EXPERIENCE

Confidential

• Brought in to develop an independent forest for the Windows phone project.
• All aspects of data gathering design and implementation in addition to deployment for a new forest for the Windows phone development group that enables all the functionality that currently exists in the present environment.
• Dynamically updated geographical site map with logical site link data implemented to display replication routes.
• PowerShell updated pivot table with detailed site/subnet information for IP planning and networking monitoring in relation to geographical location.
• Created a project plan for the new forest infrastructure with supporting features and performed a quantitative cost analysis of the migration vs. current cost.

Confidential

System Administrator

• At SunTrust I worked closely with the AD engineering team to help improve their operational efficiency and security through Group Policy Preferences utilization.
• Specifically we implemented a deeper OU hierarchy to replace the relatively flat structure that currently existed. This allowed a tiered out RBAC setup utilizing a least privileged model.
• In addition I analyzed current startup/logon VB scripts with the goal of improving login time and presenting a more standardized model. The end results are improved startup time and logins for desktops as well as a more efficient maintenance methodology.
• Some of my other work at SunTrust included advanced PowerShell scripting to enable single/bulk AD item restores through the use of the AD Recycle Bin. These scripts enabled SunTrust the ability to quickly and recursively restore entire OU structures or just a single user based on the time it was deleted and the name of the object.

Confidential

Active Directory Engineer

• Designing a fresh and secure Active Directory OU structure to accommodate a Novell migration with many Unix clients keeping RBAC management as an end goal.
• Active Directory integrated DNS/WINS analysis and migration, moving away from static entries to AD integrated secure dynamic updates without impacting in house applications.
• Bulk object management 20,000 objects and directory scripting for task automation and security purposes.
• IDM password sync using netIQ, setting up and maintaining connectors and replication direction.

Confidential

System Administrator

• Daily operational 2008 R2/2003 server work, deployments, troubleshooting and monitoring in a 95 virtualized environment running vsphere 4.0
• Active Directory site design and security implementations as well as bulk object management.
• Weekly change review and enforcement of procedures and policies
• Powershell scripting to perform automated monitoring and email alerts for critical infrastructure components.
• Symantec antivirus operation work in a complex multi forest implementation.
• Solution research and deployment engineering, some of my projects included SSO/Xmedius/OnBase/SCCM 2007
• 2003 to 2008 R2 Active Directory migration with a focus on improving server security.

Confidential

Global Security Officer

• Heavy Active Directory scripting. Creating/modifying/auditing of the directory on a global scale across many forests with complex trusts.
• Global security change review and global enforcement of procedures and policies as well as their generation including SOX work for government contracts.
• Created security log dump scripts to perform IDS functions on Windows 2003 and 2008 servers that my team specifically used to monitor/audit Active Directory.
• Performed Symantec workstation auditing and monitoring, verified workstations/laptops were patched and dealt with infected clients swiftly.
• Qualitative analysis of new software solutions for current or future problems. Assisted in the selection of which security software would be implemented and gave insight to its effectiveness in the enterprise as well as its sustainability.
• Supported 14 forests globally for General Motors with complex forest/domain trusts in the largest AD implementation in the world. Troubleshooting of existing forests as well as migrating acquired forests into current structure. These migrations included user/group/ou/group policy and its associated security hierarchy.

Confidential

Windows Systems Administrator

• DNS/Active Directory monitoring problem discovery through Sitescope and incident investigation. Site scope would help us track down replication issues and any problems with the DNS servers.
• Bulk account creation/modification in Active Directory including many custom tailored scripts, as an example we needed 300 users created identically in 4 different forests without trusts. Normally this would be a weekend of work for the ops team instead it took only 3 hours which included creation and testing of the script.
• Performed Windows 2003 Server monitoring with Sitescope, OS troubleshooting and hardware replacement was a regular occurrence.
• All ticket work was handled through Clarity for contractual obligations to HP.
• Monitored server operating systems for intrusions/viruses and gathered teams together to help deal with any wide spread issues.

Confidential

Associate Systems Administrator

• Active Directory secure account creation/modification, in this specific environment a high level account was used by a large group of level 3 administrators. These credentials needed to be reset when one of these individuals left the company across all forests and domains where it was used. Before I arrived this was manual, I helped automate the process among others.
• Performed Windows 2000/2003 server monitoring using Sitescope and BMC patrol to monitor 4500 servers for everything from MS SQL Server databases to IIS services and DNS. Such business critical services had very high SLA's and our team had only one level 1 outage which was due to a malfunctioning PDU.
• Hardware troubleshooting/diagnosis and replacement on many different IBM blade machines and older legacy devices.
• Client event notification for high level outages with follow up confirmations on their resolutions.

Confidential

Service Technician

• Helped make Michigan number one in deployment and stability two years running.
• Laying cat-5 networks and switch deployments on site as well and network configurations and troubleshooting.
• Client/Server deployment in mixed Windows 98/NT/2000 client Windows NT/2000 server environments.
• Site deployment included setting up all hardware/software from the ground up then batch pulling all tax information to the clients.
• Personal training on security best practices as well as technical troubleshooting procedures.

Confidential

Jr. Network Administrator

• SMS client deployment in a 400 seat network stretched across many slow link sites in southeastern MI.
• HIPPA compliance in an outpatient/inpatient mental health environment.
• WSUS engineering and deployment to a 400 client network for Microsoft patches. This implementation saved the company bandwidth costs as well as allowing phased patch deployments increasing client reliability.
• Cisco powered switch troubleshooting for our VOIP network and new interface configurations for site deployments.
• Exchange 5.5 maintenance and troubleshooting.
• Daily account creation/modification as well as user auditing in active directory.
• Symantec client monitoring, verified legacy clients were patching and manually patched remote sites. Viruses were dealt with quickly and efficiently.
• Migration from Windows NT to 2000, including user profiles/data, helped migrate 400 users from a mixed environment with roaming profiles to a 2000 native environment.
• Extensive help desk technician training and acting team lead. Best practice implementations as well as rigorous security coaching helped maintain a consistent environment.