SUMMARY:

• 5 year of IT Infrastructure experience as a Confidential Azure Identity Subject Matter Expert, Office 365 Migration Engineer and Systems Engineer
• Implemented Azure Identity setup for external org for identity protection and data governance for 3rd party app
• Intune deployment for compliance and conditional access for Windows, Android and iPhones
• Migrated GPO implemented by SCCM to Intune and enhanced threat management through security baselines
• Deployed MAM for personal devices and MDM for corporate owned devices
• Designed Azure Infrastructure for hybrid environment, migrated servers using Azure site recovery
• Monitored Azure subscriptions, multiple accounts and provided role bases access roles as pre requirement
• Implemented Azure infrastructure designs using Resource groups, Virtual machines and Azure networks
• Deployed Intune System with Compliance and conditional access policies with EMS security system
• Implemented Mobile device management and Mobile Application Management with Intune/ Azure
• Migrated organization to Office 365 for Exchange, Skype for business and Teams environment
• Designed and implemented Voice routing and Auto - attendant for Skype online in Island mode
• Assign and monitor the usage of licenses on Office 365 for domestic calling and audio conferencing
• Tenant to Tenant Migration from Online to Office 365 using Bit Titan MigrationWiz
• Worked with Confidential support on severity A ticket for multiple organization-wide problems
• Interacted with Office 365 support team to resolve an issue with strict deadlines
• Troubleshoot issues with Confidential FastTrack team for Migration and Enterprise voice
• Troubleshoot issues related to the authority, Exchange and Skype for business on-premise s, AD object for a hybrid environment
• Troubleshoot Incoming/ outgoing PSTN calling issues for hybrid servers using PowerShell
• Troubleshoot Skype meeting, scheduler, contacts, sign-in authentication, and conferencing issues
• Administration of hybrid environment on Azure cloud and O365 security policy for DLP using ATS
• Monitored and troubleshoot Call Quality and network design for increasing efficiency
• Decommission on-premise servers after Exchange, voice, and Skype for Business migration
• Worked with ITIL on Incident management and change management system
• Generated documents and implemented standards according to ISO 27001: 2013
• Troubleshooting Network virtual appliance basic issues in Azure Cloud
• Diagnose a communication problem between networks using the Azure Cloud portal
• Resolved client end queries for Office products and communicated a solution via email and phone
• Provided KT on migration strategies and IT compliance to team members
• Certified with AWS Solution Architect and Azure Cloud Fundamentals

APPLICATION/ TOOLS SUPPORTED:

Operating Systems: Azure, Windows 2008, Windows 2012/R2, Windows 2016, Hyper-V, VMWare

Azure Services: Resource groups, Subscriptions, Azure Active directory, Intune device management, Azure Site recovery, Network Gateways, Load Balancers, Virtual Machines, Cost management, Monitor, Advisor, VNet Peering, Log Analytics

Confidential Technology: Active Directory, Exchange, Skype for Business, Teams

Scripting: Power shell

Analysis/ Technology: Confidential Remote Connectivity Analyzer, Call Quality Analytics, SFB Connectivity Analyzer

Network: Routers, Switches, HTTP/HTTPS, TCP/IP, ASA Firewall, Fortinet Firewall, Sonic Wall Firewall, SDN, VPN, Active Directory.

WORK EXPERIENCE:

Confidential, Dallas, TX

Fast Track SME

Responsibilities:

• Identify and implemented best solution for issues in Azure and Office 365 environment related Identity authentication and application integration
• Implemented Password hash Sync (PHS)from Active Directory Federation Service (ADFS) using Azure AD Connect for Single Sign-On (SSO) for complete organization using staged rollout feature
• Provided authentication solution for PHS, Pass Through authentication (PTS) and ADFS for 3rd party app
• Implemented Entitlement Management and Privileged Identity Management (PIM) for Identity Governance with multi-level approvals with external organizations
• Presented Zero trust maturity model with Risk exposure and conditional access with logs with token flow for authentication

Confidential, NJ

Intune Engineer

Responsibilities:

• Moved the organization configuration to Azure Intune device management with a hybrid domain controller with AD Connect for hybrid environment and managed Azure resources for over 1000 devices
• Deployed rollout plan and enrollment approached for the users with cooperate device and BYOD
• Designed and Assess deployment goals and challenges with proper timeline with license decisions
• Configured software updates for Windows machines, device configuration policies as per their SCCM server, Application configuration for Android and iOS devices and Conditional Access policies.
• Designed compliance policies with reports for AD joined and AD registered devices
• Defined security baselines configuration for device and data protection and network connectivity
• Implemented MDM security baseline which majorly includes application control, device control, remote access control and windows defender, connectivity and browser control
• Implemented Confidential Defender ATP baseline settings which majorly includes Application guard, attack surface reduction, Bit locker and device control
• Designed Conditional Access for granting and blocking users based on control over access, identity protection which includes MFA, risky sign-ins and cloud app security
• Created site to site Azure VPN tunnel and VNet peering for multiple locations for connectivity and disaster recovery solutions
• Generated Azure reports based on Azure resource group usage, subscriptions and applications
• Generate and managed audit and operational using Log Analytics workspace in Azure Monitor for Intune

Confidential, NJ

Migration Engineer

Responsibilities:

