SUMMARY:

• Expert systems and software architect with more than 15 years experience designing, implementing and supporting network infrastructure, Linux / Microsoft systems, software applications and operational security with an emphasis on cloud, automation, and IoT.
• Provide exceptional remote consulting services and solutions to cloud based organizations. AWS subject matter and automation expert.

TECHNICAL SKILLS:

Environments: Windows (3.1 - current), Linux (Debian & RHEL), Unix, Mac OS, Novell, Embedded Linux, Private / Public Cloud.

Amazon Web Services: Extensive experience in both application development and infrastructure automation capacities, including building out VPCs with remote access and/or site to site VPNs and direct connects. Infrastructure / application deployment, automation and IAM security expertise. SDK experience in Ruby, Python, Java, JavaScript / NodeJS and C. Development against most common services, including CloudFormation, IAM, KMS, S3, Glacier, SQS, SNS, RDS, DynamoDB, EC2, Route 53, IoT.

Microsoft: Active Directory, MSSQL, Microsoft Operations Manager (MOM), System Center Operations Manager (SCOM), All Windows Server services (RADIUS, DNS, etc), Exchange Server 5.5+, Windows Software Update Services (WSUS), Systems Management Server (SMS), Blackberry Enterprise Server, Vertitas Backup Exec, and lots more

Linux: BIND, FreeRADIUS, Postfix, Courier, OpenLDAP, OpenVPN, SoftEther, VSFTPD, ProFTPD, PureFTPD, IPTables, Tripwire, MySQL, SQLite, Postgresql, Apache, NGINX, Jboss 4+, Glassfish 2+, Tomcat 5+, Jetty 7+, ActiveMQ, RabbitMQ, AMQP, NoSQL, Hadoop, Chef, Puppet, Continuous Integration / Deployments, Docker, Containers.

Development: HTML, XHTML, CSS 1+, JavaScript, ASP, ASP.NET VBScript, VB 6.0, VB.NET, C#, .NET 2+, ADSI, WMI, WQL, C, C++, Objective C, Java SE & EE, EJBs, SQL, T-SQL, Stored Procedures, Triggers, Lasso (6, 7, & 8), PHP 3+, Python 2+, Ruby 1.9+, XML, JSON, SOAP, AJAX, REST, Remoting, Websocket, Design Patterns, Frameworks, Cloud APIs, Bitcoin & Crypto Currencies, Payment / Merchant Gateways, Amazon APIs. Virtualization Amazon Web Services, Vmware, Kernel Virtual Machine (KVM), Microsoft Hyper-V, Public VPC and Cloud Technologies

Networking: Routers (Cisco, Vyatta, SOHO), Switches (L2 & L3), Firewalls, Load balancers, IDS, WLAN, VLAN, CAN, VPN, VOIP, CDN (Akamai, EdgeCast), Proxy Servers, Content filtering

Security: Physical & digital, Disaster Recovery, Documentation, Compliances (Sarbanes-Oxley, PCI, HIPPA, MPAA), PKI, hashing, reversible encryption, SSL, PGP, and lots more.

Hardware: HP, Dell, SuperMicro, Desktops, Servers, Network Appliances, Embedded Linux, ARM, ATMEL AVR

Best Practices: Object Oriented Programming, Aspect Oriented Programming, Design Patterns & Frameworks, Full SDLC, UML, Documentation, Agile, TDD, DRY

Interpersonal: Interpersonal Leadership, Communication, Project Management, Information Technology Infrastructure Library (ITIL)

Technical Writing: SOP, RFP, PO, vendor contracts, technical documentation, project requirements

PROFESSIONAL EXPERIENCE:

Confidential

Software Engineer

Responsibilities:

• Create web based firmware upgrade system for autonomous warehouse robots (Python)
• Create Chef based provisioning system to test and deploy web application

Confidential

DevOps Consultant

Responsibilities:

• Lead 3 person team to successful migration of an enterprise backup SaaS from OpenStack to AWS.
• Automate the deployment of infrastructure and application components using CloudFormation and a custom Ruby toolkit based on my open source StackIT project.
• Mentor software engineering team on AWS best practices and advise when/where to substitute managed services for legacy / on-prem designs. Promote DevOps culture (collaboration and automation).
• Work with compliance team to ensure corporate and HIPPA security requirements are met.

Confidential

DevOps Consultant

Responsibilities:

• EC2 classic to VPC migration; Design and execute VPC and migration strategy for several tightly coupled legacy applications.
• Automate the deployments of infrastructure and applications using CloudFormation, Chef and a custom Ruby toolkit based on my open source StackIT project.

