SUMMARY:

• An IT professional with over 15 years of notable success managing broad range of IT initiatives in matrix/functional organization. Highly skilled in analyzing, planning, deploying, and maintaining technology solutions to achieve business objectives using PM methodologies in Biotechnology, Healthcare, Financial, and Technology Companies while adhering to regulatory compliances (HIPAA and SOX) and industry standard (PCI DSS) best practices.
• Proven success at formulating strategies and motivate team members to provide comprehensive and robust design by harnessing cutting - edge technology solutions to improve operational effectiveness. Possess hands-on technical expertise leading all aspects of systems development life cycle. Outstanding project and program leader; able to coordinate and manage all phases of project-based efforts.
• Manage large scale infrastructure projects involving various technology groups in a centralized and de-centralized environment using company specific PM methodologies.
• Identify appropriate resources in and outside of the organization in order to mitigate technology gaps/requirements and develop effective technology solutions within stated budget.
• Effectively Prioritize projects aligned with business objectives and successfully influence and engage key stakeholders for necessary adjustments.
• Provide technical information security leadership and serve as a subject matter expert on information security and compliance (HIPAA, PCI DSS, SOX).
• Excellent hands on experience in designing and deploying Microsoft Back Office product family; Active Directory, MS Exchange, MS SQL, Microsoft Dynamics and IIS.
• Extensive knowledge in designing overall security (network and application) infrastructure to protect company assets as well as regulatory compliance and industry standards.
• Proven track-record in designing and deploying security auditing infrastructure; platform to monitor enterprise security and implement appropriate IDS/IPS systems; forensic analysis, facilitate internal/external audit, as well as adhere to regulatory compliance requirements. Conduct quarterly audit in preparation for year-end compliance validation.
• Successfully managed projects relating to Spam filtering, Mail Journaling, Virus protection, Data Loss Prevention, Encryption technologies, monitoring, forensic analysis, and auditing.
• In depth knowledge of a broad range of IT support issues, including firewalls, user authentication, access controls, VPN, audit process, cryptography, Internet protocols, physical and logical security, and security management.
• Experienced in leading Server Engineering team for Infrastructure delivery as well as Enterprise Operations team for Production Support.

TECHNICAL SKILLS:

Platform: Windows OS 2012 - NT 4.0 SCO UNIX, Linux Red Hat Novell Netware, MAC Citrix / VMWare

Application: MS Project (Expert) Excel/Visio (Expert) Powerpoint (Expert) HP Open View Visio Network Discover Quest ActiveRolles Server Quest Intrust NetIQ Network Discovery

Scripting Language: PowerShell Shell Scripting Batch Windows Reskit VBScript WMI

PROFESSIONAL EXPERIENCE:

Confidential, New York, NY

Lead Systems Engineer

Responsibilities:

