SUMMARY

• Experience in large multi - domain, multi-forest Active Directory environments with over 80,000 users.
• Upgrading active directory forest environment from 2008R2 to 2012R2.
• Migrating users, computer, groups, OUs from one domain to other domain as a part of merger & acquisition and domain consolidation.
• Set up, configure, migrate and manage Azure AD.
• Expert level experience in security hardening and implementing CIS benchmark.
• Create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption.
• Experience of setting up and AD migration using QMM and ADMT.
• Providing L3 support of Active Directory performance, authentication, and replication issues.
• Understanding of Active Directory disaster recovery processes.
• Creating, modifying, and apply Group Policy Objects (AGPM, GPMC).
• Implementing low level delegation of access within Active Directory.
• Assisting application support teams in implementing and troubleshooting Active Directory integration.
• Understanding of Active Directory security audit data points and best practices for security settings.
• Analyzing and resolving problems related to access control, user administration, and Operating level system security.
• Creating and modifying scripts written in PowerShell and VBScript.
• Expert level of expertise in Active Directory (2008 R2 and 2012 R2).
• Expertise in PowerShell and VBScript.
• Installing configuring and maintaining VMware VSphere, vCenter server, ESXi server, Designing network configuration, Migrating Virtual Machines, vMotion, Storage vMotion, Fault Tolerance, Data Protection, Managing virtual machines, Access control, Resource pools, Monitoring virtual machine performance, alarms, Configuring and managing High Availability, vSphere distributed resource scheduler (DRS).
• Implementing and managing vCloud director, vRealize, Orchestrator, Open stake.
• Configure and manage virtual storage, VSA Cluster configuration, Load-Balancing, Back up, Access and authentication control, Integrating ESXi with Active Directory (AD), vShield to secure the virtual data center, Resource management and monitoring, Scheduling changes to resource settings, Cluster resource allocation, Configuring vCenter update Manager.
• Migration of 4.1 Vcenter servers to 5.1, 5.5 and 6.0.
• Migration and up-gradation of 4.1 ESXi servers to 5.1 and 5.5.
• Excellent troubleshooting and System Administration skills of VMware products and tools.
• Administration of VMware ESXi and Virtual Center 4.1, 5.0, 5.1, 5.5
• OS / Patch Release management and maintain configuration of Central ESX OS image.
• Experience in performance tuning of VMware servers and Virtual sessions and management of servers resources between virtual machines.
• Thorough knowledge of Wintel / Windows server platforms 2000/2003/2008/2012 R2 in a large scale enterprise environment.
• Installing, configuring and trouble shooting of web server (IIS).
• Planning, designing, Installing, Configuring and troubleshooting of Terminal Servers, Print and file servers.
• Creation of Group Policy and applying into users, groups and computers and testing the effectiveness of the applied policies.
• Migration of 2003 AD, DNS, DHC servers to 2008R2 and 2012R2.
• Performed physical to virtual (P2V) migrations
• Physical and Virtual server builds.
• Installing configuration support and maintenance of DFS, Windows deployment Service, RIS, VPN.
• Through knowledge of patching tool like Confidential Tivoli End Point manager (Bigfix), WSUS server, Batchpatch.
• Installing and configuration of NAP, Windows software updates service (WSUS).
• Administration of web servers, FTP sites.
• Very good experience of Datacenter management including setting up of new enclosed, blade servers and storage devices.
• Creation and maintenance of Active directory users, groups, OU and effective access management by using best practices of security permissions.
• Extensive knowledge of setting up of Microsoft Failover clusters and Network Load balance clusters.
• Experienced with x86 / x64 Intel, HP, Confidential & Dell hardware like rack-mounted servers, tower servers, HP Blade server, Confidential BladeCenter, Confidential System X servers, desktop, laptop and other peripherals.
• Management of SAN iSCSI, EMC, Netapp.
• Worked extensively in UCS-B, UCS-C and Nexus 1000.
• Administration of vRanger, Double take
• Configuration of RAID, NIC teaming and link aggregation.
• SCCM 2007, 2012 and SCOM 2007, 2013.
• Good knowledge of SQL server and SQL queries.
• Physical to virtual conversion (P2V) and virtual to physical conversion (V2P) using Platespin, Vconverter.
• Back up and Restoration using HP Data protector and Microsoft backup.
• Automation server administration tasks using VB script, Windows power shell.
• Good understanding about TCP/IP and OSI networking models.
• Configuration of Routing Protocols like (RIP, EIGRP, OSPF, IGRP, IS-IS, BGP and Static Routing Protocol), Frame Relay, PPP, HDLC ect.
• Assembling & Cabling of Wan, LAN and Point-to-Point links using SM fiber, MM fiber and various cat categories.
• IP Addressing (Subnetting, VLSM, Summarization, CIDR & WCM).
• Setting up of infrastructure mode wireless LAN and Ad-Hoc mode network using Wireless network adapters and Wireless access points.
• Handling of Incidents, Changes, Problems and doing root cause analysis (RCA) of the same.
• Good experience on various ticketing tools like Service now, BMC Remedy, Maximo, HPSM, Kayako, CA ect.
• Though knowledge of MIS related to IT infrastructure.
• Experienced in Regulatory environment, FDA compliance.
• Design of process improvement for ongoing support, operationalization of implemented solutions, and transition of ongoing tasks to support staff.
• Good knowledge of ITIL (IT service management).

