SUMMARY:

• Experience includes 15 years of management and business development, over 20 years in designing, implementing, maintaining, divesting, and integration of systems and enterprise networks, including Windows NT, Windows Active Directory, Microsoft Azure, WINS, DNS, DHCP, Microsoft IIS Server, SCCP, SCOM, systems migration from Novell to Microsoft, integration with Microsoft SQL Server, and Microsoft Exchange Server.
• Migration experience form Windows NT to 2000, 2000 to 2003, and 2003 to 2008, 2008 to 2012, and 2008 and 2012 to 2016 using ADMT, as well as Quest, Mange Engine, and StealhtBits.
• Experience also includes developing secured networks using firewalls and VPNs, Remote Access Service (RAS), and Terminal Services, configuring and securing Cisco routers and switches. Expertise in several computer languages, as well as extensive experience in developing systems requirements, systems analysis, systems design, software development, software testing and Software Quality Assurance (SQA) using various solutions such as HP/Mercury products including Quality Center (QC), QuickTest Professional (QTP), and LoadRunner.
• Currently focusing on Identity Access Management (IAM) and cloud computing, especially Microsoft Azure and Office 365.
• Familiar with Authentication and Authorization protocols supported by Azure AD (SAML, OAuth 2.0, OpenID Connect), as well as the latest APIs used to interact with Azure AD for Authentication and Authorization, such as ADAL, MSAL, OWIN as well as RadiantLogic/RadianOne, and SailPoint.
• Other expertise includes developing and managing aerospace programs, technical training, course development, technical writing, PowerShell, VBScripting, JScripting, Command Shell, web development, and IT consulting. Achieved numerous IT certifications, such MCSE, MCSA, MCP+I, MCDBA, MCSD, CTT+, A+, CCNA, FCT, FCE, FCSE, FCSA, FCNA, FCPT, HP CTP, ISTQB CTFL. I am currently working on getting my MCSE Cloud Platform and Infrastructure (Replacement for the retired Azure Solutions Architect Certification.

PROFESSIONAL EXPERIENCE IS CONCENTRATED IN THE FOLLOWING MAJOR AREAS:

• RadiantLogic/RadiantOne
• IAM and IGA Solutions
• Azure Active Directory
• Active Directory Architectural Design, Implementation, and Remediation
• Technical/Project Management
• Systems and Network Design, Implementation, Migration, and Integration
• Systems Administration and Troubleshooting
• Software Testing, Evaluation, Certification, and Quality Assurance
• Systems Engineering and Software Development

TECHNICAL SKILLS:

Platforms: Windows 2016 Server, Windows 2012 Server, Windows 2008 Server, Windows 2003 Server, Windows 2000 Server and Professional, Windows 7, Windows Vista, Windows XP, Windows NT Server and Workstation, IBM Mainframe, SUN/Unix, Linux

Virtualization: VMWare, Hyper - V, and Citrix Xen

Other Software and Hardware: Altiris, Ghost, SysPrep, WINS, DNS, DHCP, RAS, ISA Server, Microsoft Exchange 2000/2003/2007/2010 , Microsoft IIS, Microsoft Office 2000/XP/ 2003/2007/2010/ Office 365, MVS, TSO, CLIST, ISPF, Cisco Routers and Switches, IPv4 and IPv6

Programming Languages/Scripting: Visual Basic, Command-Shell Scripting, VBScripting, JScripting, PowerShell, ANSI C, C++, C#, PL/I, COBOL, FORTRAN, BASIC, RPG II, Assembler, Pascal, HTML, SQL, UNIX/Linux Shell, Java

Software Quality Leadership: 15 years of experience developing and implementing QA processes, and developing and leading software QA programs and teams.

Software Quality Assurance: 15 years of experience as a software QA engineer, writing and executing test plans and test cases in highly-structured and loosely-structured development environments and performing all types of testing (functional, installation, acceptance, browser compatibility, load, stress, performance, volume); several years of experience managing software QA programs. Extensive experience writing and executing automated testing scripts (primarily with QuickTest Professional and ANSI C).

Test Automation Software: 7 years of experience with HP/Mercury Quality Center, LoadRunner, and QuickTest Professional, as well as IBM Rational RequisitePro, Selenium, FitNesse, and Mingle.

Database Systems: Microsoft SQL Server, MySQL, Oracle

WORK EXPERIENCE:

IAM Architect/Principal Consultant

Confidential, Tempe, AZ

Responsibilities:

• Responsible for planning, designing and architecting IAM solutions including RadiantLogic/RadiantOne FID/ Virtual Directory Service (VDS) and SailPoint IGA solutions and replicating the company IT structure into multiple entities. The job also includes maintaining, fine tuning, and troubleshooting RadiantOne, on-Premise and Cloud solutions, supporting over 300 applications, including Office365, SharePoint, PeopleSoft, Oracle HCM, and many others.