• Migrated mailbox tenants from Office 365 and Gsuite to Office 365 with Exchange, Skype for Business for 4000+ users with enterprise voice
• Purchased Cloud licenses as per organization requirement based on user requirement for Voice, audio conferencing, ATS and Office applications
• Implemented MigrationWiz to identify and implement client requirement for destination mailbox on Exchange Online with Notification for administrators and avoiding user interruptions
• Created a project in MigrationWiz with source and destination endpoints and global administrator credentials and resolved issues pre and post migration
• Generated reports OF PSTN usage and minute pool from skype admin portal for cost efficiency
• Resolve online Skype for Business design issues using PowerShell and SFB control panel
• Implemented backups for rollover and disaster recovery for all the servers on-premise and cloud
• Verified proper settings using Skype for Business Power shell with Global Admin access
• Configured Skype for a business and Teams Enterprise Calling Auto Attendants and calling queues
• Added voice phones such as Polycom VVX601, VVX501, Yealink T50 to Team’s Admin portal
• Created Meeting policies, Messaging policies and Org-wide settings with Teams and generated reports for Teams user and device usage and Skype Calling and conferencing usage
• Enabled controlled external communication and federation for Skype consumers
• Created documents for skype network changes and updated DNS on-premise and online
• Migrated Enterprise Voice from third-party solution to Office 365 Enterprise voice
• Discussed and identified risk for Voice migration with Confidential Fastrack engineers

Confidential, NJ

Cloud Migration Engineer

Responsibilities:

• Migrated multiple servers from Datacenter to Azure with Azure site recovery with complete documentation for Hyper-V and VMware machines
• Setup and documented the settings for on-premise servers with required administration roles
• Deployed configuration server for VMware with optimized hardware, capacity planning
• Utilized various azure accounts and subscriptions to reduce the cost and improve security using RBAC
• Setup the Hyper-V server with Azure Site recovery installer without Virtual machine manager
• Designed Azure Virtual Network and Load Balancer for Failover and DR situation with resource manager
• Create retention policies, snapshot frequencies, and alert policies for machines health

Confidential, NJ

Migration Engineer

Responsibilities:

• Designed hybrid environment for Azure AD users and migrated Skype for business and enterprise voice migration for 400 employees
• Configure Skype for Business Auto Attendant and Calling Queues for different geographical locations and as per time zone requirements
• Configure Teams and Skype in coexistence mode and migrated the users to Teams only mode in Cloud
• Configure Teams with organization-wide settings for various locations including messaging policy, external access, internal access, and guest access
• Provided support to network engineer to open Confidential recommended ports and IP Addresses
• Implemented split tunneling for Skype servers to reduce latency and packet loss
• Understand and managed QoS in the environment by ensuring port ranges for multiple servers
• Troubleshoot call quality from Confidential Call Quality Dashboard and Call analytics

Confidential, NJ

Systems Engineer

Responsibilities:

• Implemented Azure Active directory solution in Azure and on-premise servers for Exchange and Skype for Business servers on VMWare and Domain Controller for High Availability on Hyper-V Machines
• Created multiple Azure accounts based on MPN and assigned RBAC to users as per design
• Generated reports on Azure for cost management and managed any new assignments
• Monitored and troubleshoot performance and issues with Hyper-V and VMWare server backup solution
• Created analysis report, per-user reports, overall call quality report and resolved issues
• Identified and resolved issue related to media quality and network Connectivity performance
• Reviewed IT and Security policies for the organization with CISO and disciplined the environment by weekly/ monthly reviewing and tracking records
• Implemented ISO 27001:2013 IT standards and successfully certified the organization and generated documents as supporting evidence for external audit
• Designed and maintained new records that are required for audit purpose
• Created backup and examined disaster recovery solutions for network devices
• Implemented a Proof of concept for introducing Box
• Presented the private and public workspace with benefits of access levels, custom share with permissions and conversational issues
• Worked in partner network to avail partner benefits and procure MSDN enterprise benefits
• Implemented Azure AD hybrid setup for the organization for a backup
• Administer user access and requirements from Office 365 portal and Azure portal
• Implemented ITIL using Manage Engine for Incident Management and Change Management

Confidential

Cloud Engineer

Responsibilities:

• Designed O365 environment for the organization to implement an exchange, Skype for business and SharePoint for 1000+ users
• Implemented port configuration on the firewall to enable Skype and teams in the environment
• Purchased and assigned different enterprise license for Office 365 accessibility
• Migrated to Azure cloud Active Directory hybrid configuration with AD DS 2012 R2
• Designed exchange mail flow rules, spam filters, accepted and remote domains and protection through the exchange admin portal
• Implemented Confidential Advanced Threat Protection for malicious email attachments and links
• Setup SharePoint sites and containers for the organization and provided role-based user access
• Troubleshoot user issues for outlook scheduling assistant, calendar invite, Skype for business federation with an external user, SharePoint and OneDrive access and authentication

Confidential

System Engineer

Responsibilities:

• Implemented Office 365 solution to the organization with a team for 5000+ users to provide the best solution based on the role which includes tenant migration, cost planning for an enterprise license, Domestic and international calling, phone systems, Active directory sync, Exchange and Skype Hybrid sync
• Designed and presented a cost-effective solution of enterprise license for employee, managers and higher management
• Researched and implemented O365 enterprise and business licenses based on role and position
• Created a test environment for a Hybrid environment for Exchange 2013 and Skype for Business 2013 with multiple mailbox servers
• Implemented DNS updates and firewall changes with Confidential Support team and reviewing Confidential documents
• Maintained change documents for review and created new documents for hybrid configurations
• Implemented SonicWALL Intrusion Detection systems (IDS), Intrusion Prevention systems (IPS) solutions and internet website access
• Implemented Security controls through Office 365 for alerts on DLP, malicious emails, external access, and various solutions
• Proactively monitored on-premise IT infrastructure environment with Nagios for patch management, backup management, and VMware server management
• Provided Active Directory support for account and group creation, group policy, and account provisioning
• Responsible for purchasing and allocation of hardware and software with global access administration rights