• Project Management methodologies (Six Sigma, ITIL, SDLC).
• Thorough knowledge of various solutions for IDS/IPS, SIEM, threat prevention, Firewall policy, NAT, forensics, WAF, XSS, SQLI.
• Active Directory migration/consolidation, design and deployment.
• MS Exchange design, migration/deployment.
• Design, implement and support enterprise security infrastructure for Regulatory Compliance (SOX, PCI DSS, HIPAA).)
• Design and deploy Quest Activeroles server for AD administration, Quest InTrust for AD monitoring, and Quest Recovery Manager for AD for Disaster Recovery.
• Mastery of Windows Operating Systems (2012-NT) and related infrastructure services (DNS, WINS, DHCP).
• Working knowledge of designing and deploying Self-service Password Manager.
• In depth knowledge of Anti-Spam/Virus Scanning/Archiving/Retention/Journaling.
• Server Virtualization with VMWare ESXi.
• Extensive experience in preparing Infrastructure documentation (Enterprise Architecture, Server Deployment, Disaster Recovery, Backup architecture, Operational Support, and Documents).
• Working knowledge of designing, implementing and supporting Network infrastructure including LAN, WAN, DMZ and Firewall.
• Managed deployment of custom applications as well as off-the-shelf software packages using SDLC methodology for PCI DSS infrastructure. Coordinate with external scanning vendors and appropriate internal (Network and Security) groups to achieve audit and compliance requirements.
• Manage Upgrade/deployment of Checkpoint Firewall GAiA R75 in the enterprise.
• Manage and maintain enterprise firewall rules and enforce strict change management procedure.
• Work closely with the applications development team to ensure application security parameters are in place at the early stages of the development life cycle.
• Analyze existing technology environment and propose remediation efforts or design improvement to mitigate security vulnerabilities.
• Perform vulnerability scan on mission critical nodes; analyze scan results and identify false positives and true security gaps; coordinate with appropriate groups for remediation.
• Perform periodic security gap analysis and implement security best practices across wide range of technology services in order to ensure business continuity and compliance (PCI DSS, SOX).
• Contributed in the development of various policy and procedure documents (Server and Workstation, Web security, Email archiving and retention, Disaster Recovery, Anti-virus, Password policy, Two factor Authentication, VPN, Patch Management and change management).
• Work closely with the executive management to understand business needs and formulate strategy to manage all aspects of IT for head office and all of its subsidiaries.
• Responsible for all IT operations including infrastructure design, technical & solutions architecture, Website development project, Application development project, maintenance of software and hardware across all subsidiaries.
• Screen prospective engineers/vendors for various fast paced IT projects and oversaw the completion of projects on a timely manner.
• Design and implement enterprise-wide POS solution for all retail stores and Property Management System for all resorts, Hotels and integrate with customer face e-commerce platform.
• Manage and coordinate with in-house programmers and consultants to develop customized, integrated reporting for all retail sales and inventory.
• Implement Microsoft Dynamics financial system across subsidiaries & centralize access in citrix.
• Implement SQL Server Reporting services (SSRS 2008), create ad-hoc reports and migrate crystal reports to SSRS 2008.
• Constructed and centralized data centers in LA, Miami, NY, Boston, Nassau, Montego Bay (Jamaica), London and Toronto.
• Built-out co-location center and implemented disaster recovery.
• Managed Cisco routers and switches, including performing installations, upgrades & configurations.
• Consolidated networks to improve corporate efficiency while cutting costs.
• Deploy and maintain enterprise Exchange server.
• Implement server, storage, desktop and application virtualization (VDI) in Citrix & VMware vSphere.
• Lead high impact technology projects using Six Sigma methodologies.
• Coordinated with cross functional team members from multi-time zones and effectively identify/engaged appropriate stakeholders in order to achieve business objectives by meeting deliverables on a timely manner with stated budget.
• Managed deployment of Single-Sign-on solution in the enterprise.
• Prepared departmental budget for IT service management; which included procurement of new hardware/software, upgrades, software licensing, and SME consulting.
• Maintain strong relationship with vendors in order to maximize ROI and avoid future conflicts.
• Managed RFPs for software and hardware procurement. Identified appropriate vendors to fulfill specific company needs while keeping a close eye on stringent budgetary constraints and company bottom line.
• Coordinated with PMO office for maintaining project information base, organizing and preparing Project Charter, Project Organization Chart, and schedule and maintain meeting minutes, Project Schedule, developed Risk Management Plan, Communication Plan, and Plan.
• Budgeted and acquired necessary hardware and software licenses for enterprise projects.
• Design and deployed Active Directory and related infrastructure services in the enterprise.
• Design and deployed Intrust for Active Directory.
• Maintain strong relationship with vendors while achieving highest ROI and avoid future conflict.
