TECHNICAL SKILLS:

• Configuring and setting up various sorts of routers, bridges, and network adapter cards
• Configuring manual networking hardware such as Cisco, Netgear, DLink, Linksys switches, and routers
• Setting up LANS and WLAN to optimize communication of computers in the workplace
• Configuring TCP/IP and UDP of different workstations with group policy and on site
• Working knowledge of FTP, SSH, Telnet, SMTP, DNS, HTTP, POP3, IMAP4, HTTPS, DHCP, TFTP, and SNMP protocols and ability to troubleshoot all problems associated with them
• Monitoring of SSID through router settings, splitting Wi - Fi into different networks for optimal security
• Configuring DNS IPV4 addressing, subnettting, and DHCP both manually and with Active Directory
• Managing allocation of virtual network adapter cards to be used in type 1 and type 2 hypervisors
• Setting up and managing Fortinet, Paolo Alto, Cisco, Malwarebytes, and Zscaler firewall products
• Knowledgeable in relational databases such as MySQL, and PostgreSQL, querying and sorting of databases for values, and c reating advanced database schemas to meet wide range of client needs
• Using GUI MySQL products such as PopSQL to simplify the SQL coding process and create deliverables
• Creating Amazon Web Services architecture to migrate on site databases to the cloud
• Using software such as Remedy, WIX Answers, and ServiceNow to create tickets and find solutions
• Create custom dashboards and filters to simplify ticketing process
• Creating clear deliverables according to standard procedure explaining in detailed the troubleshooting process
• JavaScript, HTML, Perl, C++, Python and Bash
• Virtualization, Workstation Setup, and User Management
• Navigate, create accounts, manage users, policies, and other configurations in Microsoft Windows (10, 2008, 20012, 2016), Ubuntu, CentOS, KaliLinux, MacOS, iOS, and Android
• Usage of type 1 hypervisors such as VMware or type 2 such as Oracle VirtualBox
• Proficient in Active Directory and group policy: configuring Active Directory and DNS, adding workstations and server to a domain, creating trusts between different domains, end-User workstation setup and consideration, Virtualization service (Hyper-V), Identity access management, auditing of user accounts to meet security standards, adding users and controlling them with groups and profiles, deploying patches and backups to users on a scheduled basis, packaging software to be deployed to users
• Packaging software with Casper JAMF suite and linking identity management to Active Directory
• Management, customization, and packaging of Microsoft Office and standard desktop applications such as Outlook, Word, Excel, PowerPoint, and Project and using SharePoint to create uniform user experience by editing lists, document libraries, pages and other settings
• Help manage, support, and troubleshoot smartphones with services such as setting up email, user accounts, profiles, transferring applications and data, and migrating settings with iOS and Android as well as upgrade softwareSecurity
• Network scanning and monitoring using Nessus, SPLUNK, Wireshark and preloaded logging abilities of Windows and Linux based operating systems
• Consistent auditing of systems, routers, switches, windows server, S3 buckets, to log changes, create alerts of unusual activity and match the standard security settings
• Architecting secure solutions on the cloud using Amazon Web Services key management
• Carefully handling the identity access management along with encrypting disks to ensure system security
• Penetration testing using Kali Linux with tools such as Wireshark, BeEF, MITMF, NCAT, Nmap, arp-scan, airodump-ng, airmon-ng, sslstrip, and MetaSploit
• Using SPLUNK and other tools to create monitors and alerts when unusual activity takes place on servers

PROFESSIONAL EXPERIENCE:

Confidential, Rockville, Maryland

System Administrator

• Developed organizational units in Active Directory and managed user security with group policy
• Managed architecture of active directory forests, domains, and objects, maintaining security by providing access to individuals and groups on a per needed basis
• Performed auditing of AD systems to comply with Sarbanes Oxley standards and created automated scripts using Chef Inspec to automate the compliance auditing process
• Used SSH to remotely connect to Active Directory servers and make queries
• Used the SPLUNK CLI to create custom searches and categorize data to create efficient dashboards that are used to alert upon abnormal activity on the networks and run scripts to prevent malicious activity
• Acted as the SPLUNK Enterprise administrator, configuring users and access, setting up authentication with LDAP, created and managed certificates using multiple ciphers, and audited activity
• Acted as the root administrator for the Palo Alto Firewall, managing other administrator’s permissions, authentication methods (including two-factor authentication), and dashboards on a per case basis
• Used Palo Alto’s Panorama solution for efficient and centralized control of security
• Upgraded PAN-OS on the Palo Alto firewall through a comprehensive backup process for data reliability
• Set up threat prevention through anti-virus, anti-spyware, vulnerability protections, threat exceptions, file blocking, file filtering, URL filtering, app filtering, detecting credential phishing, identifying new malicious payload signatures, and using DNS queries to find infected hosts
• Used SCCM to create, manage, deploy, and monitor applications, manage resource access, manage compliance settings, identify and monitor hardware, software, and intelligence assets, deploy operating systems, and manage user profiles on 3 different sites of over 20 workstations each
• Created Perl scripts to convert log files to be read from wireshark and analyze the packets further
• Diagnosed problems on the firewall by analyzing the logs and packet traces and acting accordingly

Confidential, Washington, DC

System Engineer / Consultant

• Manage operations within the IAM environment for the client, including application patching, upgrades, certificate management, and user lifecycle to remove inactive users
• Created trusts between domains, audited AD policies, managed group objects, and added permissions
• Checked Active Directory policies to be SOX, PCI, and HIIPA compliant
• Used SSH to remotely connect to domain and query AD to adjust group permissions
• Used SPLUNK to process data in real time for detecting network breaches and intrusions
• Created filters and searches using SPLUNK, sorting data through tagging event types
• Made custom dashboards on SPLUNK to visualize data and set up alerts to be sent through emails
• Worked in Linux Centos and Ubuntu, using shell to create and manage users as well as create log files
• Used Elasticsearch to query DSL, manage nodes and clusters, and create indexes and shards
• Acted as administrator of the Palo Alto firewalls to log and monitor traffic, events, and security for network security and firewall stability and set up email notifications for events through an SMTP server
• Used SCCM to push out software updates, manage power settings, and monitor programs and applications
• Worked with clients to migrate their on site systems to PaaS and IaaS, architecting the most effective azure, GCP, or AWS solution for each business
• Wrote powershell and BASH scripts to efficiently monitor processes
• Wrote python scripts to communicate with the Rest API SPLUNK backend engine
• Used regedit and procmon to manage overall file permissions and package handling
• Helped up site to site tunneling with IPSec and SSL VPNs to create security associations
• Used the CLI extensively to execute commands not available in the GUI

Confidential

Channel Holder

• Successfully managed search engine optimization on Confidential and Google search results in order to achieve top 5 search result in 5 videos, number one in 3, and received over 200,000 views on one video
• Provide support answering questions and guiding online community step by step through installations, upgrades, patching and other troubleshoting problems
• Created videos pertaining to vulnerabilities in different layers in the OSI model, mainly the network layer
• Created innovative learning tools to teach the OSI model, network protocols, and navigation of Linux, OS X, and Microsoft Windows Operating systems