SUMMARY:

• Senior Systems Engineer with extensive experience designing, securing, implementing, and operating large infrastructures and systems. Committed to driving change, streamlining processes, implementing cost reduction strategies and providing recommendations for innovation and improvements.
• Proven track record of embracing technical challenges, resolving complex problems, learning new technologies and filling skill gaps to ensure operational stability and continuity. Broad technical and business acumen backed by extensive education, professional certifications and personal commitment to continuous professional development.

AREAS OF EXPERTISE:

• IT Administration & Operations
• IT Architecture & Engineering
• Incident / Change / Project Management
• Network & Systems Administration
• Team Collaboration / Training / Leadership
• Automation & Scripting
• IT Security Operations & Administration
• IT Compliance & Governance
• IT Policy & Strategy
• Process Improvement & Procedure Development
• Business Continuity & Disaster Recovery
• Capacity Planning

TECHNICAL SKILLS:

Systems: MS Windows Server 2003, 2008, 2012, 2016, Linux, MS System Center Configuration Manager (SCCM) 2007, 2012, MS System Center Operations Manager (SCOM), System Center Virtual Machine Manager (SCVMM), MS Exchange Server 2010, 2013, MS Windows XP, 7, 8, 10, Citrix XenApp, XenDesktop, NetScaler (SDX/VPX), XenServer, VMware ESXi, vSphere, vCenter, MS Hyper - V, HP Insight Manager, Dell OpenManage, CA Service Desk Manager, ARCServe Backup Solution, Symantec Endpoint Protection Manager (SEPM), Symantec Altiris IT Management Suite, BMC Service Desk, BlueCat IPAM, Lightspeed Systems Web Filter, Symantec Web Gateway, McAfee Web Gateway, ePO, Forcepoint Websense Web Security Gateway Anywhere, WhatsUp Gold, MS SharePoint, Hitachi ID Privileged Access Manager (HIPAM), SailPoint IdentityIQ, Skybox Security, Varonis DatAdvantage, Good BlackBerry Mobile Device Management (MDM), Absolute Computrace, Binary Tree, TIBCO LogLogic

Services: Active Directory (AD DS), DNS, DNSSEC, DHCP, TCP/IP, IPsec, DFS, IIS, WMI, WinRM, Group Policy (GPOs/GPPs), WDS, Lightweight Directory Access Protocol (LDAP), Public Key Infrastructure (PKI), SNMP, NAP/NAC, DLP, Windows Server Update Services (WSUS), Windows Server Backup, Office 365, Amazon Web Services (AWS), Single sign-on (SSO), Active Directory Federation Services (ADFS), SSL/TLS, VPN, SMTP, SFTP, HTTP, SSH, NFS/CIFS, DirSync/Azure AD Connect

Languages: DOS Batch, KiXtart, VBScript, PowerShell Scripting, PHP, HTML, CSS, XML, JavaScript, Python

RDBMS: MS SQL Server 2005, 2008, 2012, 2014, 2016, MS Windows Failover Clustering, MS Access, MySQL

Software: Microsoft Word, Excel, Outlook, PowerPoint, Visio, Wireshark, Microsoft Network Monitor, TCDump, Citrix Director, Studio

PROFESSIONAL EXPERIENCE:

Confidential, Livingston, New Jersey

Support IT

Responsibilities:

• Strategic partner in the consolidation and merger of three independent Active Directory forests into a single forest with the objective of migrating all user accounts, security groups, mailboxes, servers and applications.
• Provide technical direction as a subject matter expert (SME) on best practices for architecture, engineering and automation approaches to streamline the user provisioning, de - provisioning, access reviews and control processes.

Confidential, Trenton, New Jersey

Network Administrator / Information Technology Specialist

Responsibilities:

