEV) in a datacenter environment.
• Advise and provide support for infrastructure offering cloud service.
• Use Foreman to automate repetitive system tasks.
• Use CIS Red Hat Enterprise Linux 6 Benchmark to harden newly installed systems.
• Assess, implement, and document security requirements for Federal information systems. Utilize Information Assurance policies, procedures, and workforce structure to design, develop and implement security architecture.
• Participate in the security definition, design review, integration, and testing during system / software development.
• Perform vulnerability assessment using SAINT, McAfee Vulnerability Manager, and develop remediation action plan
• Design and implement authentication provisioning to support data integrity, non-repudiation and confidentiality and security assurance through implementation of PKI.
• Test and evaluate security architecture and devices using Kali Linux.
• Familiarity with industry standards such as NIST and PCI
• Perform both interactive and automated (Kickstart) installations of Red Hat Enterprise Linux.
• RPM and YUM package installations, patch and other server management.
• Assist in LDAP Directory Server configuration for user authentication on network.
• Configure monitoring tools, such as Nagios, to optimize infrastructure performance, prevent and anticipate system crisis.
• Deployed tools in administering system backup, such as rsync and EMC Networker.
• Used Centrify Deployment Manager to manage server access and deployment.
• Employed Jira workflow system to monitor and assess optimal service delivery.
• Installed and configured Apache web servers and provided support on production servers.
• Managed file systems using software RAID and Logical Volume Management.
• Created Virtual Machines templates using VMWare ESX.
• Designed firewall rules for new servers to enable communication with application.
• Troubleshoot network, security related issues, and capturing packets using tools such as iptables, TCP wrappers, NAT, and PAM.
• Maintained, monitored, analyzed system components and make recommendations for system improvement.
• Installation and maintenance of DNS and DHCP Servers for the domain in a TCP/IP environment.

Senior Systems Engineer

Confidential, Alexandria, VA

Responsibilities:

• Hands on experience providing enterprise support to Linux and CentOS servers.
• Deploy virtual machines on Amazon Web Services
• Performed installation of Red Hat Enterprise Linux 6 on Dell servers.
• Knowledge of shell scripting in running system jobs.
• Experienced in a Network operations center supporting system users.
• Documentation and Tracking of issues, logs and audit files.
• Update server baseline document in line with changes on servers.
• Installed and implemented new patches to Linux operating system.
• Installation, configuration and daily Support of Apache Web server.
• Experience in network configurations to include knowledge of switches, hubs and firewalls.
• Policy management and applying Network File Systems for sharing resources across the network.
• System Performance Monitoring and capacity planning in anticipation of resource usage and needs.

Linux Administrator

Confidential

Responsibilities:

• Support production systems running Red Hat and Centos OS
• Monitor website performance and response time using monitoring tools such as Nagios
• Perform scheduled patching and tuning of enterprise OS.
• Create user accounts and modify as needed
• Create new filesystems and troubleshoot for errors.
• Provide sudo access to privileged users
• Create and document temporary and permanent sudo permissions on several systems for teams and vendors
• Schedule critical cron jobs to run during non-peak hours, such as overnight, to avoid service disruption
• Maintain network security and system connectivity using ssl

Service Desk Technician

Confidential

Responsibilities:

• Support and maintain company technology equipment and IT assets with skill and precision to resolve issues the first time
• Install, configure, diagnose, repair and upgrade all corporate hardware and equipment while ensuring optimal performance of the equipment and personnel
• Troubleshoot problem areas in a timely and accurate fashion and provide recommendations for improvement to management to reduce systems and employee down time
• Provide end user and assistance where required
• Communicate issues to appropriate escalation groups and management as required
• Liaise with, and provide and support to, end users and staff on computer operation and other issues
• Install, configure, test, maintain, monitor and troubleshoot end user workstation hardware, networked peripheral devices and networking hardware products
• Install, configure, test, maintain, monitor and troubleshoot end user workstation software and networking software products