Senior Active Directory Architect/IAM Engineer

Confidential, Los Angeles, CA

Responsibilities:

• Responsible for planning, designing and upgrading an enterprise network of 35 forests, 37 domains, 2 sites, 3 locations, and over 74,000 users. University of Southern California ( Confidential ), where I work, consists of multiple schools and departments, encompassing students, faculty, staff, and contractors.
• The environment is quite complex, consisting of over several hundred servers, including Microsoft, Linux, Unix, mostly being housed and managed in two major data centers, and over 30 smaller local ones.
• There are over 200 virtual servers such as File/Print servers, database servers, web servers, multiple tenants of Office 365, Microsoft Azure, and a wide range of academic and business applications.
• As a project lead, actively involved in the support, migration of networks, support of various applications and patching, Identity Access Management (IAM), device deployment and configuration management using Microsoft System Center Configuration Manager (SCCM), and infrastructure monitoring via the Microsoft System Center Operations Manager (SCOM), Solar Winds, and incident management tools like ServiceNow.
• Currently working on automating most IT-related tasks using various scripting languages, such as PowerShell, WMI, .Net, VBScripting, as well as the .COM and the Command Shell, as well as upgrading to Windows 2012R2 and 2016R2 domain and forest levels.
• Currently in the process of redesigning the entire campus-wide Active Directory infrastructure, using third-party virtual directory solutions such as Radiant Logic, and leveraging other existing directory services such as Oracle LDAP, and Microsoft cloud solutions such as Microsoft Azure and Office 365.
• The focus of the redesign is to ensure better user experience, single sign-on (SSO), and secure access across the enterprise using SAML-compliant web services as Shibboleth and other multi-factor authentication.
• In charge of documenting various aspects of the enterprise and other resources.
• Other responsibilities involve troubleshooting, root cause analysis, creating organizational units (OUs), sites, as well setting up group policy objects (GPOs). Additional tasks include administration of Windows and Active Directory accounts and groups, publishing resources, implementing distributed file systems (DFS), installing, configuring, securing, optimizing Windows Servers and remediating mitigating issues, and ensuring all services are responding to the needs of the user community and business goals.
• Organizing and instituting best practices in various areas and technologies, ensuring best methods, tools, policies, procedure, and guidelines are in place to ensure that the migration, upgrade, and various integration activities run smoothly, and future maintenance and steady-state activities run with minimal disruption. Ensured change management policies were followed.
• Creating troubleshooting and problem-solving methodologies for dealing with every aspect of the enterprise and streamlining helpdesk and network support. The methodologies encompass clients, various types of servers, network connectivity, various Active Directory tasks, DNS, DHCP, Exchange, VMWare, Citrix, and specific clinical and business applications, as well as SCCM, SCOM, Disaster Recovery, and IAM to ensure safety and security of resources.
• Collaborating with other teams, such as VMWare, Messaging, Unix, Helpdesk, Network, and Security groups.

Senior Active Directory Architect

Confidential, Denver, CO

Responsibilities:

• Responsible for planning, designing and upgrading an enterprise network of 7 forests, 27 domains, 58 sites, 48 locations, and over 150,000 users. The Catholic Health Initiatives ( Confidential ), consists of many hospitals, care centers, and clinics throughout the nation. The environment is quite complex, consisting over 13,000 servers, ranging from Microsoft, Linux, Unix, Mainframe, mostly being housed and managed in two major data centers, and over 40 smaller local data centers.
• There are over 7,000 virtual servers, over 650 Citrix servers, 160 File/Print servers, supporting over 150,000 users and a wide range of clinical and business applications.
• As a project lead, actively involved in the support, migration of networks, support of various applications and patching, Identity Access Management (IAM), device deployment and configuration management using Microsoft System Center Configuration Manager (SCCM), and infrastructure monitoring via the Microsoft System Center Operations Manager (SCOM), Solar Winds, and incident management tools like Remedy.
• Currently working on automating most IT-related tasks using various scripting languages, such as PowerShell, WMI, .Net, VBScripting, as well as the .COM and the Command Shell.
• In charge of documenting various aspects of the enterprise and various other resources.
• Other responsibilities involve troubleshooting, root cause analysis, creating organizational units (OUs), sites, as well setting up group policy objects (GPOs). Additional tasks include administration of Windows and Active Directory accounts and groups, publishing resources, implementing distributed file systems (DFS), installing, configuring, securing, optimizing Windows Servers, and leveraging networking services such as DNS, DHCP, WINS and troubleshooting and remediating mitigating issues, and ensuring all services are responding to the needs of the user community and business goals.
• Organizing and instituting best practices in various areas and technologies, ensuring best methods, tools, policies, procedure, and guidelines are in place to ensure that the migration, upgrade, and various integration activities run smoothly, and future maintenance and steady-state activities run with minimal disruption. Ensured change management policies were followed.
• Creating troubleshooting and problem-solving methodologies for dealing with every aspect of the enterprise and streamlining helpdesk and network support. The methodologies encompass clients, various types of servers, network connectivity, various Active Directory tasks, DNS, DHCP, Exchange, VMWare, Citrix, and specific clinical and business applications, as well as SCCM, SCOM, Disaster Recovery, and IAM to ensure safety and security of resources.
• Collaborating with other teams, such as VMWare groups using ESXi and Citrix/Xen Groups to virtualize as much of the network as possible, with Citrix group to ensure interoperability with Active Directory, with security and network groups to ensure DNS, DHCP, Active Directory, and other network services are protected. Working with the Disaster Recovery group to ensure vital enterprise data and applications are safe and highly available and recovery would be quick with minimal disruption in case of catastrophic circumstances. Working with Messaging group to ensure Exchange and Lync Servers are properly designed, implemented, and maintained. Working with various Tier Support levels to ensure proper usage of technical staff, while maintaining continuity of business operations.
• Working with various departments to ensure that their business and clinical applications work properly. These applications include Cerner, Olympus, MediTech, Star, Epic, Lawson, Business Intelligence, and AEHR.
• Working as the lead architect for IP remediation projects in support of integration activities as part of the merger and acquisition process, ensuring all network devices, servers, appliances, and applications are migrated properly and the data centers are set up and documented appropriately.