• Credited with troubleshooting, performing root cause analysis and resolving over 20 mission critical incidents affecting the Governor’s Office, Motor Vehicle Commission and other state agencies. Effectively communicated and coordinated resources across enterprise functional teams to resolve incidents as soon as possible or on a priority basis. Received the organization’s prestigious award for “Partnership and Customer Service Excellence”.
• Coordinated and established 28 Active Directory (AD) forest level trusts in coordination with various enterprise teams and state agencies in support of the organization’s mission to consolidate resources and migrate to Microsoft Office 365 (O365). Created and maintained all external and internal DNS records related to the O365 migration and cutovers for all mail enabled domains.
• Designed, architected, engineered, documented, supported, upgraded and implemented Microsoft Active Directory, DNS, DHCP, BlueCat DNS/DHCP/IPAM, Forcepoint Websense Web Security Gateway, McAfee Web Gateway, Symantec Altiris IT Management Suite, Citrix NetScaler/XenApp/XenDesktop and Microsoft Certificate Services (PKI) as highly available and fault tolerant solutions.
• Upgraded the state’s enterprise Active Directory forest and child domains to Windows Server 2012 R2 and improved server build procedures and baselining standards for all servers to improve performance, stability and availability.
• Implemented dedicated internal BlueCat DNS resolvers and coordinated with state agencies the modification of DNS forwarders to point to the new infrastructure to provide cross agency DNS resolution, DNSSEC validation, improved performance and enhanced security with the capability to blacklist malicious domains.
• Designed and implemented the organization’s XenApp/XenDesktop 7, StoreFront 2.0 and NetScaler 10 SDX/VPX environment as a highly available solution while supporting the legacy Citrix XenApp 5/6 farms and Web Interfaces.
• Drove the migration of all internet traffic from state agencies to the centralized Websense ForcePoint Web Security Gateway environment using WCCP in support of the organization’s initiative to provide web content filtering / proxy as a service for substantial cost reduction and improving uptime to 99.9%.
• Configured the McAfee Web Gateway as a reverse proxy to protect server workloads and applications hosted within the IIS/.NET, WebSphere and Apache environments from malicious file types and uploads to back end systems.
• Recommended changes in IT policy related to website domain naming standards as a major cost reduction initiative resulting in a cost reduction from $125 per domain to $0 with an estimated net savings of several $1000’s per year.
• Evaluated and reviewed statements of work (SOWs) related to critical infrastructure services for accuracy, scope, deliverables and time frames to ensure alignment with business and technical requirements.
• Migrated three state agencies to the Symantec Altiris IT Management platform and devised standards to secure endpoint devices by creating a Windows 7 baseline image in conjunction with IT Security for deployment to all state agencies. Implemented software metering policies to reduce software licensing costs and improve compliance.
• Supported the migration of all end-of-life (EOF) servers from Windows Server 2003 to supported Windows Operating Systems in coordination with developers, vendors, application owners and other stakeholders. Leveraged virtualization to migrate (P2V) legacy physical servers to the VMware infrastructure as virtual machines (VMs).
• Implemented the use of segmented access and dedicated administrative accounts for all IT administrators drastically reducing the number of privileged users with domain admin privileges without affecting daily operations.

Confidential, Newark, New Jersey

Network Administrator / Systems Analyst

Responsibilities:

• Architected, engineered, supported and migrated from Symantec Altiris 6.9 to SCCM 2007 followed by SCCM 2012 to include the deployment of the ConfigMgr agent to all endpoints and the configuration of over 75 secondary sites serving as distribution points at each remote location to support local package, image and patch deployments.
• Migrated 80+ Active Directory Domain Controllers (DCs) from Windows Server 2003/2003 R2 to Windows Server 2008 R2 including essentials services, user file shares, data, NTFS permissions and server side applications.
• Packaged, scripted, coordinated and performed large scale application deployments, including the rollout of Microsoft Office 2007, 2010 and Mozilla Firefox to workstations and laptops.
• Revamped the organization’s Operating System Deployment (OSD) strategy by creating two standard baseline Windows XP and Windows 7 OS images supported on over 30 different endpoint device models, drastically improving the speed and ability to deploy new desktops, laptops and tablets from a few weeks to a matter of hours.
• Devised a strategy to pilot and begin rolling out Microsoft Windows 7 to all new and existing laptops, desktops and tablets within the environment in a controlled fashion in coordination with various stakeholders.
• Implemented SCCM MDT leveraging zero touch and lite touch methodologies using custom HTAs to automate and simplify OS deployments significantly reducing the requirement for field techs to visit 75 different physical locations.
• Upgraded and deployed Symantec Endpoint Protection to all endpoints and established policies to restrict malicious file types from running from removal storage devices. This effort in combination with the creation of strong GPO policies significantly reduced virus and malware infections and the number of devices requiring re-imaging.
• Supported the integration and consolidation of systems and resources during the merger of the organization’s two IT related business units to streamline operations, reduce operating costs and improve customer satisfaction.
• Migrated the organization’s internet traffic from Symantec Web Gateway to Lightspeed Systems Web filter in support of the organization’s initiative to reduce costs and provide enhanced internet content filtering / proxy services.
• Co-managed, planned and executed the migration of 38,000 user accounts to Microsoft Active Directory by creating automation scripts for the creation and ongoing maintenance of user accounts, leveraging data input from existing systems and established use cases and workflows.
• Performed business and technical requirements gathering, researched and evaluated possible solutions and conducted proof of concepts (POCs) with 3rd party/external vendors to evaluate product offerings and technical capabilities.