Confidential

Lead DevOps Engineer

Responsibilities:

• Lead 5 person team through design, implementation, support, and automation of AWS cloud infrastructure and automated application deployments.
• Design and implement cloudformation templates for VPCs, networking, security and application stacks.
• Design and implement chef infrastructure to manage 1000+ servers across multiple VPCs and AWS accounts.
• Create Ruby toolkit to streamline AWS, chef and application stack workflows to maximize code reuse and automation capabilities.
• Design Amazon Directory Services solution to centralize sudo, ssh, and authentication to EC2 instances.
• Design network infrastructure within and across VPCs using peering connections, VPN, and ClassicLink.
• Large migration from EC2 classic to VPC.
• Responsible for all aspects of AWS operations and automated infrastructure / application deployments.

Confidential

Principal DevOps Engineer

Responsibilities:

• Design, implement, and maintain a new online education platform built within Amazon AWS.
• Create nodeless puppet infrastructure to manage 1000+ servers across 9 VPCs and two AWS accounts.
• Create custom infrastructure automation solutions using Ruby, Amazon SDKs, and 3rd party cloud APIs. Participate in peer code reviews.
• Install Jenkins and configure jobs to build, test and deploy in-house applications and support tools.
• Create and maintain all aspects of Amazon VPCs including EC2 instances, multiple subnets and routing tables, security groups, and auto-scaling groups, ELB and SSL termination, peering connections, etc.

VP of Technology

Responsibilities:

• Lead team of 8 software engineers and an Agile scrum master.
• Design, develop, support and scale Amazon Web Services infrastructure and applications - EC2, VPC, S3, Glacier, RDS, SNS, SQS, IAM, CloudFront, CloudWatch, RightScale, Chef). Programming languages - Java, ColdFusion, PHP, JavaScript, HTML, IOS. Databases - MySQL & MongoDB. SSO federations.
• Vyatta, Amazon VPN (BGP), Layer 2 & 3 switching, firewalls, IDS. Reduced monthly hosting cost by 25%.
• Contract negotiation & purchase orders. Vendor relationship management.
• Implement MPAA security compliance, liaison between technical and business units.

Confidential

Solutions architect

Responsibilities:

• Created:
• "jHosting" - open source enterprise web hosting and SaaS solution provider framework (ported to Java EE from PHP 5).
• “Hosted Infrastructure” platform targets small to medium sized companies with high security and high availability requirements with their corporate infrastructure. (laywers, doctors, and financial institutions). Sits on ESX “cloud”; flexible/highly available resource allocation and configuration.
• “AgilePHP” - rapid application development framework for PHP which consists of a Model-View-Control component based framework, libraries, and GUI integration w/ Eclipse & Netbeans IDEs.
• Designed and implemented:
• HA WAN network infrastructure (w/ VPN) using Cisco and Vyatta routers.
• HA disk subsystem using DRBD to create an active/passive cluster.
• LAN load balancing solution using open source Linux Virtual Servers (LVS).
• Linux and Windows hosting platforms. (shared and dedicated)
• ITIL founded processes and procedures to mitigate disasters, manage incidents/problems, and create/apply preventative maintenance policies to keep the issue from happening again.
• Developed several API wrappers to integrate with 3rd party remote API services using PHP 5:
• Enom - Domain registrar and SSL certificate reseller integration.
• Comodo - SSL certificate reseller integration.
• QuickBooks Merchant Services (QBMS) - Ecommerce gateway.
• QuickBooks Online Edition (QBOE) - Full QuickBooks online integration.
• Led various courses: PHP5, Java SE & EE training courses.

Confidential

Product Engineer

Responsibilities:

• Used AgilePHP to create a web control panel for new Content Distribution Network (CDN) offering. Featured content management, REST web service API, auditing, and reporting.
• Created a Python migration tool for system administrators to run, that would migrate DNS zones and records from a legacy system to a new DNS system.
• Worked within a virtual ESX server environment to perform development activities. Assisted with ESX server networking (cisco routing, virtual switch vlan tagging, etc) and virtual machine provisioning.