TECHNICAL SKILLS

Active Directory: Active Directory 2019, 2016, 2012R2, 2008, ADFS, LDAP, Integration, GPO, Security Hardening, CIS Benchmark, Migration, Quest Migration Manager, ADMT.

Azure: Azure Active Directory (AAD), PIM, IAM

Windows Servers: Windows Server 2016, Windows Server 2012 R2, Windows Server 2008 R2, Windows Server 2003, Windows 2000, Windows NT,, ADRMS, DNS, DHCP, Microsoft Hyper-V, Microsoft Exchange server 2007, Windows 10,8,7, Vista, XP, Share point.

VMware: VMware vSphere 4.1/5.0/5.1/5.5/6.0 , ESXi Server 4.1/5.0/5.1/5.5/6.0

Open Source Linux, Unix, KVM (Kernel Virtual Machine)

Storage NetApp, EMC, Hitachi, HP, Confidential Backup Solutions Symantec, Commvalut, Veritas NetBackup, HP Data protector, vRanger, Veeam Networking Equipment Cisco Nexus series, Cisco Routers, Cisco Switches, Cisco Firewalls, Juniper Routers, Juniper Switches, Palo Alto firewall.

Patch Management Tools: Bigfix/Tivoli Endpoint Manager (TEM), Shavlik, Batchpatch, WSUS, SCOM.

Server Hardware: Cisco UCS, HP, Dell, Confidential Enclosure Chassis, Blades, Rack mount serves, Tower servers, Layer 3 switches, Routers ect.

Ticketing Tools: Remedy, Service now, Maximo, CA, HP Service Manager.

Scripting: PowerShell, VB, SQL Scripting, Bash, Python.

Others: SPLUNK, Microsoft NLB and Fail over Cluster, Veritas Cluster, SQL servers, F5 Load balancer, Solar Wind Monitoring, Nagios Monitoring, Site scope, Site Maestro, Dell OME, HP SIM, NAS, NFS, iSCSI. SCCM, Infoblox IPAM, Chef, Puppet.

PROFESSIONAL EXPERIENCE

Confidential, Thousand Oaks, California

Active Directory Engineer

Responsibilities:

• Upgraded Confidential ’s Active Directory environment from existing 2008R2 to 2012R2.
• Have done domain consolidated from four domain AD forest to two domain by collapsing two domain.
• Have completed auditing and completed security hardening based on that.
• Have disabled NTLMv1, SMB1, RC4 via GPO, enabled AppLocker for Domain Controllers, Credential Guard for Win10.
• Implemented most of the other security measures suggested as per the CIS Benchmark via GPO.
• Done application migration and PIM assignments related to that.
• Migrated Users, Computers, OUs, Groups from Europe and Asia Pacific domains to Americas domain as a part of domain consolidation project.
• Have set up QMM for migrating users, computers, OUs and groups.
• Setup and Azure AD, AD Connect and Migration.
• Managing the Azure active directory (AAD), Privilege user management, Azure IAM.
• Documentation of new AD Architectural, Scope of the project, Project plan, Decommission plan ect.
• Writing complex script using PowerShell to automation various project and administration task.
• Create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption.
• Identity and access management.
• Install and configure CA servers and Private key infrastructure.
• Configuring and managing RSA single sign on dual factor authentication.
• Manages public keys by working with vendors like Trustwave, and Verizon.
• Implementation of MIM, Streamlining IDM process and procedures.
• Implemented the active directory group policies.
• Managing large groups of computers running Windows servers, MacOS, Linux and Android mobiles using SCCM.
• Installing and configuring Active directory certificate service (ADCS).
• Decommissioning of the 2008R2 domain controller in a regulated environment.

