PROFESSIONAL EXPERIENCE

Confidential

Sr. Azure Architect

Responsibilities:

• Created O365 PowerShell script to iterate through user lists and assign licenses according to specific user properties
• Assigned server roles by name designation using PowerShell scripts
• Partially automated Windows patching by leveraging Ivanti’s PowerShell and REST APIs
• Used Ansible to create STIG security baselines for REHL systems
• Leveraged PowerShell DSC to build security baselines for Windows Systems
• Developed ReverseDSC scripts based off PowerShell DSC to extract configurations from existing environments
• Developed YAML Ansible playbooks to define configurations for virtual machines and switches
• Created custom ARM templates for storage, network, and compute resources
• Leveraged Azure site recovery to perform lift - and-shift migration of on-prem environment
• Created an application gateway for .NET Web applications
• Created an Azure Load-Balancers for back-end infrastructure
• Deployed storage containers, blobs, queues and other storage resources using pre-built ARM Templates
• Created Azure vNets and attached Network security group (NSG) resources
• Established an ExpressRoute connection from on-premise datacenter to Azure Cloud
• Architected Azure availability sets for Oracle VM resources
• Configured Azure Managed File Service
• Implemented Azure AD Domain services and synchronized to on-prem datacenter
• Established a Site-to-Site VPN Gateway as a redundant connection to the hybrid environment
• Configured High Availability (HA) for web applications and back-end servers
• Created routes for virtual networks
• Configured IP forwarding for virtual security appliances
• Architected Azure availability sets for Oracle VM resources
• Configured Azure Managed File Service
• Implemented Azure AD Domain services and synchronized to on-prem datacenter
• Created user accounts, and mailboxes
• Created and administered conference rooms
• Performed SharePoint administrative tasks
• Performed AD Directory synchronizations
• Leveraged PowerShell desired state configuration VM extensions to provide DSC to IIS, Application, and SQL servers< -- -->
• Implemented DSC MOF source control

Confidential

Sr. Windows Systems Engineer

Responsibilities:

• Created Active Directory Domain Forest operating at Server 2012 R2 Level
• Established Active Directory Domain Trust Relationship between two Active Directory Forests
• Leveraged Active Directory Federated Services and SAML 2.0 to create a single sign-on solution for a ServiceNow Instance
• Architected web-facing and internal WSUS solutions for workstations and servers
• Deployed Collections, Packages, and Distribution Points in Microsoft SCCM 2012 R2 information
• Knowledge of ATO and RMF process and security controls, STIGs and NIST at DOD
• Applied DISA issued Security Technical Implementation guide for systems containing controlled unclassified
• Built and designed Hyper-V host to contain RDS application pools
• Designed Microsoft Load Balancers for IIS Applications
• Developed WSUS update policies and created segregated groups for better patching targeting
• Deployed Trend Micro Office Scan, and Endpoint protection to entire agency using SCCM 2012
• Installed, configured, managed and maintained AD, DNS, DHCP windows servers (2008R2-2012R2)
• Designed and implemented Active Directory forest domain infrastructure with failover domain controllers
• Acted as PowerShell automation engineer for numerous projects and tasks for server builds, file operations, and software installs for example
• Modified and secured all production PowerShell scripts by leveraging .NET Framework methods to create certificate-based authentication
• Used PowerShell to ensure VMware Tools Compliance
• Created PowerShell script to locate service accounts used by scheduled tasks and services and perform periodic password resets to meet security regulations
• Created Python Scripts that performed custom SNMP queries against Cisco switches and routers
• Created asset database of all SNMP enabled devices
• Used scripting to automate the removal of unresponsive servers and automatically re-issued IP addresses then sends e-mail reports (Python)
• Leveraged PowerShell to automatically find service accounts within .NET application services and Windows servers for auditing and remediation purposes
• Automated internal certificate issuance leveraging PowerShell
• Created application load balancers using VMware NSX
• Designed NSX multi-purposed NSX edge devices
• Created VMware datastores using Nimble SAN arrays
• Created VMware NSX Distributed Port Groups and Switches for virtual machines
• Configured database backups for Microsoft SQL Server 2012, 2014
• Stood-up, hardened, configured, and maintained a multi-tenant Multi-Tenant SharePoint 2013 farms
• Leveraged PowerShell to write SQL queries to Microsoft SQL 2014 databases
• Designed, created and maintained Microsoft SQL 2012, 2014, and 2016 SQL servers
• Administered, maintained, and patched all RHEL 6,7 and CentOS 7.x Linux servers
• Deployed Custom Tenable RHEL servers
• Built Apache front-end web servers and loaded third-party modules (mod honeypot, mod ldap)
• Designed and implemented PowerShell-based desired state configuration system for CentOS and RedHat servers
• Built and configured RHEL 7 certificate authority server for Unix-based appliances and servers
• Engineered and built secured segmented environment for controlled unclassified information leveraging Palo Alto Firewall
• Created, Managed and Maintained Nimble Datastores and snapshots
• Configured Nimble SAN replication, snapshots, Initiator groups, and storage policies
• Created and monitored mail filters using Barracuda Spam Firewall Appliance
• Developed standard operating procedure documentation for patching
• Designed NAT and traffic rules for Palo Alto Firewall appliance
• Remediated findings from FISMA audits to ensure compliance
• Utilized NESSUS vulnerability scanners to remediate any weak-points
• Created custom pollers for VPN appliances in SolarWinds

