SUMMARY:

• I am a Systems Engineer and Administrator with over 13 years of hands - on and multi-tasking experience, Multi-certified with a strong experience managing and maintaining mobile devices, laptops, servers, networks infrastructures and data-center operations across android, iOS, Unix, Linux, Windows, Mac OS X, Cisco IOS, IOS-XR, Junos OS, and PanOS platforms
• Microsoft Office365, SharePoint, Azure, Skype for Business, Teams, Dynamics 365, Intune & Windows Defender
• Operating Systems: Cisco IOS, IOS-XR, Junos OS, and PanOS, Windows 10, Windows Server 2012/2016, Linux, Unix and MacOS
• Mobile Device Management MDM Intune, AirWatch, Cisco Meraki and JAMF Pro
• Network Operations Wireshark, Putty, SolarWinds, Nagios XI, ConnectWise, Log Logic, Palo Alto Networks Panorama, Airwave and New Relic, Cisco, Juniper and Aruba
• System Center Configuration Manager SCCM 2012 and 2016 Server
• Cloud Computing Azure and AWS EC2
• Virtualization: VMware Virtual Center Servers, VMware ESXi, vSphere and Hyper-V
• Windows Server Update Services (WSUS)
• Cisco Networking, Wireless, Security, Cloud, Collaboration, Data Center, Virtualization and Computing: Cisco Unified Communications Manager (CUCM), Cisco Meraki and Cisco Unified Computing System (UCS)
• Auditing, architecting and designing various privacy regulations, industry standards, compliance and requirements PCI DSS, ISO, CPNI, GDPR, HIPAA, and Federal/State Privacy laws
• Excellent written/verbal communications skill, Able to multi-task, prioritize, and manage time effectively
• Advanced troubleshooting, Real-time isolation, recovery and Root Cause Analysis
• Finance: Bloomberg Anywhere Terminal, FactSet and Thomson Reuters
• PowerShell Scripting and Automation
• Adobe Suite
• Sales Force and Microsoft Dynamics
• Microsoft Suite Visio Word, Excel, Access, PowerPoint, Project

PROFESSIONAL EXPERIENCE

Confidential, New York, New York

Senior Systems Engineer

Responsibilities:

• Planed, Designed, configured, managed and supported Microsoft Office 365 Enterprise E5 Exchange Online, SharePoint, Skype for Business, Azure RMS, Windows ATP, Active Directory, BitLocker, Azure MFA Azure AD, Hyper V, email accounts, shared mailbox and distribution groups and OneDrive, Implementation of Connections, Filtering, Outbound Spam, as well as Other Features of EOP, Creation and Usage of Send & Receive Connectors, Mailbox Conversion & Delegation, Setup of Directory Synchronization, Creation of Retention Tags & Policies, Message Tracking and Extended Message Tracking Log Understanding, Setup of Hybrid Environment, Single Sign On vs. Same Sign On, Performing Remote Mailbox Migration
• Engaged with key business stakeholders to understand business needs and provided business solutions to Brookfield Properties & Related Companies
• Planed, Designed, configured, managed and supported Microsoft Office 365 US Government G5 Exchange Online, SharePoint, Skype for Business, Azure RMS, Windows ATP, Active Directory, BitLocker, Azure MFA Azure AD, Hyper V, email accounts, shared mailbox and distribution groups and OneDrive by engaging with clients, stakeholders, partners, vendors, engineers, and management team.
• Securely Migrated SQL Server, Oracle, My SQL Database to Azure SQL Database by using Azure Database Migration Service
• Developed cyber capabilities cloud catalog using industry-standard tools including: HP ArcSight, AlienVault, HP Fortify, Metasploit Pro, Kali, BackTrack, Nessus, Nagios, Snort, Santoku, Zero Wine and many more
• Secured, Managed and Supported SQL, MySQL and Oracle Database by isolating the Database Server, Tailoring the DB Installation, keeping it Updated, Restricted the DB Processes, Restricted SQL Traffic, Used Least Privilege When Assigning Permission, Seeted a Strong Admin Password, Audited DB Logins, Secured Your Backups, Protected Against SQL Injection and ensure that the SQL database system remains secure by having constant visibility into its configuration state
• Continuously Monitored Analyzed and Managed all the business, mission critical, State of the art - cutting edge systems, networks, infrastructures to ensure optimal network connectivity and performance by using the following monitoring, analytics and management tools: (netFLEX 1340, SolarWinds, New Nagios, Nagios XI, LogLogic, Palo Alto Networks Panorama, AirWave and New Relic, (Network Operations) Cisco, Juniper and Aruba etc.
• Advised, designed, implemented and oversee projects within the Network and Security teams, present and outline future deployments / changes to management (CISO, VP, executives).
• Architect, Design and deliver Encryption, key management and PKI related solutions
• Provide support in guiding business and technology partners on cryptographic and data protection matters
• Encryption Algorithms: DES/3DES, TripleDESm, Blowfish, AES, Twofish, SHA 1, HMAC and RSA Security
• Encryption Software: AxCrypt, DiskCryptor, VeraCrypt, Dekart Private Disk. Dekart Private Disk, Bitlocker and Symantec Drive Encryption
• Cloud Encryption: nCrypted Cloud, Encrypto, Boxcryptor, Cryptomator, Sookasa, EncFSMP and Odrive
• Communicate security and risk-related concepts to key stakeholders along with experience with the following: Enterprise Mobility and Security Suite (EM+S), Advanced Threat Protection (ATP), Azure Information Protection (AIP) and Intune
• Configured, managed MICROSOFT AZURE Security Center, Key Vault, Monitor logs, Dev/Test Labs, Storage security, Service, Storage Service, Encryption, StorSimple Encrypted Hybrid Storage, Client-Side Encryption, Storage Shared Access Signatures, Storage Account Keys, File shares with SMB 3.0 Encryption, Storage Analytics, Database security Service, SQL Firewall, SQL Cell Level Encryption, SQL Connection Encryption, SQL Always Encryption, SQL Transparent Data Encryption, SQL Database Auditing, Identity and access management, Service, Role Based Access Control, Domain Services, Multi-Factor Authentication, Backup and disaster recovey, Site Recovery, Network Security Groups, VPN Gateway, Application Gateway, Web application firewall(WAF), Load Balancer, ExpressRoute, Traffic Manager, Application Proxy, DDoS protection and Virtual Network service endpoint
• MICROSOFT AZURE - Designed, Configured, Managed and Supported Virtual Machines, Virtual Networks, Load balancers, Storage accounts, SQL Databases, Security Center and Firewalls
• Cisco Routing/Switching, LAN/WAN, Security - Firepower ASA/IDPS, SD-WAN, Virtualization, UCS-E blade servers, Testing hardware/software platforms, IPSec, DMVPN, EIGRP, BGP. System Administration, Scripting (VB, Perl, Python, Expect), Linux
• ACTIVE DIRECTORY - Installation & Configuration of Domain Controller on Windows Server 2012 and 2016, R2, AD Objects, Transfer/Seize of FSMO Roles from One DC to Another, Force AD Replication, restore a Failed Domain Controller, Troubleshoot AD Replication Issues
• ANTI-SPAM SOLUTION - Provision of Service / Domain in Reflexion Total Control, Creating Users in Reflexion, RADAR Configuration in Reflexion Backup and Restore Firewall Settings, Create NAT Policies and Access Rules
• Assisted with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff
• Scheduling Full and Incremental Backups Using Storage Craft Shadow Protect SPX, Restoring File and Volume Restoration, restoring to Hyper-V, VMWare, ESXi Using Virtual Reboot Adding Custom Domains, Recipient Types and Their Creation, Basic Administration Tasks Including License Assignment, Service Requests, Creating Admin Accounts, et., Exchange Online Protection
• Created, Integrated, Configured, Supported Microsoft SharePoint 2010, 2013, 2019, Built advanced SharePoint workflows, workflow-based solution, Groups, Teams and Company Sites