Confidential

Corporate Infrastructure Systems Administrator

Responsibilities:

• Capacity planning, report generation and presentation for management.
• Designed "global Active Directory", a backend for all corporate assets, which integrated all global offices across several countries and continents. Led the migration of several offices from existing infrastructure to new domain.
• Conducted regular security audits of the network, systems, and application architecture, as well as perform reviews of current policies.
• Mentored other administrators in administration and scripting.
• Analyzed/audited security and vulnerabilities, and/or identified areas out of alignment with VISA CISP compliance. Developed and implemented solutions to maintain VISA CISP compliance integrity.
• Worked closely with Information Security team to secure desktops, servers, and network devices. Conducted quarterly reviews of security policies and participated in on-going efforts to identify new potential vulnerabilities which may have recently cropped up or gone unidentified in earlier audits.
• Global support for corporate desktops and Xerox printers (~1600 desktops & ~150 printers).
• Maintained Active Directory infrastructure across many geographically dispersed locations with ~1500 users, 200 servers and 1600 desktops/laptops.
• Integrated MAC, Linux, and Windows systems into corporate AD infrastructure.
• Created policies, procedures, SOP’s, project planning, proposal write-ups, technical documentation, post mortems, and reports for both staff and management.
• Maintained corporate software applications such as ADP Payroll software, rightfax, Talisma CRM, proprietary CMS application used to manage client relations, customer accounts, provision services, manage support incidents, etc..
• Developed intranet apps, system/task automation scripts and administrative tools in both desktop and web environments.
• Represented Information Technology team during architecture/engineering projects which involve interfacing with other business units within the organization.
• Prepared major file server upgrade / migration from MS based file server to linux based OpenFiler NAS/SAN solution. Created project plan for management which outlined project pre-work, milestones, and completion date.
• Assisted in physical migration of over 5000 servers between data centers
• Developed Web-based application to integrate ADP payroll eHR service w/active directory management to centralize/simplify process; utilized javascript, PHP, Java (JSON RPC based).
• Implemented network policy and AUP’s for end users.
• Developed software and/or scripts to automate IT, provide IT with tools, automate complex software configurations upon fresh software installs from SMS, custom MOM monitor and response scripts, etc.
• Designed and implemented network load balanced corporate application server cluster, Citrix Metaframe 3.0 cluster, Exchange HA cluster, SMS platform, MOM platform, IIS web server cluster w/ Linux LVS front-end, Ironport anti-spam cluster.
• Lead VBScript grass roots training meetings once a week.

Confidential

Software Developer / Tech Support Manager

Responsibilities:

• Developed Quickweb Pro solution (CRM and CMS w/ integrated marketing).
• Document classes / objects using UML and depict logical operation of components using flowcharts.
• Created project plans to deliver on commitments to forecasted milestones, mentor technical support staff, invent new strategies to empower the team and improve productivity, efficiency, and operation of the department.
• Supported the Lasso programming language and community.

Aletek Solutions

Network Administrator / Developer

Responsibilities:

• Dispatched to field calls of customers which ranged from small 5 person organizations to enterprise level companies upwards of 5,000 - 10,000 users.
• Deployed, configured, and supported HP, Dell, Supermicro, and other various vendors including “home-grown” desktops and servers.
• Supported: small to medium sized business Active Directory corporate infrastructures, including SQL, Exchange, IIS, DNS, DFS, and more. customer network infrastructure gear such as Cisco, Cayman, D-Link, Linksys, and more.
• Aletek shared hosting environment consisting of .NET and LAMP platforms.
• Large Xerox style printers which utilize Novell IPX print servers.
• Performed migrations, upgrades, and consulting within Microsoft (NT, 2000 Pro/Server, 2003, XP) and Linux (Debian, Red Hat) environments.
• Architected, engineered, developed and deployed new solutions.
• Developed a web hosting control panel software in PHP which included automation and configuration ability in a graphical environment for linux services such as Apache, MySQL, BIND DNS server, VSFTPD, and XMail. Application provided advanced solutions to complex network issues such as port 25 mail server deflections and dynamic DNS. Dynamic DNS clients developed in VB6 for windows users and Java for linux and MAC users.

Confidential

Platform Architect

Responsibilities:

• Technical leadership and decision making. Led 6 person team through development and ops focused responsibilities.
• PHP subject matter expert; Responsible for suite of PHP API's used for donation processing, charity lookups (based on IRS master file), analytics, and various internal support tooling, as well as the underlying AWS hosted infrastructure (managed via RightScale).
• Oversee ongoing enhancements and bugfixes to Confidential .com C# .NET web application.
• Decouple core product from proprietary accounting software using Microsoft Sync Framework to syncronize data between databases (SQL server and MongoDB).
• Designed and documented version 2 of the core product stack which included AppFabric/WCF/C# 4 on top of MongoDB. Supported REST, SOAP, and MSMQ transports.
• Responsible for API integrations between PHP and .NET web applications (SOAP, REST, and MSMQ), as well as partners and 3rd party consumers.
• Support clustered SQL Server and MySQL databases.
• Support Windows 2003, 2008 and Linux environments in local, colocation, and virtual environments. Virtual environments include private VMware (ESX 5) and public AWS EC2 instances (deployed and managed by RightScale service).
• Presented hosting consolidation proposal which demonstrated 5 0% ($100,000) per year cost savings. Designed, implemented and documented hosting migration plan .
• Responsible for internal Avaya VoIP phone systems including server, phones, and dedicated T1 connection.
• Work with all departments to ensure PCI DSS compliance.
• Manage corporate and colocation network Cisco, Juniper, Vyatta, 3Com, Dell.
• Design policies and procedures.
• Document software, networks, and systems.
• Assist in pre-acquision technical due diligence meetings.