• Prepared short and long term technology roadmap, secure necessary approval and funding from upper management and communicate/educate/prepare team members of upcoming technology in the organization.
• Motivate team members for career growth, encourage in-house and external for new and upcoming technology; and resolved conflicts by clearly defining scope of responsibility among team members and employed performance based reviews.
• Restructured and consolidated related infrastructure services, i.e., DNS, WINS and DHCP to align with the centralized Administrative model.
• Installed and maintained a testing environment using VMWare. The environment facilitated a DEV and a QA environment for enterprise application migration testing.
• Managed and coordinated RFP process for the AD project.
• Develop and rolled out enterprise Citrix standard for the enterprise.
• Tested migration and management software (NetIQ & Quest). Identified necessary and appropriate application tools for migration and Active Directory Administration.
• Budgeted and acquired necessary hardware and software licenses for enterprise projects.
• Maintained strong relationship with application vendors for on-time service delivery.
• Coordinated with regional IT managers and made necessary infrastructure decisions for the restructuring effort.
• Responsible for developing standard server build for the environment.
• Supervise a group of 4 engineers in the Corporate Network Operations Center to accomplish various operational activities. Assign tasks based on individual skills; review s and provide guidance for future growth. Perform quarterly review of team members and assist them identifying short and long term objectives.
• Plan migration procedure for NT Domain to Active Directory architecture. The project included but not limited to plan Domain implementation procedure, DNS zone file migration from NT architecture to Win2k, user and group migration from existing multi-master domain model to a single-master domain model, Group Policy implementation, OU structure and Site implementation.
• Install and configured all NT and Win2k DNS, DHCP, WINS and DCs.
• Evaluated, proposed and deployed Remote Insight Board (Management board for Compaq servers) on all servers globally.
• Created Custom Win2k Server Build for the enterprise using Compaq’s Scripting tool kit.
• Created several packages using MS Installer for enterprise deployment.
• Designed Exchange 5.5 Infrastructure for the environment including OWA. Documented disaster recovery procedure using Legato Backup.
• Designed Antivirus topology for the enterprise using Antigen and InaculateIT.
• Installed and configured new Solaris (DNS and Sendmail) servers using jumpstart. Troubleshoot any aliases and distribution list issues relating to Exchange/Sendmail.
• Resolve spam related issues, i.e. identify spamers and block/communicate to legal department for necessary actions.
• Provided third level support for DNS, WINS and DHCP database corruption or replication issues.
• Installed, customized, and managed Citrix MetaFrame for the enterprise and documented the procedure.
• Several shell and perl scripts to automate various repetitive tasks.
• Install, configure and maintained enterprise firewalls (Checkpoint 4.0).
• Created Secure Build for Windows NT 4.0 and automated the procedure.
• Plan, propose and rolled out Trend Micro (Exchange Virus Scanning software) globally.
• Re-designed Proxy architecture using MS Proxy 2.0.
• Deploy, Upgrade and maintained Open Bloomberg (Financial Data Application) Worldwide.
• Install, Configure, and maintained FTP infrastructure and maintained relationship with vendors - market data providers.
• Re-designed Caching Architecture using Cacheflow 3000 and MS Proxy 2.0.
• Add, remove and made necessary changes in the routing table for all internal and external routers and firewalls.
• Designed reverse/ transparent-proxy for ibanking using cacheflow 3000 and MS Proxy 2.0.
• Install, configure and maintained NT RAS servers and DIGI Board globally.
• Install, configure and maintained ACE server for Secure ID.
• Standardized Exchange 5.5 & IIS 4.0 Installation process and documented the procedure.
• Test, Plan, propose and implemented dedicated Public & Private folder servers.
• Created unattended install for IIS 4.0 for Proxy and MS Exchange.
• Established Backup and Disaster Recovery procedure for Exchange and SQL 7.0 using Backup Exec.
• Managed, proposed and maintained various projects using MS Project.
• Evaluated and deployed web-monitoring application, Cyfin.
• Implemented NetIQ on Exchange Servers and deployed all the Knowledge Scripts.
• Wrote several shell Scripts for the environment in order to automate operational tasks.
• Deployed SMS 2.0 in the Enterprise.
• Managed a team of four engineers in four locations and reported directly to CIO.
• Designed and Implemented NT Domain in an Enterprise.
• Designed Single Master Domain for the enterprise and configured all infrastructure services (DNS, DHCP and WINS) accordingly.
• Installed, Configured and occasionally managed Exchange 5.0, IIS 4.0, SMS 1.2 and SQL 6.5 servers in the enterprise.
• Installed and configured CISCO 2500 and 3640 Routers in order to connect four sites.
• Installed, Configured and managed PIX Firewall for the Enterprise Security.
• Implemented MCI Frame Relay for Corporate WAN connectivity and Dedicated T1 for Corporate Internet.
• Integrated and Migrated Novell 3.12 Servers to NT 4.0 Infrastructure.
• Installed and configured HP Dat Tape Backup for NT and Novell.
• Installed, Configured, Customized and Maintain Cheyenne Arc serve v6.00 for Netware, v6.5 for NT 4.00 and Backup Professional for SCO UNIX.