Confidential, San Jose, California / Branchburg, NJ

Active Directory Consultant

Responsibilities:

• Integrated the active directory of acquired company with the parent company.
• Integration and managing of the DNS and DHCP servers.
• Implemented the active directory security best practices in the environment.
• Installing and configuring Active directory certificate service (ADCS).
• Setting up of QMM for user migration.
• Managing IDM of the enterprise through MIM in line with the FDA rules.
• Set up Azure AD in Microsoft Azure cloud.
• Integrate Okta single sing-on and dual factor authentication with the acquired company.
• Migrated users, groups and OUs from one forest to other and from one domain to other as a part of domain consolidation project.
• Administration of SSL certification deployments and PKI infrastructure.
• Vulnerability assessment, remediation and Patch Management
• On boarded the Domain Controllers in to the SPLUNK and managing the same.
• Integration of many applications with the active directory and LDAP.
• Migration of servers from the acquired company datacenter to the new datacenter.
• Configuring and Managing ADSF and ADRMS.
• Resolving the production issues and working closely with various other migration teams.
• Active Directory health monitoring, Group policy management and Access control.
• Taking the reports from the AD and presenting the same to the various business units.
• Decommissioning of the domain controller in a regulated environment.

Confidential, Palo Alto, California

Technical Lead Active Directory

Responsibilities:

• Migration of AD from 2008R2 to 2012R2.
• Security hardening across the entire forest.
• Managing Active directory certificate service, PKI.
• Updated PKI portals with supporting documentation.
• Created PKI enterprise infrastructure and conduct trends analysis.
• Installing and configuring SPLUK and on boarded Active directory in to the slunk.
• Security hardening of the domain controller.
• Built Windows, Linux servers and MS SQL Clusters.
• Upgraded the fiber NIC drives of all the Cisco UCS servers.
• Figured out and tagged the missing Vlans to the ESXi hosts to ensure that all the Vlans are existing in all the nodes of the cluster in order to avoid the vMotion isssues.
• Faculty mother board of few ESXi hosts and added back to the cluster.
• Prepared new ESXi server, Windows server, Linux server building run book.
• Prepared the run book for decommissioning of servers.

Confidential, Reston, Virginia

Active Directory Consultant

Responsibilities:

• Creation of Trust relationship between two forests.
• Migration of Active directory users, groups, OUs using Quest Migration Manager (QMM).
• Migration of applications, data, database using EMcopy and beyond compare.
• Setting up of vConveter for the migration of servers.
• Migration of large number of servers from the acquired company datacenter to the parent company environment.
• Built PowerShell scripts for the migration tasks.

Confidential, San Jose, California

System Administrator Active Directory

Responsibilities:

• Taking care of large multi-domain, multi-forest Active Directory environments with over 55,000 users.
• Responsible for implementation of recommended AD changes to improve security, system availability and long term stability.
• Providing L3 support of Active Directory performance, authentication, replication and other Windows server 2003, 2008R2 and 2012R2 issues.
• Active Directory disaster recovery and implementing security best practices.
• Creating, modifying, and apply Group Policy Objects (AGPM, GPMC).
• Implementing low level delegation of access within Active Directory.
• Assisting application support teams in implementing and troubleshooting Active Directory integration and access issues.
• Implementing Active Directory security audit data points and best practices for security settings.
• Analyzing and resolving problems related to access control, user administration, and operating level system security.
• Creating and modifying scripts written in PowerShell and/or VBScript.
• Migration of DNS, DHCP and maintaining the same.
• Ensure incident and change management processes are followed and impacted teams are communicated with appropriately.
• Responsible for further design of process improvement for ongoing support, operationalization of implemented solutions, and transition of ongoing tasks to support staff.
• Installing configuring and setting up of Wintel / Windows 2008 and 2012R2 servers.
• Troubleshooting Active Directory performance, authentication, and replication issues.
• Creating, modifying, and apply Group Policy Objects (GPMC).
• Performed physical to virtual (P2V) migrations
• Physical and Virtual server builds.
• Management of Windows server platforms 2000/2003/2008/2012 in a large scale enterprise environment and large datacenter environment.
• Capacity management.
• Monthly Patching of the servers using WSUS.
• OS / Patch Release management and maintain configuration of Central Windows / ESXi OS image.
• Change, incident and problem management.

