We provide IT Staff Augmentation Services!

Sr. Azure Architect Resume

PROFESSIONAL EXPERIENCE

Confidential

Sr. Azure Architect

Responsibilities:

  • Created O365 PowerShell script to iterate through user lists and assign licenses according to specific user properties
  • Assigned server roles by name designation using PowerShell scripts
  • Partially automated Windows patching by leveraging Ivanti’s PowerShell and REST APIs
  • Used Ansible to create STIG security baselines for REHL systems
  • Leveraged PowerShell DSC to build security baselines for Windows Systems
  • Developed ReverseDSC scripts based off PowerShell DSC to extract configurations from existing environments
  • Developed YAML Ansible playbooks to define configurations for virtual machines and switches
  • Created custom ARM templates for storage, network, and compute resources
  • Leveraged Azure site recovery to perform lift - and-shift migration of on-prem environment
  • Created an application gateway for .NET Web applications
  • Created an Azure Load-Balancers for back-end infrastructure
  • Deployed storage containers, blobs, queues and other storage resources using pre-built ARM Templates
  • Created Azure vNets and attached Network security group (NSG) resources
  • Established an ExpressRoute connection from on-premise datacenter to Azure Cloud
  • Architected Azure availability sets for Oracle VM resources
  • Configured Azure Managed File Service
  • Implemented Azure AD Domain services and synchronized to on-prem datacenter
  • Established a Site-to-Site VPN Gateway as a redundant connection to the hybrid environment
  • Configured High Availability (HA) for web applications and back-end servers
  • Created routes for virtual networks
  • Configured IP forwarding for virtual security appliances
  • Architected Azure availability sets for Oracle VM resources
  • Configured Azure Managed File Service
  • Implemented Azure AD Domain services and synchronized to on-prem datacenter
  • Created user accounts, and mailboxes
  • Created and administered conference rooms
  • Performed SharePoint administrative tasks
  • Performed AD Directory synchronizations
  • Leveraged PowerShell desired state configuration VM extensions to provide DSC to IIS, Application, and SQL servers< -- -->
  • Implemented DSC MOF source control

Confidential

Sr. Windows Systems Engineer

Responsibilities:

  • Created Active Directory Domain Forest operating at Server 2012 R2 Level
  • Established Active Directory Domain Trust Relationship between two Active Directory Forests
  • Leveraged Active Directory Federated Services and SAML 2.0 to create a single sign-on solution for a ServiceNow Instance
  • Architected web-facing and internal WSUS solutions for workstations and servers
  • Deployed Collections, Packages, and Distribution Points in Microsoft SCCM 2012 R2 information
  • Knowledge of ATO and RMF process and security controls, STIGs and NIST at DOD
  • Applied DISA issued Security Technical Implementation guide for systems containing controlled unclassified
  • Built and designed Hyper-V host to contain RDS application pools
  • Designed Microsoft Load Balancers for IIS Applications
  • Developed WSUS update policies and created segregated groups for better patching targeting
  • Deployed Trend Micro Office Scan, and Endpoint protection to entire agency using SCCM 2012
  • Installed, configured, managed and maintained AD, DNS, DHCP windows servers (2008R2-2012R2)
  • Designed and implemented Active Directory forest domain infrastructure with failover domain controllers
  • Acted as PowerShell automation engineer for numerous projects and tasks for server builds, file operations, and software installs for example
  • Modified and secured all production PowerShell scripts by leveraging .NET Framework methods to create certificate-based authentication
  • Used PowerShell to ensure VMware Tools Compliance
  • Created PowerShell script to locate service accounts used by scheduled tasks and services and perform periodic password resets to meet security regulations
  • Created Python Scripts that performed custom SNMP queries against Cisco switches and routers
  • Created asset database of all SNMP enabled devices
  • Used scripting to automate the removal of unresponsive servers and automatically re-issued IP addresses then sends e-mail reports (Python)
  • Leveraged PowerShell to automatically find service accounts within .NET application services and Windows servers for auditing and remediation purposes
  • Automated internal certificate issuance leveraging PowerShell
  • Created application load balancers using VMware NSX
  • Designed NSX multi-purposed NSX edge devices
  • Created VMware datastores using Nimble SAN arrays
  • Created VMware NSX Distributed Port Groups and Switches for virtual machines
  • Configured database backups for Microsoft SQL Server 2012, 2014
  • Stood-up, hardened, configured, and maintained a multi-tenant Multi-Tenant SharePoint 2013 farms
  • Leveraged PowerShell to write SQL queries to Microsoft SQL 2014 databases
  • Designed, created and maintained Microsoft SQL 2012, 2014, and 2016 SQL servers
  • Administered, maintained, and patched all RHEL 6,7 and CentOS 7.x Linux servers
  • Deployed Custom Tenable RHEL servers
  • Built Apache front-end web servers and loaded third-party modules (mod honeypot, mod ldap)
  • Designed and implemented PowerShell-based desired state configuration system for CentOS and RedHat servers
  • Built and configured RHEL 7 certificate authority server for Unix-based appliances and servers
  • Engineered and built secured segmented environment for controlled unclassified information leveraging Palo Alto Firewall
  • Created, Managed and Maintained Nimble Datastores and snapshots
  • Configured Nimble SAN replication, snapshots, Initiator groups, and storage policies
  • Created and monitored mail filters using Barracuda Spam Firewall Appliance
  • Developed standard operating procedure documentation for patching
  • Designed NAT and traffic rules for Palo Alto Firewall appliance
  • Remediated findings from FISMA audits to ensure compliance
  • Utilized NESSUS vulnerability scanners to remediate any weak-points
  • Created custom pollers for VPN appliances in SolarWinds

