SUMMARY:

• Audited existing Confidential workstation group policy template and policy environment against Confidential standard configuration and developed a new compliant template and deployment design that was implemented Commission - wide to all users and computers.
• Rolled out a Confidential HQ-wide print restacking project for a user logon script which re-mapped user’s printers using Active Directory Group Policy.
• This was done to assist and facilitate desk-side support for a physical move of 2000+ users.
• I was honored with Lockheed’s Award of Excellence for this successful rollout and overall exemplary performance.
• Project Lead for Windows 2008R2 image build project at Confidential .
• Document author for Quality Assurance and Process Management for the Server Refresh Phase III Project at Confidential .
• Problem manager for applications and hosting for Confidential ISS Contract providing problem isolation, process improvement, documentation, resolution and RCA of known issues and problems on servers and the Microsoft network infrastructure.
• Taught A+, MCP, MCSA and MCSE tracks for Windows 2000 and 2003 to career changers and IT Professionals at MetroStar and Confidential . This was done using a combination of courseware that I developed as well as MOC.
• Set up and maintained the classroom environments in which I taught. This included complete network setup and all troubleshooting in the environment with a downtime standard not to exceed 15 minutes.
• Designed and implemented the business and training lab networks at Confidential as well as developing course curriculum and VA State submission for Board of Education approval.
• Extensive experience with Windows 95, 98, ME, XP, 2000 Professional and 2000/2003/2008 Server, Microsoft Infrastructure technologies and Active Directory
• Design, implement and troubleshoot Active Directory forest network infrastructures, including internal and external DNS integration
• Design and implement and troubleshoot enterprise Group Policy
• Design and implement and troubleshoot enterprise delegation of administration strategies
• Design role based management strategies for NTFS and share security
• IP subnet and supernet design, including using Classless Inter - Domain Routing (CIDR) to accommodate network needs
• Design, Implement and troubleshoot DFS and DFS-R Solutions
• Perform ntds.dit recovery and cleanup with NTDSUtil to the level of DNS leaf object removal if necessary
• Monitor and correct AD logical components, DNS and domain controller issues using DCDiag and DNSLint
• Perform AD disaster recovery including moving or seizing FSMO roles if required
• Add and remove Domain controllers using DCPromo
• Design and implement complex or simple DNS structures, including the use of forwarders and stub zones.
• Deploy DCHP services
• Monitor and take action on server alarms and alerts
• Server OS recovery and troubleshooting using advanced boot options and ERDs
• Analyze Event Log data to uncover server failures
• Provide RCA on server failures
• Perform Disk management tasks, such as the creation of volumes and volume mount points using Veritas Enterprise Administrator and the built in disk management MMC
• Troubleshoot server side issues with EMC SAN attached hosts and clusters
• Use SRDF-CE and SRDF tools to view and configure the state of SAN disks at the host
• Install and configure Windows Server Operating Systems and applications
• Hardware capacity planning
• Perform and troubleshoot Microsoft High Availability Cluster environments, including site resilient Geo Clustering
• Manage Server Roles, such as creating and configuring DCHP, DNS, Web and File and Print Servers
• Create backup policies, backup and restore using Veritas Netbackup, Backup Exec, WINNT backup and System State Backup
• Configure and troubleshoot service startup behavior
• Use perfmon to capture baseline performance
• Application deployment testing
• Post-patch deployment verification and testing
• Isolate performance metrics according to server roles
• IIS administration and troubleshooting
• Deploy and monitor Active Directory integrated Microsoft Certificate Services
• Deploy and troubleshoot DHCP solutions
• Troubleshoot WINS issues where necessary
• VMWare host administration using Virtual Center Console
• Troubleshoot IP configuration and routing issues using standard ICMP toolset
• Troubleshoot DNS registration and forwarding issues
• Implement, maintain and troubleshoot Microsoft High Availability and NLB Clusters
• Isolate and correct SQL performance issues
• Create and manage users and computer accounts in ADUC
• Create security and distribution groups
• Design and troubleshoot NTFS and Share permissions
• Monitor and manage Disk Quotas using Veritas Storage Exec
• Recover user data using Diskkeeper Undelete, Netbackip and Backup Exec
• Proficient use of Remedy and ITSM ITIL tools
• Grant rights and privileges using AGDLP best practice
• Assist other departments and tiers in troubleshooting more complex user and computer connectivity and resource access issues
• Use LDAP to provide data for reporting
• Use DSQuery, DSADD, DSMOD and DSGET tools to administer AD objects
• Use CSVDE and LDIFDE to import and export objects from AD
• Modify user email account quotas and properties using ADUC
• Create mailboxes and mail enabled public folders
• Use ESM to view user mailbox sizes
• Use ESM to monitor Exchange queues and troubleshoot mail flow issues
• Create and modify IPSEC Rules and filters on Exchange bridgeheads to secure SMTP traffic.
• Excellent public speaking and interpersonal skills
• Warm consultative and professional demeanor with requesters, clients and co-workers
• Ability to train persons with all levels of understanding of computing and networking environments
• Ability to develop and present high-level presentations of technical plans and solutions.
• Able to complete projects and provide viable engineering solutions in a timely manner within budget constraints
• Ability to quickly develop and implement working solutions in response to immediate need and/or unplanned events
• Work within budget and available resources to meet agreed upon SLAs
• Strong technical writing ability
• DNS, WINs and DCHP errors and failures
• Desktop and Server (2000/2003 and NT) installation and configuration errors
• IP configuration errors on hosts and devices
• Active Directory errors
• LAN Data cabling malfunctions
• Broadband and dial-up configuration and communication errors
• Hardware troubleshooting and replacement
• Issues resulting from corrupt and incorrect drivers
• Removing viruses and restoring virus infected systems
• Data backup and restoration
• AD Replication errors
• Permission inheritance and group membership problems
• Group policy
• IIS Issues
• Forest-wide Trust Issues
• Individual service and dependency issues
• Dynamic Update failures
• Disk errors
• Print Queue malfunctions
• User accidents and failures
• W32Time issues, host and enterprise
• Accidental deletion of Active Directory data
• Improper masking of disks to multiple MS Clusters and various Cluster related issues
• Delegation of administration failures
• NTFS Access or DACL configuration issues
• Server Blue Screens and failures to initialize
• Mail box permissions errors
• Issue related to HA Cluster fail over failure

