We provide IT Staff Augmentation Services!

Senior Windows Security Engineer

2.00/5 (Submit Your Rating)

SUMMARY:

  • VMware architecture Citrix architecture SAN Administration
  • SCCM/WSUS/Tanium Windows OS implementation Active Directory/GPO

SKILL:

Software: Tanium; Qualys; Microsoft products: MS Clustering, SCCM, WSUS, Active Directory, GPO, ADFS, DNS, PowerShell scripting, MS Office; Sysinternal; VMware: VUM, SRM, ESXi, Horizon; Nagios; RSA Admin; Citrix/XenApp; Change Auditor; Remedy; Tripwire; Symantec: NetBackup, SEP, DLP, CSP; HP: ArcSight

Operating Systems: Microsoft Windows OS: Servers 2003, 2008, 2008R2, 2012, 2016, 2019 Desktop Windows 10, 8.1, 7, XP

Limited: RHEL 5, RHEL 6, RHEL 7

Hardware: Dell servers/blade, Dell DRAC, Dells/EMC SAN CX4; Brocade ; HP Servers/blades, ILO; Hitachi HUS 150

EXPERIENCE:

Confidential

Senior Windows Security Engineer

Responsibilities:

  • Resolved security vulnerabilities on software platforms (OS and programs) on Windows 2003 thru Windows 2019) using various endpoint like Tanium, PowerShell, SCCM, and Group Policies Objects (GPO)
  • Remediation of issues for different groups effecting manufacturing or sales. Whatever it takes
  • Work various groups within Toyota to setup GPO, deployed patching, upgrades and hardware decommissions
  • Created technical documentation to create consistency between team member and group members.
  • Determined root cause analysis issues caused by patching or GPO changes include domain users, domain workstation and kiosk
  • Adhered to all corporate standards and procedures use ITI, including incident response and root cause analyses.
  • Set standard for hardware and software standards and deployment plans.
  • Agile scrum using Jira which included creating and maintaining technical documentation.

Confidential

Senior Endpoint Security Engineer/VMware/Windows Engineer

Responsibilities:

  • Remediation/exception fixes for PCI DSS domain including SCCM and WSUS upgrade, troubleshooting (logs) patching issues, Qualys scan and reports, commercial and home - grown software update to SSL cert issues.
  • Work various groups within 7-11 to setup and deployed patching, upgrades and server decommissions
  • Resolved security vulnerabilities on software platforms (OS and programs) on Windows 2003 thru Windows 2016) using various endpoint like PowerShell, SCCM, WSUS, CMTrace (log reader) GPO, psexec and RDP.
  • Created technical documentation for compensating controls, long term remediation, exception requests for false positive from all the security scans to meet PCI controls.
  • Determined the security issues with various OS (Windows/Linux/VMware) clusters, ESXi update versions, or created projects for long term remediation (cost/budgets restraints). Shut it down or explain why not
  • Agile scrum master which included creating and maintaining technical documentation.
  • Adhered to all corporate standards and procedures use ITI, including incident response and root cause analyses.
  • Supervise, distribute and assign work for onshore and 4 offshore team members

Confidential

Senior Windows Engineer/Endpoint Security Data Assurance

Responsibilities:

  • Resolved security vulnerabilities on software platforms (OS and programs) on government and commercial domains (Windows 2003 thru Windows 2012 R2) using various endpoint like PowerShell, Tanium, WSUS, SysInternal CMtrace, psexec and RDP.
  • Resolved security vulnerabilities on hardware (firmware/bios) HP 7000, Blades, ILO and SSL cert.
  • Remediation/exception fixes for PCI DSS domain including SCCM and WSUS patching issues, Tanium usage, registry questions and reports, commercial and home-grown software update to SSL cert issues.
  • Resolved security issues with VMware cluster, ESXi update versions, or created projects for long term remediation (cost/budgets restraints).
  • Researched, designed, and recommended complex infrastructure solutions to meet PCI security requirements for 2008 (non R2) domain upgrade using AD tools, PowerShell and Tanium to gather specifics
  • Created technical documentation for compensating controls, long term remediation, exception requests for false positive from all the security scans to meet PCI controls.
  • Agile scrum master which included creating and maintaining technical documentation.
  • Used multiple ticket tracking systems to create and manage change request for service outages, coordinate changes on Servers, H/W changes, and configuration update.
  • Adhered to all corporate standards and procedures use ITIL.
  • Onboarding and managed the new hires including domain access request, access forms, email groups, jabber contacts, SharePoint access, basic scripting help

Confidential

Senior Systems Administrator/Security Consultant

Responsibilities:

  • Migrated and closed major data center; migrated 300+ servers from one physical location to another location (Physical, P2V, V2V and new builds) totals servers moved 980+
  • Built ESXi 5.5 Clusters on HP 7000 enclosures, adding blades, provisioning SAN storage and network VLAN profiles
  • Complete setup from bare metal to completed Windows OS for standalone server, HP Blades plus enclosure and VMware ESXi clusters. Troubleshoot all issue from event logs to security scans issues to resolution.
  • Installed, configured, setup managed Windows 2008 R2 and 2012 servers using PowerShell scripted installs
  • Provided proof of build standards for operational turnoff/turnover (build documentation, SCCM/WSUS or manual patching, monitoring, Endpoint security, Antivirus, backup)
  • Management of Windows Active Directory (OU, Group, users accounts, service accounts)
  • Management of Windows DNS (add/removes, conditional forwarders)
  • Created and modified Windows 2008 R2 GPO for multiple tenants’ domains
  • Built multiple MS SQL fail over and including one Always on Clusters
  • Created 33 separate Microsoft AD domains, DNS and trust relationships for migrations
  • Remediation of all client software issues during data center migration and provided third level support

Confidential

Senior Systems Engineer/VMware 4.x - 5.5 Architecture/Storage Administrator

Responsibilities:

  • Expanded, deployed and installed VMware infrastructure over time from 6 ESX 4 servers to 33 ESXi 6.1 hosts.
  • Created a VMware production cluster, non-production, DMZ cluster and a Hadoop development cluster. vSphere Center, vCOPS, VUM and SRM to manage ESXi clusters the including Profiles for the Servers consistence and storage. The direct cost saving of VMware servers saved approximately $250K hardware plus increase the speed of server deployment, backup restore and Site Recovery
  • RSA administrator for two factor authentications
  • POC VMware 6 Horizon (VDI) with Wyse Teradici thin client POC Virtual
  • ArcSight reporting including incident response, investigative response, root cause analyses
  • Upgraded and migrated from Symantec NetBackup 5.x to 7.x with deduplication with a real storage saving of $96K.
  • Replication the Production site to the Recovery B site for BCDR including the testing of failover.
  • Instrumental in migration as storage administer from EMC Clariion storage to Hitachi HUS 150 Storage cost saving of about $130K with more available raw storage
  • Initial install, configuration and rule creation using Symantec DLP to replace Digital Guardian and complete OS upgrade. Established basic policies for Verizon desktop footprint (150K desktop) pending full deployment.
  • Integrated with AD and managed approximately 50 desktop/laptop and 120 Windows servers
  • Build RHEL 6 system from PXE boot for HP ArcSight recovery and testing, bare metal Windows 2008 R2 images and servers as need for infrastructure growth.
  • Devised a backup plan for the 8 TB storage using SAN Snapshots and VM backups which was adopted as the only working solution.
  • Host controls - enterprise A/V, file integrity monitoring, disk encryption to include setup and tested Symantec Endpoint connectors and AD connector for centralized monitoring projects to syslog servers.
  • Installed and Managed Windows 2008 R2 servers, AD users and computer accounts, DNS, DHCP, GPO, WSUS
  • Vendor management changed Dell server support life cycle and warranty with first year cost saving of $150K.
  • Increase service life of laptops by upgrading hard drives to SSD which also extended battery time.

Confidential

Windows System/Storage Administrator/ Architect

Responsibilities:

  • Maintained, deployed, installed 22 VMware clusters (separate physical locations) with 144 ESX VMware servers on HP 7000 enclosures blades and standalone servers includes vSphere Center, vCOPS, VUM.
  • Managed Microsoft Sever 2003 - Server 2008 R2 including server patch management (SCCM/WSUS) for approximately 1000+ Servers mix physical and VM. Troubleshoot/Repair Client issues using sccm logs
  • Provisioned storage installed fiber, configured/zoned and administrated FC, iSCSI and NFS storage arrays
  • Installed, Managed and upgraded XenApp (Citrix) Metalframe 1.8, Presentation Server 4, XenApps 6.x and included a BYOD project lead POC Xendesk Citrix VDI including License Server and IIS cluster (Netscalar).
  • Created and maintained XenApp 6.5 Production and Non-Production farms. Managed XenApp License and terminal servers published MS Office products
  • Setup NetBackup 6.5 replication and de-duplication on using VMware, SAN provisioning and PureDisk application. Managed New Falcon virtual tape library storage (duplication).
  • Performed Symantec Critical System Protect (CSP) Architecture and Administration including all deployed agents on Outsourced financial servers to allow external vendor to manage the server on internal network with CSP limiting they abilities make system changes or jump boxes per Legal requirements.
  • Built, migrated and duplicated servers (approximately 600 Windows) including SSCM, IIS, SQL Clusters, Symantec Endpoint AV and Netbackup servers for Frontier Data center and close major data center (Ft. Wayne)
  • Project lead on Citrix, Tax, HR and financial new servers move to Frontier and Frontier personnel.
  • I Recreated approximately 120 out of 600 middleware applications servers in new locations with supporting infrastructure, applications and SCCM patching
  • Server deployment including VMware and stand alone for Coppell data center migration with approximately 133 servers, SAN administrator and backup infrastructure consolidation.

We'd love your feedback!