Confidential

Devops Engineer/Team Lead

Responsibilities:

• Created and administered hybrid AWS/On-Premise environment
• Created CloudWatch CPU and memory alarms for WordPress web servers
• Created Auto scaling group for WordPress servers
• Created and configured custom AWS VPCs and built out necessary NACLs and security groups
• Built out IAM groups and attached polices on AWS for administrative staff
• Migrated on premise MySQL databases to SaaS RDS solution
• Configured AWS Storage Gateway for on premise storage bridging
• Migrated on premise git repository to AWS CodeCommit to reduce administrative overhead and increase high availability, security, durability and agility
• Used AWS OpsWorks to create Dev, Test, Stage and Prod environments
• Worked with EC2 Container services
• Used Auto scaling groups to architect high availability for WordPress sites
• Created disaster recovery sites for critical web applications in different regions
• Designed S3 lifecycles for EC2 instance snapshots
• Implemented cost optimization practices by moving certain operational procedures to managed services
• Created on premise git solution
• Implemented LDAP for authentication on premise GIT
• Performed tagging, merging, and branching operations within GIT
• Created multiple Docker containers for development labs and production environment
• Used Chef to automate builds and deployments for dev and prod environments
• Created Chef cookbooks for use on on-prem and AWS EC2 instances
• Managed and designed integrated build pipelines
• Automated administrative tasks with shell scripting and PowerShell
• Worked with Docker Engine, Hub, Machine, and compose
• Used AWS CloudFormation to replicate webserver and database resources for deployment to other sites
• Bootstrapped Chef client nodes
• Designed an Ubuntu v12.04 VDI for use as virtual workstations
• Stood-up multiple CentOS 7 LAMP servers for production environment web sites and databases
• Configured IPTables and SELinux onto RedHat and Ubuntu member servers
• Deployed and configured Ubuntu v12.04 for PfSense application level firewall
• Upgraded Samba servers to v14.04 from v12.04
• Installed and configured Centrify on Ubuntu servers for better integration with AD
• Performed storage provisioning operations using LVM
• Designed and deployed VMware ESXi hypervisor clusters managed by vCenter
• Created VMware VM templates for use in dev, test, stage, and prod environments
• Developed an automated snapshot-lifecycle system for backup and disaster recovery purposes
• Implemented V-Motion and HA to maintain high availability for applications and other critical services

Confidential

Engineering Consultant

Responsibilities:

• Provisioned Ubuntu DNS, DHCP and NFS servers for lab environment
• Designed highly fault-tolerant RAID arrays to ensure data durability and application uptime
• Wrote bash scripts to automate certain tasks to reduce administrative overhead
• Managed and created LVM partitions for physical and virtual machines
• Configured a layer 7 load balancer using HAProxy on CentOS 7 apache servers to support an internal application
• Installed and configured JIRA and confluence systems with PHP and MYSQL for development teams
• Wrote multiple shell scripts for various projects
• Migrated MySQL database servers from physical machines to VMware virtual machines
• Used multiple Linux network tools such as NMAP and TCP wrappers
• Created ESXi hosts and clusters
• Designed virtual networks within VMware NSX
• Created VMware vSwitches and routers
• Implemented V-Motion and HA to maintain high availability for applications and other critical services
• Built VMware Edge devices (Firewalls) for VMware virtual machines