Confidential

Devops Engineer/Team Lead

Responsibilities:

  • Created and administered hybrid AWS/On-Premise environment
  • Created CloudWatch CPU and memory alarms for WordPress web servers
  • Created Auto scaling group for WordPress servers
  • Created and configured custom AWS VPCs and built out necessary NACLs and security groups
  • Built out IAM groups and attached polices on AWS for administrative staff
  • Migrated on premise MySQL databases to SaaS RDS solution
  • Configured AWS Storage Gateway for on premise storage bridging
  • Migrated on premise git repository to AWS CodeCommit to reduce administrative overhead and increase high availability, security, durability and agility
  • Used AWS OpsWorks to create Dev, Test, Stage and Prod environments
  • Worked with EC2 Container services
  • Used Auto scaling groups to architect high availability for WordPress sites
  • Created disaster recovery sites for critical web applications in different regions
  • Designed S3 lifecycles for EC2 instance snapshots
  • Implemented cost optimization practices by moving certain operational procedures to managed services
  • Created on premise git solution
  • Implemented LDAP for authentication on premise GIT
  • Performed tagging, merging, and branching operations within GIT
  • Created multiple Docker containers for development labs and production environment
  • Used Chef to automate builds and deployments for dev and prod environments
  • Created Chef cookbooks for use on on-prem and AWS EC2 instances
  • Managed and designed integrated build pipelines
  • Automated administrative tasks with shell scripting and PowerShell
  • Worked with Docker Engine, Hub, Machine, and compose
  • Used AWS CloudFormation to replicate webserver and database resources for deployment to other sites
  • Bootstrapped Chef client nodes
  • Designed an Ubuntu v12.04 VDI for use as virtual workstations
  • Stood-up multiple CentOS 7 LAMP servers for production environment web sites and databases
  • Configured IPTables and SELinux onto RedHat and Ubuntu member servers
  • Deployed and configured Ubuntu v12.04 for PfSense application level firewall
  • Upgraded Samba servers to v14.04 from v12.04
  • Installed and configured Centrify on Ubuntu servers for better integration with AD
  • Performed storage provisioning operations using LVM
  • Designed and deployed VMware ESXi hypervisor clusters managed by vCenter
  • Created VMware VM templates for use in dev, test, stage, and prod environments
  • Developed an automated snapshot-lifecycle system for backup and disaster recovery purposes
  • Implemented V-Motion and HA to maintain high availability for applications and other critical services

Confidential

Engineering Consultant

Responsibilities:

  • Provisioned Ubuntu DNS, DHCP and NFS servers for lab environment
  • Designed highly fault-tolerant RAID arrays to ensure data durability and application uptime
  • Wrote bash scripts to automate certain tasks to reduce administrative overhead
  • Managed and created LVM partitions for physical and virtual machines
  • Configured a layer 7 load balancer using HAProxy on CentOS 7 apache servers to support an internal application
  • Installed and configured JIRA and confluence systems with PHP and MYSQL for development teams
  • Wrote multiple shell scripts for various projects
  • Migrated MySQL database servers from physical machines to VMware virtual machines
  • Used multiple Linux network tools such as NMAP and TCP wrappers
  • Created ESXi hosts and clusters
  • Designed virtual networks within VMware NSX
  • Created VMware vSwitches and routers
  • Implemented V-Motion and HA to maintain high availability for applications and other critical services
  • Built VMware Edge devices (Firewalls) for VMware virtual machines

Hire Now