• Created/synchronized accounts add employees to O365, Authenticated accounts, setup and manage O365 account, migrate any and all data, transfer emails, files, folders, etc. and Troubleshooted potential issues using Microsoft guidance and tools
• Configured, managed MICROSOFT AZURE Security Center, Key Vault, Monitor logs, Dev/Test Labs, Storage security, Service, Storage Service, Encryption, StorSimple Encrypted Hybrid Storage, Client-Side Encryption, Storage Shared Access Signatures, Storage Account Keys, File shares with SMB 3.0 Encryption, Storage Analytics, Database security Service, SQL Firewall, SQL Cell Level Encryption, SQL Connection Encryption, SQL Always Encryption, SQL Transparent Data Encryption, SQL Database Auditing, Identity and access management, Service, Role Based Access Control, Domain Services, Multi-Factor Authentication, Backup and disaster recovey, Site Recovery, Network Security Groups, VPN Gateway, Application Gateway, Web application firewall (WAF), Load Balancer, ExpressRoute, Traffic Manager, Application Proxy, DDoS protection and Virtual Network service endpoint
• Configured, Managed and Supported Mobile Device Management MDM Intune, AirWatch, Cisco Meraki and JAMF Pro
• Engaged and coordinated global services and changes with respective managers to achieve project updates. This includes global changes such as the upgrade to from Office 2010 to Office 365
• Designed, Integrated, Configured and Supported Cisco Unified Computing System (UCS) , hypervisors including VMware ESXi, Microsoft Hyper-V and Citrix Systems' Xen server
• VM Creation and Changing the Resources of the VM Using vSphere Client, Creation of Virtualization Switches & VLANs, Virtual Machine Snapshot and Snapshot Deletion
• Creation and Expansion, Creation of Differencing Disks, Virtual Machine Checkpoint Apply & Delete Installation of ESXi 6.0, Installation of VMWare vSphere Desktop Client
• Managed Windows Server Update Services (WSUS)
• Server environment, including creating, editing security groups, application deployments, Prepare and Manage OS upgrade, boot, image packages, remote control, Remote Assistance and Remote Desktop client settings (collections, task sequences, and PowerShell scripts), patch management, general troubleshooting & log analysis for more than 5000 users / endpoints
• Created and deployed custom scripts to be used in upgrade and deployment of software through GPO and SCCM
• Design, implemented and manage complex SCCM 2012 and Windows 10 Desktop solutions.
• Implement and Manage Enterprise Desktop and Data Center Transformation solutions
• Provide excellent written and verbal documentation and reporting
• Troubleshoot OSD task sequence errors with SCCM 2012
• Image support for Windows 10 desktops and laptops
• Create end user and technical documentation
• Troubleshoot SCCM 2012 /2007 Client Issues
• Create SCCM 2012 Application Deployments and Packages
• Create custom SCCM reports with SCCM 2012
• Capture and Restore user data using RES and Microsoft USMT
• Use PowerShell Scripts to automate Admin tasks and Add, Delete, Modify and Move Active Directory user/computer accounts
• Ensure Windows 10 Baseline Compliance
• Create, Delete, Modify and Move SCCM collections
• Deploy SCCM 2012 Client and RES agent on Windows 10 Machines via SCCM 2012 Console
• SCCM 2012 Administration/Engineering
• Execute and Examine SCCM 2012/SQL Reports
• Monitor and troubleshoot SCCM 2012 Deployments, Applications and Task Sequences
• Windows 10 Roll Out powerBI
• Configured, Managed and Supported Microsoft Intune Enterprise Mobility + Security Company, Employees and Third-Party Devices. Handled Microsoft Intune to deploy updates, applications and mobile device management.
• Configure Site to Site, Global and L2TP VPN, Upgrade the Firmware of Firewall, Configure WAN Failover, Configure SNMP, Review Firewall Logs Adding New Network Devices for Clients, Troubleshoot Connectivity Issues,
• Setting up DHCP, Create and Manage WAP SSID
• Installation & Configuration of Domain Controller on Windows Server 2012 and 2016, R2, AD Objects, Transfer/Seize of FSMO Roles from One DC to Another, Force AD Replication, restore a Failed Domain Controller, Troubleshoot AD Replication Issues
• Creation of DNS Records Like A Record, MX Records, etc., Managing DNS Zones, Creation of Reverse Lookup Zone, Troubleshoot DNS Issues Using NSLOOKUP
• Provision of Service / Domain in Reflexion Total Control, Creating Users in Reflexion, RADAR Configuration in Reflexion Backup and Restore Firewall Settings, Create NAT Policies and Access Rules
• Configuration of DHCP Scopes, Reservation and Exclusion, Implementing DCHP Failover Using 2 DHCP Servers, Backup and Restore DHCP Server, Troubleshoot DHCP Issues
• Implementing Common Group Policies like Folder Redirection and Drive Mapping, Implementing Account Lockout and Password Policies, Troubleshoot Group Policy Issues
• Integrated, Configured and Supported Cisco switches, routers, MPLS, firewalls and Cisco Tele Presence Systems
• Provide timely support to users and datacenter for hardware, software and network-related incidents and request in person and remotely using Service Now and Solar Winds
• Design, Integrated, Configured and Supported Cisco Unified Communications Manager (CUCM) for multiple sites (4000+ phones) within the NY/NJ Metro Area Cisco IP Telephony and Cisco Tele Presence Systems,
• Provided 24x7 support for all Level 3 escalations related to voice, video and data.
• Automated, scripting, administered and configured office365, Skype for Business, windows server 2012 / 2016 and virtualization environment using Windows PowerShell
• Procured, Configured, Administered and Managed laptop, desktop, server, network devices.
• Communicated, on behalf of the company, with shareholders, government entities, and the public
• Provided business/technology leadership and solutions to optimize client experience, risk reduction, efficiency and profitability.