TECHNICAL SKILLS:

Effective Use of the following Tools, Applications and protocols: All Active Directory and Win 2K/2K3/2K8 MMCs, AD Design, Configuration and Management tools (Dcpromo, ntdsutil, ldp, replmon, repadmin, ADMT, gpresult, gpupdate, GPMC Console, dsquery, dsmod, dsadd, dsget), All ICMP tools, i.e ping, tracert, ipconfig, arp, nbtstat, netstat, Nslookup, Route command, Netmon, perfmon, Norton Ghost, Netbackup, Backup Exec, winnt backup, Storage Exec, Veritas Storage Foundation for Windows, SRDF commands and SRDF-CE, Microsoft Cluster Administrator, ClusDiag, DCDiag (and individual test switches), net command, PRISM, Basic SQL 2005 host support, Exchange 2003 System Manager, DFS, DFS-R, Microsoft Certificate Services, DNS, DHCP, Wins, WSUS, RAS, RADIUS, Remedy, ITSM, Virtual Center Console, Remotely Anywhere, MS Terminal Services, telnet, netdom, adprep, w32tm, ldifde, csvde, VBS script editing, basic VBS authoring, MBSA, AD Risk Assessment Tool

CHRONOLOGICAL EXPERIENCE:

Confidential, Reston, VA

Sr. Active Directory Systems Engineer

Responsibilities:

• Provide escalation support to Engineering and Administrative team members in troubleshooting customer issues
• Provide hands-on and formal training to Engineering, Administrative team members and Help Desk personnel on Active Directory, DNS and Group Policy basics as well as basic troubleshooting methodology
• Provide support for escalation of all Microsoft Infrastructure issues Corporation-wide
• Clean up the existing forest structure and DNS
• Produce video documentation productions of key processes and procedures for distribution to internal OIS Staff and project personnel
• Recommend transition, migration and consolidation strategies to correct original Active Directory design flaws
• Design and implement Active Directory GPO and OU changes to accommodate new projects and new functionality required in the organization
• Provide Active Directory SME support to the Domino development team and the application development teams in order to roll out new applications or allow existing ones to address LDAP for authentication
• Designed, documented and regularly deploy a virtualization strategy to separate the File and Print roles from Domain Controllers in small offices where server budgets are sparse.
• Submit firewall rule requests for each Microsoft Infrastructure roll out including all necessary protocols and traffic direction
• Provide guidance to IT and Security staff on what ports and protocols are required to be open for correct functionality of services and applications.
• Build VMWare ESX hosts and guests to accommodate authentication and infrastructure services in new projects
• Escalation point for all internal DNS related issues
• Risk Assessment engineer in partnership with Microsoft PFEs for Directory Services
• Remediate risks identified as a result of Microsoft Risk Assessment
• Proactively monitoring and correcting or advising correction on Active Directory health issues, design issues, server health issues, and server capacity and resource issues.
• Perform change requests for Microsoft infrastructure changes
• Providing hands-on orientation and training to new team members on common and advanced administrative tasks
• Promote and configure all new Confidential domain controllers
• Schema modifications to support Server 2008R2 Domain Controllers in Windows 2008 forests across the enterprise.
• Troubleshoot connectivity issues related to Domain and Forest Functionality
• Troubleshoot replication issues in remote Forests
• Work with firewall team to open all necessary ports for healthy functioning of Active Directory replication and assist in the development of Firewall rule groups that facilitate the addition of Domain Controllers into the parent forest
• Establish traditional forest trusts with our International Offices
• Researched and recommended Microsoft’s Forefront Identity Manager to provide a metaverse for a future Exchange 2010 rollout
• Developed migration/consolidation plans to accomplish consolidating delegated forests into a centrally managed infrastructure with delegated administration
• Set up delegated administration in the parent forest for remote project’s objects
• Corrected help desk administrative delegation issues
• Deployed NetWrix AD change monitoring and report tool
• Identified and corrected faulty NTP configuration in multiple forests
• Identified and corrected faulty DNS configuration in multiple forests
• Developed a project plan to separate the File and Print role from all Domain Controllers
• Seized Domain-wide FSMO roles, performed metadata and DNS cleanup on a remote project forest root domain controller due to improper removal of the domain controller from the forest
• Worked with Deltek engineers to troubleshoot the Costpoint connectivity from our production forest to the Prince Edward Island forest
• Assist Telephony Team in configuring DHCP server and scope settings to distribute unique call management option settings to client workstations in a call center.
• Resize System Partitions on older servers
• Designed and deployed a new Microsoft Infrastructure at our SSA Ticket To Work Project while also reconfiguring IPs on all existing Infrastructure Servers including ADDS, DNS, DHCP, File and Print
• Transitioned the MACSBOS Project network to Active Directory 2008R2
• Isolate the root cause of user drives not mapping when connected over Aventail and recommended a solution to the security team
• Identified and corrected a long enduring issue with improperly configured scheduled tasks that caused a weekly outage on a production server.
• Identified and corrected missing and overlap subnets in the production forest which caused site-aware applications and DFS to not function properly.
• Perform regular audits of Sites and Services configuration and add new subnets as necessary
• Identified and corrected improper use of bridgeheads in the root forest replication topology
• Provided DFS design guidance to our West branch in deploying DFS namespaces and replication.
• Provide design and deployment recommendations for new bids and restructure of existing projects.
• Assist in troubleshooting account lock-out and GPO application issues

Confidential

Sr. Active Directory Systems Engineer

Responsibilities:

• Escalation support to junior team members in troubleshooting customer issues
• Group Policy SME - architectural design and implementation of Enterprise Confidential Compliant Group Policy
• Lead engineer for disaster recovery exercises of the Confidential ’s Litigation servers and Microsoft Geo-Cluster fail over, PRISM application. Also providing escalation support for failures and problems during DR.
• Producing video documentation productions of key processes and procedures (Certificate Services, DC promotions, Cluster fail over, Litigation server fail over, Volume management and Mount Point creation)
• Lead technical engineer for Confidential print restack project
• Designing and implementing Active Directory GPO, OU and DFS modifications to accommodate Divisional moves and changes
• Writing documentation for life cycle certification of platforms, existing processes and new processes
• Providing Active Directory SME support to the End User Technology and Remote Access teams
• Providing recommendations to IT Specialists for role based management of resources
• Consulting and evaluation of HSPD-12 identity management solutions for future deployment
• Cluster Services administration and correction
• Escalation point for DNS related issues
• Root cause analysis of cluster and infrastructure related issues
• Risk Assessment engineer in partnership with Microsoft PFEs for Directory Services, SQL and Cluster services
• Supporting Confidential ’s Back Office team by installing, updating and troubleshooting their proprietary applications
• Supporting the SAIC software development team with software connection issues to LDAP and TTS application failures
• Proactively monitoring and correcting or advising correction on Active Directory health issues, server health issues, server capacity and resource issues.
• Performing change requests for a variety of Confidential applications and infrastructure changes
• Providing reports and queries of NTFS permissions, Group Policy Configuration, AD Objects, SLA breakdowns, Host complexity, regular host performance metrics, and stale accounts
• Creating DFS roots and links
• Troubleshooting host level certificate services errors and problems
• Troubleshooting host level Group Policy application issues
• Developing and codifying Server Build process and procedure
• Escalation point for SLA failures across multiple applications
• Root cause analysis of cluster and infrastructure related issues
• Risk Assessment engineer in partnership with Microsoft PFEs for Directory Services, SQL and Cluster services
• Supporting Confidential ’s Back Office team by installing, updating and troubleshooting their proprietary applications
• Supporting the SAIC software development team with software connection issues to LDAP and TTS application failures
• Proactively monitoring and correcting or advising correction on Active Directory health issues, server health issues, server capacity and resource issues.
• Performing change requests for a variety of Confidential applications and infrastructure changes
• Providing reports and queries of NTFS permissions, Group Policy Configuration, AD Objects, SLA breakdowns, Host complexity, regular host performance metrics, and stale accounts
• Creating DFS roots and links
• Troubleshooting host level certificate services errors and problems
• Troubleshooting host level Group Policy application issues
• Developing and codifying Server Build process and procedure
• Escalation point for SLA failures across multiple applications
• Patch remediation team lead on two remediation efforts
• Providing hands-on orientation and training to new team members on common and advanced administrative tasks
• Providing recommendations for the setup of enterprise monitoring of critical services and resources on our server platforms
• Deployed by Confidential management to isolate the source of network issues and provide recommendations
• Consulting to Confidential and Lockheed Martin for impending 2008 member server and directory services roll out
• Support Exchange team for various infrastructure related questions for Exchange 2010 migration project
• Promoting and configuring all new Confidential domain controllers
• Provided Active Directory design for the addition of BlueCoat into the Confidential forest
• Providing advanced level troubleshooting of application failures
• Providing engineering support for AD and infrastructure services for our Pre-Production Environment Team
• Schema modifications in support of SCCM rollout, both pre-production and post production

Confidential, Alexandria, VA

IT Specialist

Responsibilities:

• Troubleshoot server, access and host level issues with OUC applications and systems
• Test and document desktop imaging solutions
• Provide Directory Services design guidance in preparation of in-house management of OUC resources
• Solve telephony related issues on 911/311 call floor
• Assist in preparing alternate site for operations during the Inauguration of 2009

Confidential, Washington, DC

Operations/Transportation Manager

Responsibilities:

• Operated a shipping logistics company
• Recommended and implemented shipping tacking process for parent company and subsidiaries
• Increased effectiveness and profit of parent company by 200% in three years

Confidential, Raceland, LA

Lead Trainer/ Systems Administrator

Responsibilities:

• Built classroom and training center network from layers 1 through 7
• Designed and documented Skylight’s training curriculum for successful certification with the State of VA
• Wrote and delivered courseware and labs for use in training career changing students on Windows Server 2003 MCSE certification
• Provided business IT consulting and outsourcing to maximize training center profits
• Provided 300 level 2003 Active Directory Services training for contract engagements to IT professionals