SUMMARY:

Over sixteen years of experience supporting various Enterprise - level IS infrastructures, with advanced monitoring and triage skills. A proven track record for prioritization of dynamic tasks with a high proficiency. Extensive experience with multiple monitoring systems and incident management procedures, and the ability to communicate across all levels of management. Seeking an Enterprise System Engineer role within an innovative organization that allows me to utilize both my professional experience and educational background.

TECHNICAL SKILLS:

Platforms: MS Windows 95 - MS Win 10, MS Win Server 08 - 16 R2, Apple iOS 4 - iOS 10, Linux Ubuntu - Fedora - Debian, Cisco 3 0 12.2 SE 12.2SG, Android 1.5 - 7.0, Juniper Junos 07 - 15.1R2, Citrix, VDI

Programs: MS Office Suites 97 -16, O365, Solarwinds Enterprise suite - IPAM, Varonis, vmWare AirWatch - vSphere Hypervisor, Wireshark, NFSEN, SCOM, Change Auditor, McAfee Security Suite - ePO/VSE/MDE/MEG, TIE/ATD/ SIEM, Toad for Oracle, Microsoft Active Directory, SCCM 12 SP1, Orchestrator.

Databases: MS SQL 08 R2, MariaDB, Active Directory 10, Exchange 10, Tivoli Storage Mgr.

Internet: SSL Certificates FreeBSD - OpenSSL - CA - Verisign, Microsoft IIS, LDAP, .XML, HTML

Languages: SQL, UNIX, PowerShell, DOS, Java, JavaScript, HTML

Additional Tools: Service-Now ITSM, PStools, SecureCRT, Systernals, NetMon, PerfMon, RDP, Zabbix, Mongoose, Spectrum, Netview

PROFESSIONAL EXPERIENCE:

Confidential

Security Engineer

Responsibilities:

• Development of standard security solutions
• Lead regular meetings for McAfee SIEM knowledge transfer and conduct discussions on best practices with tier I and tier II support engineers
• Build use-cases for HIPPA and PCI compliance offerings
• Tuned, enhanced, and filtered several products logging to a multi-tenant SIEM
• Fine tuning of security event correlation for over 650 vendor content and threat analytic rules.
• Creating new content by way of threat feeds, watchlists, and alarms to meet organizational needs.
• Creating custom parsers for unknown events, and performing extensive packet analysis, where needed
• Provided threat and SOC detection examples present in the AMC Network.
• Monitored SIEM for advanced threats through correlation leveraging, heuristics, and threat intelligence
• Provided AMC administration support by troubleshooting issues with ESM performance or issues with the connector appliances
• McAfee SIEM (Enterprise Security Manager - ESM, Enterprise Log Manager - ELM, Receivers, Advanced Correlation Engine - ACE, Directly Attached Storage - DAS), McAfee Web Gateway - MWG, McAfee ePO, Cisco ASA, Sourcefire, TIE/ATD
• Developed system checklist to ensure continuous operation and overall system health
• Participate in on-call duties to ensure high availability and resiliency standards are met.
• Demonstrate a strong understanding of ITIL- based processes, and NIST standards when developing security incident response.
• Assist with Access Controls and account creation within MS Active Directory.
• Strong understanding of various Active Directory MMC snap-ins, such as; local system security config and analysis, DNS, DHCP, Certification Authority, Print management,

Confidential

Sys/ Network Admin

Responsibilities:

• Build, test, and install new technology solutions for customer- facing client applications that reside on Linux, Windows Server 08’ 12’, VDI, VMWare, and hardware Server platforms.
• Participate in on-call duties to ensure high availability and resiliency standards are met.
• Provide direction to programming staff when evaluating systems design, project planning, installation, and configuration.
• Provide escalated support for production problems, collaborating with internal teams and developers to identify root cause.
• Proactively perform health checks on applications, storage, and a variety of operating systems, hardware, and software.
• Correlate reports from monitoring systems such as SCCM, SCOM and Quest Change Auditor and examine PC event viewer to resolve alarms.
• Demonstrate initiative and sound judgement when maintaining McAfee email Gateway, anti-virus, and anti-spam policies.
• Abide by organizational standards and policies when managing Exchange 2010 Email system, Citrix environment, SAN architecture, Ms-based A.D. Services, SQL reporting, and WSUS updating.
• Monthly Server patching and system hardening techniques.
• Actively review and modify GPOs, computers and users, within MS Active Directory.
• Provide operational and troubleshooting support for Helpdesk, Desktop, and Application groups.
• Utilize VMware V-sphere and Solarwinds storage manager to facilitate systems infrastructure growth and performance improvements.
• Documenting and developing new in- house tools and procedures for security and house-cleaning initiatives, as well as full device reachability efforts.
• TSM Disaster Recovery of server and mainframe environments, incorporating backup/ recovery requests, and file restores.

Confidential

L2 Technical Support

Responsibilities:

• Support of NYS municipality, a Multi- Vendor network environment, including network operations and end- user support.
• Experience includes working in a high visibility, 24/7/365 team environment.
• Ticket management through Service- Now ITSM.
• Experience with level 2 Helpdesk, including, MS office 365, Citrix, remote desktop, and VMware, SSLVPN, & VPN solutions.
• Provide user and group account maintenance through multiple administrative accounts, including ADFS, LDAP, and NYSDS, utilizing MS AD with MMC, NYSeMail MS Exchange, Orchestration, and various other service management systems.
• Review Visio drawings to walk personnel through complex troubleshooting, over the phone.
• Experience with Cisco Layer two & three switches, Juniper firewalls, Alcatel & Nortel LAN switches.
• Experience with Cisco WAN/ LAN technologies.
• Test, via SecureCRT, various circuits including, P2P, bonded T1 circuits, BCE, MPLS, EVPL, native VLANs and Link aggregation
• Verify circuit baselines and configurations, such as; IP routing/ advertising, BER tests, and traffic shaping.
• Utilizing various network analysis tools, including Cacti, Wireshark, NFSEN, and Tivoli Netview.
• Network/ server monitoring tools include; Tivoli, SCOM, Prime Central Unified Communications, openNMS, and Zenoss.

Confidential

IT Operations Specialist

Responsibilities:

• Maintain Datacenter operations. Monitoring and escalation of priority one issues, including; Job failures, BGP bounce/ flaps, SCOM Server Hardware/ Software alerts, Telecom, E-fax, and E-mail traffic Alerts, and Solarwinds and Spectrum alerts.
• Experience with MJ Plus Reporting, Bond Adapt Server checks, F5 Load Balancing, Hyperion Service checks, HCM recycles, VPN, and remote office network connectivity, on an International level, including; EMEA, APAC, NA
• 24/7/365 team environment.
• SSH to Cisco/ Juniper routers to check configurations, log files and peer status.
• Vendor management and escalation.
• Work with DBAs to terminate, ice, restart, or force start failed jobs.
• Regularly staying updated on IT and On-call escalation procedures.
• Vaulting backup tapes for on/ off site storage, recycling scratch pool, accurate tape management, and facilitating data requests back from Recall (offsite storage).
• Ticketing reporting through Onyx (proprietary ITSM).

Confidential

IT Analyst

Responsibilities:

• Performed various IT support roles, on an enterprise- level; network operations, End-user securities and desktop support.
• Created and maintained user accounts through Toad 9.0.1
• Enterprise-level Network monitoring through Zabbix and Mongoose.
• Performed data center systems checks, and swapped out tape backups, as directed, MS Windows Server 95’, 03’.
• Multi- tasking incidents submitted by customers and internal staff using multiple mediums and methods based on time critical and severity or urgency levels.
• Performed administrative registry and domain configurations in a rights- restricted, Windows 03’& XP environment.
• Troubleshooting End- User and integrated systems configuration for interaction with SaaS, proprietary, & server applications, including i-Series Navigator, MS Access 03’, Redbrick, Oracle, AS400, Novel and then Symantec.
• Documented trouble tickets, prioritized issues, and resolved pending cases through Crossforms ticketing software.
• Responsible for disseminating concise and urgent communications on mission critical network and application outages, while fielding an influx of user reported issues.