Senior Active Directory Architect/Quality Assurance Manager

Confidential, Mission Viejo, CA

Responsibilities:

• Assigning and reviewing tasks, providing appropriate mentoring, managing performance feedback, training and professional development opportunities to help individuals reach their full potential.
• Serving as an architecture/technology mentor for junior architects and engineers across the company.
• Monitoring the performance of internal and external service providers and/or sub-contractors to ensure the awareness or requirements, adherence to project quality, timely implementation of deliverables and resultant client satisfaction.
• Business Development
• Actively participating in engagements that result in profitable revenue growth.
• Working with the business development team and develop designs, configurations, proposals and work estimates.
• Leveraging current industry, technical knowledge, and/or entire enterprise IT infrastructure knowledge to perform consulting engagements and participate in pre-sales activities.
• Service Delivery
• Providing architectural guidance on infrastructure-related issues for the largest and most complex client projects.
• Providing expertise in assessing technical risks and identifying potential design, performance, security, and support problems.
• Integrating solutions from one or more areas of specialization into existing client environments.
• Interfacing extensively with the client’s senior management (e.g. IT Director, CIO) on business, IT infrastructure, and technical issues.
• Specific Active Directory task include designing and implementing Active Directory, creating multiple forests, trees, organizational units (OUs), sites, as well setting up group policy objects (GPOs) for a multitude of clients. Tasks also included administration of Windows 2003, 2008 Active Directory accounts and groups, publishing resources, implementing distributed file systems (DFS), installing, configuring, securing, optimizing Windows 2003 and 2008 R2, including securing the Sysvol from corruption or journal wraps, assessing GPOs to ensure unnecessary GPOs were not present and find and fix holes in the GPO or its hierarchy. Educated users and admins on proper use of the accounts and securing their passwords. Other tasks performed include implementing wireless networks, VPN and firewalls, installing and configuring Microsoft Exchange 2003, 2007, 2010, as well Microsoft SQL Server 2000 and 2005.
• Rolled out multiple Windows XP stations for various clients using multiple automated methods, including Remote Installation Service (RIS), unattended installation, and disk imaging.
• Installed and configured VMWare to reduce cost, provide faster response to business demands, simplify management, improve flexibility & scalability, increase quality and consistency, create efficient development and test environments, as well as improve security.
• Although most clients’ networks were small and mid-size, there has been occasional involvement in enterprise networks consisting of up to 10,000 Active Directory and 70,000 mail users and 140 servers including 25 domain controllers, 7 sites, Microsoft Exchange Servers, Blackberry, Windows 2003, UNIX, Linux, and Novell NetWare Servers. Main tools used include Altiris, Microsoft Project 2003, Microsoft Outlook, and Microsoft SharePoint.
• Developing hands-on certification tests for the IT industry
• Providing training for corporate technicians in the field
• Developing hands-on certification tests for the IT industry
• Developing Active Directory and Software Testing Curricula
• Delivering Active Directory and Software Testing courses
• Automating most IT-related tasks using various scripting languages, such as Command Shell, VBScripting, JScripting and PowerShell
• Providing training for corporate technicians in the field
• Provide software testing and test automation for various clients

CTO/Senior Systems Engineer

Confidential, Silver Spring, MD

Responsibilities:

• Managed System Integration Projects, including scheduling and budgeting, setting IT policies and procedures, managing and developing technical and business proposals, as well as interviewing and recruiting technical staff.
• Managed multiple projects involving architectural design, network setup, implementation, and migration. Met with clients, customers, and users to capture their requirements and then developed system requirements and specifications, set priorities, developed schedules and achieved the objectives within schedule.
• Directed and participated in the planning, design, implementation, deployment, and testing systems and networks within time, budget, and schedules. Also recommended and procured or helped procure appropriate software and hardware components needed for the projects. Automated most IT-related tasks using various scripting languages, such as Command Shell, VBScripting and JScripting.
• Developed a quality assurance program that includes on-going training of contract technicians regarding new technologies, standards and procedures, as well as customer relations, listening to clients, capturing user requirements, and routine technical support.
• More specific tasks included designing and implementing Active Directory, creating multiple forests, trees, organizational units (OUs), sites, as well setting up group policy objects (GPOs) for a multitude of clients. Additional tasks included administration of Windows NT and Windows 2000/2003 Active Directory accounts and groups, publishing resources, implementing distributed file systems (DFS), installing, configuring, securing, optimizing Windows 2000/2003, and leveraging networking services such as DNS, DHCP, WINS, Terminal Services, IIS, as well as networking protocols such as RIP, OSPF, SMTP, HTTP, HTTPS, and Frame Relay. Other tasks performed were implementing wireless networks, VPN and firewalls, installing and configuring Microsoft Exchange, as well Microsoft SQL Server.
• Rolled out multiple Windows XP stations for various clients using multiple automated methods, including Remote Installation Service (RIS), unattended installation, and disk imaging.
• Installed and configured VMWare to reduce cost, provide faster response to business demands, simplify management, improve flexibility & scalability, increase quality and consistency, create efficient development and test environments, as well as improve security.
• Tasks also required training on Microsoft, Cisco, and CompTIA subject matters, but mostly Windows NT and Windows 2000/2003 Active Directory, TCP/IP and CCNA.

Project Manager of Computer Services

Confidential, Washington, DC

Responsibilities:

• Managed the Confidential /BLS ADP training contract, which consisted of nearly 80 computer-related courses and seminars.
• Responsible for business development, overall technical management of all computer-related services, including training and supervision of staff and consultants, curriculum design and development, scheduling, budgeting, meeting with clients, developing requirements, and ensuring quality of products and services.
• Improved quality of course materials and the course deliveries.
• Developed 17 new courses and taught 16 courses in Systems, Mainframe, and PC areas.
• Increased the company revenue form the computer-related services by more than 100% over a two-year period, while quadrupling the profit margins for the same services.
• Captured client and user requirements and developed a quality program for course design, development, and delivery. Used the same approach for the Software Development Life Cycle (SDLC) in developing the curricula as well as principles of adult learning.
• Conducted many Train-the-Trainer sessions for the trainers.
• Provided monthly report to government Contracting Officer, which included progress, evaluations, budget, and schedules.
• Worked with teams of writers and SMEs to develop technical and business proposals for expanding the business and re-competing for existing contracts.
• Hired and managed over 20 trainers, technical and support staff and consultants.
• Held and facilitated many national seminars and sessions to capture requirements for 9 Departments of Labors of various states to develop a nationwide Wide Area Network to connect all DOLs with the US Confidential as Internet was being developed nationwide in the early 90s.
• Set up and managed a Help Desk Center for the Confidential /ETA project and provided national support of Confidential WAN/Pilot program.
• Was instrumental in capturing the requirements, developing the design and implementation of the WAN and all its supporting documentation.

Senior Scientist, Principal Engineer, Quality Assurance Officer

Confidential, Greenbelt, MD

Responsibilities:

• Assisted in the development of proposals for government and commercial clients.
• Used customer and client requirements and developed systems specification requirements, designed and developed a PC-based Analysis toolbox involving graphics and communications interfaces with the mainframe.
• Developed an automation system to provide Quality Assurance of Shuttle and Satellite data to eliminate human error and relieve the analysts of routine production tasks.
• Pioneered and supervised the technical aspects of the Confidential Rendezvous and Retrieval Mission project.
• Supervised a number of senior analysts and programmers working on multiple projects.
• Designed optimum methods for fuel consumption and rendezvous mission for space programs in support of Goddard Space Flight Center.
• Designed optimum methods for fuel consumption and rendezvous mission for space programs in support of Goddard Space Flight Center. This was a pioneering project and was developed for the first time.
• Published five technical manuals, which are used by Confidential and Confidential scientists, engineers and programmer/analysts for determining optimal orbits with plane change and phase maneuvering. As the product assurance officer, ensured quality of all products (documentation and software), including verification and validation. Published many reports and manuals for routine use by programmers/analysts at Confidential and Confidential .
• As the training supervisor, provided training needs assessment, developed courses and conducted numerous courses and seminars and supervised all trainers and trainees.