Confidential, Fredrick, Maryland

System Admin Active Directory

Responsibilities:

• Responsible for large multi-domain, multi-forest Active Directory environments spread across the globe.
• Providing L3 support of Active Directory performance, authentication, replication and other Windows server 2003, 2008R2 and 2012R2 issues.
• Responsible for implementation of recommended AD changes to improve security, system availability and long term stability.
• Active Directory disaster recovery and implementing security best practices.
• Implemented Group Policy according to the company IT polices.
• Implementing low level delegation of access within Active Directory.
• Assisting application support teams in implementing and troubleshooting Active Directory integration and access issues.
• Implementing Active Directory security audit data points and best practices for security settings.
• Analyzing and resolving problems related to access control, user administration, and operating level system security.
• Implementation and maintains of VMware vSphere 5.0 and 5.1.
• Planning and configuring ESXi clusters, and setting up of HA and DRS for the critical production servers in large virtual environment.
• Managing large multi-domain, multi-forest Active Directory environments with over 45,000 users spread across the globe.
• Troubleshooting Active Directory performance, authentication, and replication issues.
• Troubleshooting and Managing entire wintel infrastructure of the enterprise.
• Creating, modifying, apply Group Policy Objects (GPMC) and managing the same.
• Assisting application support teams in implementing and troubleshooting issue relating to Active directory.
• Building VMware ESXi, physical and VM servers under tight SLA's.
• Trouble shooting of Blackberry issues and management of blackberry servers.
• Datacenter management and virtualization.
• Design, Install and configure Windows 2000, 2003, 2008 and 2012 servers.
• Implemented multiple disjoint Active Directory Forests, Domains, DHCP, DNS and various other Infrastructure services, Trust relationships setup, dcpromo and decommission of AD.
• Migration of 2003 AD, DNS, DHC servers to 2008R2 and 2012.
• Migration of 4.1 Vcenter servers to 5.1 and 5.5.
• Migration and up-gradation of 4.1 ESXi server to 5.1 and 5.5.
• Updates, patching and software installations via group policies (GPO).
• Installing, Configuring and troubleshooting of IIS, Terminal Service, Print and file servers.
• Configuring and troubleshooting of Microsoft clusters (both failover and load balance clusters).
• Planned and implemented the patching process and procedure for hundreds of Windows serves spread across different time zones using Confidential Tivoli End Point manager (Bigfix).
• Inventory management, software distribution, OS deployment using TEM (Bigfix).
• Securing the distributed environments and helps organization to comply with regulatory standards on security using TEM (Bigfix).
• Configured and managed SAN (storage area networks) and DAS (direct-attached storage) volumes using Fiber-Channel, SCSI and Windows Storage server iSCSI connections.
• Built MS SQL server database servers in single server and failover cluster configurations for various enterprise application needs.
• Power shell automation for creation of virtual servers to vhosts.
• Wrote Microsoft Windows PowerShell and VB Scripts to automate Windows server administration tasks.

Confidential, Moline, Illinois

System Engineer

Responsibilities:

• Planning, Designing and Implementation of Wintel / Windows 2000, 2003, 2008 and 2012 servers across the globe of large multinational corporations.
• Troubleshooting and System Administration of VMware products and tools including ESXi 4.0, 4.1.
• Troubleshooting Active Directory performance, authentication, and replication issues.
• Creating, modifying, and apply Group Policy Objects (GPMC).
• Implementing low level delegation of access within Active Directory.
• Assisting application support teams in implementing and troubleshooting Active
• Designing and Implementation of large and complex VMware infrastructure on Enterprise level.
• Installing, Configuring and maintaining of ADDS (Active Directory Domain Service). DNS, DHCP, IIS, Terminal Service, Print and file servers.
• Migration of 2003 AD, DNS, DHC servers to 2008R2 and 2012.
• Build servers for production and test environments following strict build procedures.
• Data center management and Server consolidation.
• Migration and up-gradation of 4.1 ESXi servers to 5.1 and 5.5.
• End to End patching of hundreds of servers spread across different time zone using WSUS.
• Inventory management, software distribution, OS deployment using SCCM.
• Securing the distributed environments and helps organization to comply with regulatory standards on security.
• Managing and monitoring of servers using SCCM and SCOM.
• Setting up and troubleshooting Microsoft failover cluster and NLB cluster for the mission critical application servers. And configuring RAID 5 and Mirrored volume for DCs and other critical servers.
• Decommissioning of Physical and Virtual servers as per the norms.
• Local Admin and ILO password change and management of servers.
• Raising the change and implementing the same within the change window.
• Resolving the Incident raised by the operation team with in the SLA time.
• Administration, Implementation and troubleshooting of VMware ESXi 5.1. 5.0, 4.1 and ESX versions of VMware.
• Planning and configuring ESXi clusters, and setting up of HA and DRS for the critical production servers in large virtual environment.
• Building VMware ESXi, physical and VM servers under tight SLA's.
• Migration of user profile from thin client to Vista.
• Troubleshoot server hardware issues (HP & Confidential servers) and work with service providers to facilitate replacement / repairs.
• Trouble shooting of Blackberry issues and management of blackberry servers.
• Migration of large numbers of Active directory accounts from site to site.
• Pre migration validation and audit fixation in SQL DB.
• Post migration issue fixations in Active directory.
• Automation of routine System Administration tasks using VB Script and Microsoft Windows power shell script.
• Analyzes, logs, tracks and resolves complex software/hardware matters of significance pertaining to networking connectivity issues, printer, servers, and applications to meet business needs.
• Coordinates hardware/software installations and upgrades to ensure work is properly performed in accordance with company policy. Recommends resolution to complex matters of significance and coordinates the the implementation of the approved course of action.
• Deployed Unified Computing System (UCS) Blade chassis with 8 blades each to support the Network Tools Infrastructure and VMware Infrastructure.
• Configuring and maintaining UCS-B, UCS-C, and/or Nexus 1000.
• Installing of various utilities Firmware up-gradation, printer packing and monitoring of servers.
• Providing on call support for the critical issues.
• Train the offshore support team and brought them in to the production support.
• Participating in the meetings with the various business unit heads; gathering there requirements and planning for the delivery accordingly.
• Planning, designing and implementing Windows and VMware infrastructure.
• Troubleshooting and System Administration of VMware products and tools.
• Troubleshooting Active Directory performance, authentication, and replication issues.
• Effective provisioning, installation/configuration, operation, and maintenance of Windows Serves, VMware servers, systems hardware and software and related infrastructure.
• Implementing and Administration of Windows 2008, 2003 and 2000 servers.
• Implementation and up gradation of VMware infrastructure.
• Created, managed, and maintained virtual server infrastructure; utilized VMware to build networking & server lab environment that streamlined server OS / application deployments, increased system uptime, and improved reliability.
• Worked closely with storage and networking teams to ensure SAN and networking infrastructure met virtual infrastructure specifications.
• Responsible for support for all server related issues.
• Participated in complete system builds, upgrades, migrations, code deployments and patch management.
• Data Center Management, Capacity planning and management.
• Administered change management related to server upgrades and software installation.
• Prepared and maintained documentation of technologies, standards and procedures.
• Creation and maintenance of Active directory users, groups, OU and effective access management by using best practices of security permissions
• Maintaining and troubleshooting web servers
• Monitoring server health and resolving issues related to hardware of HP, Confidential, Dell server and the backup tape library
• End to End patching of MS servers.
• Setting up and Administration of Windows 2000 Servers, 2K3 Servers.
• Building and maintaining VMware Virtual Machines.
• Troubleshooting of production issues and resolving the same with in the SLA time frame.
• Creation and maintenance of Active directory users, groups, OU and delegating assess to concern department administrator.
• Configuring and troubleshooting issues related to network printers
• Remote server/system administration.
• Maintaining and troubleshooting web servers.
• Monitoring server health and resolving issues related to hardware of HP, Confidential, Dell server by working with vendors.
• Patch management of servers..
• Generating various reports from AD and sending it to various management teams for auditing purpose.
• Experienced in Regulatory environment, FDA compliance.
• Administration of Windows 2000 and 2003 Servers.
• Configured DNS, DHCP etc.
• Responsible for deploying, managing, and maintaining HP Proliant BL-series C-class blade servers and DL-series servers.
• Configured HP Blade DL460 using the ILO & Onboard Administrator and HP Insight Manager.
• Configuring and maintaining of Routers, Switches, storage mediums, PCs and other components.
• Maintaining full IT infrastructure of various companies as a part of AMC contract.
• Installing various software utilities on servers and workstations.
• Database administration of SQL servers.
• First level trouble shooting of the IT infrastructure devices.