SUMMARY:

Results driven technology specialist with extensive experience and track record of delivering on highly distributed, enterprise scoped technologies. Responsible over design and implementation of Windows, Unix/Linux, SAN, Virtual, and Security Infrastructure/Solutions and their supporting systems; both OnPrem and Cloud (Azure and Google - Cloud Specific) as well as the management of related staff. Excellent business and analytical skills with innate understanding of long term strategic needs. Agile, adaptive and resourceful with strong written and verbal communication skills.

TECHNICAL CORE COMPETENCIES:

Cloud: Azure | Google-Cloud (Management and Architecture IAAS, PAAS, SAAS)

Monitoring: Solarwinds | SCOM | Azure Application Insights | Azure Log Analytics | Azure Monitor

SSO/MFA: Azure SSO | ADFS | Azure MFA | MS MFA Server | Ping-Federate | PingID | Gigya Directory Active Directory | Gigya | Azure AD | LDAP | ADAM | Cyber-Ark | Cisco ISE

Authentication: NTLM | Kerberos | LDAP | SAML | OAuth | Modern Auth | OpenID | TACAS | RADIUS | EAP

Certificate: Active Directory Certificate Services (ADCS) 03-2016 with Online Responder

Windows: DNS | DHCP | RDS | Radius NPS

Network: Cisco Catalyst | Cisco Nexus

Collaboration: O365, OneDrive, SharePoint Online, Teams, Skype

Identity: FIM 2010 R2 | MIM 2016 | OKTA | CA Tech | ProofID

Database: SQL Server 2005 - 2012 R2

MS: System Center Suite 2012 R2 SCOM, SCCM, SCORCH, SCVMM, SCSM

Storage: EMC | HP/3Par (Fibre Channel, ISCSI, NAS)

Anti-Virus: McAfee EPO, Trend-Micro, Cisco AMP, Ingalls-SIEM

Virtualization: VMware (vSphere) 4.0 - 6.5 | Hyper-V

Scripting: PowerShell | VB Script | Batch

Framework: TOGAF & ITIL Adherence

MANAGERIAL COMPETENCIES:

• 5 years of technical management | Managing up to 5 full-time engineers
• IT infrastructure architecture, engineering, delivery, and operations
• IT systems optimization, automation & continuous improvement
• Information security and compliance
• Program & project management
• Business & technology alignment
• Business process optimization
• Building & developing teams
• Financial & budget management
• System evaluation, selection and implementation
• Vendor negotiation and contracts management (RFI, RFP)

WORK HISTORY:

Confidential, Atlanta

Senior Technical Services Architect / Manager

Responsibilities:

• Responsible for all aspects of team operations following ITIL best practices and technical
• Responsible for all technical oversight and architecture of Infrastructure based solutions and teams
• Alignment with Enterprise Architecture’s strategic business direction
• Responsible for Enterprise Technical Services Architecture design, documentation, and delivery
• Researching technologies based on business requirements and delivering technical solutions
• Partnering with and working in conjunction with all business groups to provide positive impacting solutions
• Design & deploy Machine Learning (ML) solution on Cloud Platform (Google-Cloud Services)
• Design & deploy Anti-Malware protection Solution (CISCO AMP for endpoints)
• Design & deploy Single-Sign-on and Multi-Factor Authentication with Conditional Access for Corporate LOB applications (Ping Federate, PingID and Pingone)
• Network Refresh - Replacement of EOL Routers & with Meraki MX 65 Routers & MR52 Aps Respectively

Senior Infrastructure Architect / Manager

Confidential, Atlanta

Responsibilities:

• Design & deploy of 3rd party Cloud Access Security Broker (CASB: McAfee s MVision) for cloud service security management
• Design & deploy of anti - phishing end-user training platform (Wombat) and implement
• Design & deploy of MFA Authentication and conditional access (Microsoft MFA for 0365) for corporate data protection
• Design & deploy Private cloud (Azure Stack) for on-premise workloads
• Design & deploy Azure services: Application Gateways, WAF, App services, App service plans, VNets, NSGs and all other supporting services for LOB apps
• Design & deploy Azure Infrastructure for On-Prem to Cloud DC Extension for Core infrastructure and LOB application
• Design & deploy identity and Access Management upgrade (Microsoft Identity Manager 2016) for user auto-management (upgrade from FIM 2012 R2)
• Design & deploy of Windows 2016 Server
• Design & deploy AV and File Integrity Management Solution (TrendMicro) for on-premise endpoints
• Design & deploy Cisco ISE Deployment
• Upgraded vSphere 5 to 6.5
• Data Center Inventory Management (DCIM: Rackwise) deployment sLDAP for external Applications
• Developed infrastructure Devops, and Governance guide for Azure workload management
• Configured Operations Management Suite (OMS) for Azure workload monitoring and alerting
• Microsoft Local Admin Password Service (LAPS) deployment for increased password protection
• Custom coding for remote staff office present monitoring (asset agent db sql + SSIS + SSRS config)

Infrastructure Architect / Manager

Confidential

Responsibilities:

• ADFS 2.0 2012 to ADFS 3.0 2012 R2 upgrade with Extranet Password Management Group Policy Object (GPO) rationalization
• Application-AD Integration discovery and reconfiguration
• AD Consolidation: Condensing 16 domains into a single domain for ease of management, lower admin cost and increased application deployment flexibility.
• Active Directory Migration Tool (ADMT) Customization for Migration Execution and Incident management
• Design and deployment of HA FIM Self Service Password Reset Solution for Service Desk call reduction and improved end user experience
• Design and deployment of administrative Jump-Box, and associated management protocols to meet PCI requirements.
• Design and deployment of ADFS with DR Solution for Geographic High availability with multiple ADFS-Claims based App SSO setup
• Design and deployment of PKI (ADCS) 2012 solution with Online Responder service for digital certificate issuance and management with GEO HA and DR
• Designed and deployed enterprise access standards and underlining infrastructure (AD Security Groups, RBAC FIM etc.)
• Remote Server consolidation: Retiring redundant systems and centralizing roles for systems spread out across the U.S.A
• Pre-Boot Authentication test and design
• Remote Desktop Services HA build out for centralized service offering

Senior Engineer / Architect

Confidential

Responsibilities:

• Migrated from Lotus Notes to 0365. Preparation of Active Directory user contact and group objects. Population of relevant attribute values, leveraging FIM to facilitate co - existence and 3rd party for data migration.
• Design and deployment of Forefront Identity Manager 2010 R2 SP1 on SharePoint 2013 and Windows Server 2012
• Design and deployment of Forefront Identity Manager 2010 R2 on SharePoint 2010 SP1 and Windows Server 2008 R2
• Active Directory Domain consolidation
• Design and deployment of System Center Operations Manager 2012 on Windows Server 2012 for server, application and network monitoring and Windows related auditing
• System Center Service Manager 2012 architecture, and deployment for Change, Problem, Incident and Activity Management

Confidential

Senior Analyst / Architect

Responsibilities:

• Design, developed, deployed and administered SCOM - 2012 and SCORCH-2012 for enterprise monitoring and task automation respectively
• Design, deployed and administered 10 CA server PKI (ADCS) infrastructure with Online Responder service
• Setup delegated rights for AD users in corporate domain
• Planned and executed Domain Controller upgrades across multiple domains from 2003 to 2008 R2 OS
• Catering Hardware sizing and procurement per application owner requests
• Designing Hyper-V 2012 pilot project

Analyst

Confidential

Responsibilities:

• Deployed Hyper - V Proof of concept on 2008-R2 for Store infrastructure
• Planned and Deployed SCOM-2007 R2 ACS for AD auditing
• Planned and Deployed and administered Forefront Identity Management 2010 (FIM) solution for key attribute synchronization between AD and distributed Data stores (HR, application and Lotus Notes databases etc.)
• Migrated all physically join corporate servers from EVA to EMC s Celerra-Clarion SAN solutions.
• Administered Production SAN using EMC technologies. EMC Clarion NS960, NS480 and NS120
• Evaluated multiple PC power management solutions and assisted in deployment for desktop power management
• Tracked Team projects and provided upper management updates

Analyst

Confidential

Responsibilities:

• Evaluated, piloted and deployed a self - service password reset tool for Corporate employees
• ESX capacity gathering for Physical to Virtual conversation process (P2V)
• Migrated all physically join corporate servers from EVA to EMC s Celerra-Clarion SAN solutions