Confidential

Senior Software Engineer

Responsibilities:

• Design and implement custom B2B solutions for various clients such as Yankee Group, Marriott, and Alcatel-Lucent in PHP, Java EE, Python and .NET.
• Design and implement databases including stored procedures, triggers, and ERD diagrams using MySQL, MSSQL, Oracle, and PostgreSQL.
• Work with creative team to integrate aesthetically pleasing user interface / user experience with back-end business loigic.
• Presented hosting consolidation/migration proposal to company stakeholders which demonstrated 30% ($30,000) per year cost savings.
• Designed, documented, implemented and supported production hosting platform on a private cloud using VMWare ESX 4.1. Virtual images stored on enterprise NetApp filer to facilitate vmotion / disaster recovery options.
• Designed, documented, implemented, and supported physical and logical hosting networks as well as VPN connectivity between Confidential Boston office and data center.
• Designed, documented, implemented, and supported backup and monitoring solution for both internal corporate infrastructure as well as production hosting platform.

Confidential

Volunteer

Responsibilities:

• Developed “Life Story Suitcase” - a cross-functional suite of social media applications connected to Facebook, Twitter, Blogger and other networks via public API’s.
• Utilized ExtJS user interface libraries and AgilePHP (a framework I created for modularity and rapid application development).
• Allow secure file system based storage of social networking media on per-user basis.
• Pluggable/modular design which allows additional social networking platforms to be added in the future.
• Provide technology leadership and consulting in regards to other confidential projects happening internally.

Right Choice Technology

Consultant

Responsibilities:

• Create custom PHP content managed websites as well as aesthetically pleasing front-ends using jQuery and ExtJS.
• Create and manage client web hosting accounts using Plesk control panel.
• Designed, implemented, and supported Microsoft Windows systems, Cisco and Vyatta network routers and switches (layer 2 and 3). Implement secure wireless networking using isolated VLAN segments.
• Design secure off-site backup solution for small and medium sized businesses.
• Provide technology leadership around systems, networking, development and hosting.

Consultant

Responsibilities:

• Lead 2 person team through a successful migration from physical Dell servers involving 2 Active Directory domain controllers, a single Exchange 2003 server, and a BlackBerry Enterprise Server to virtual machines running in VMware ESXi server.
• Replaced SOHO Linksys router with Vyatta VC 5. Replaced SOHO Netgear switch with a layer 3 cisco switch and configured 4 different VLANS to enhance security. Moved WIFI access point to its own isolated VLAN to protect corporate assets.
• Installed new rack with 2 new physical servers running VMWare ESX server.
• Removed all prior external access through remote desktop and logmein.com, and satisfied remote access requirements using a secure OpenVPN solution.
• Re-ip all workstations, servers, printers, and other network appliances (Barracuda, etc)

Contractor

Responsibilities:

• Created Java EE payment processing plug-ins.
• Created and maintained PHP 5 library which uses SOAP and Hessian protocols to enable full integration with jbilling from PHP applications.
• Assisted with troubleshooting, configuring and supporting jbilling installations in client environments.
• Assisted with bug fixes, documentation, and code maintenance.
• Consulted with clients on integration projects involving PHP and Java EE. This included identifying installation, configuration, and code issues and providing solutions that work.
• Assisted in configuring jbilling instances on MySQL, Postgres, and Oracle databases.

Contractor

Responsibilities:

• Created linux based hosting platform consisting of a two node web cluster running JBoss AS, behind a pair of LVS servers and a two node file system cluster (active/passive) using DRBD.
• Created web application using JavaEE technologies (ICEfaces 1.8.1 and JBoss Seam 2.1).
• Provide consulting and guidance in all areas of information technology.
• Created client content management enabled websites using PHP 5, which features mailing lists, e-commerce, inventory tracking and reseller API’s using SOAP.