P R O F I L E

A hands - on IT Manager/Senior Network Security Engineer with 17 years of extensive experience building and maintaining Microsoft Server Standard and Enterprise Server farms with 1300 servers, Exchange -13 Front End-Edge Servers and Exchange clustered back office servers, Dag's, Edges, Hubs, Lync 2010 and 2013 Servers, Microsoft SQL 00-05-08 running on a suite of Application servers and SAN storage units. I have built and maintained and migrated over 13 Exchange 5.5--13front end, Edge and back office servers using Outlook Web Access, multiple website hosting within secure DMZ's plus protection with Barracuda Spam and content filtering, Barracuda Anti-Virus appliances with Cisco ASA and Sonic Wall firewalls for secure VPN connections and site to site VPN's for all offices to interconnect. Constructed and maintained multiple Blackberry Enterprise Servers and GOOD Servers that supported over 1000 Blackberry handhelds. My professionally cultivated skills with full Microsoft Certifications allow me to build and maintain enterprise class networks which will quickly provide value to any organization as deliverables are completed and always exceed expectations.

OBJECTIVE

To obtain a challenging position as a Senior Network Security Engineer/Infrastructure Manager hands on only that can offer many challenges and to design, engineer and build networks utilizing new security technologies and products better suited to protect corporate environments and fulfill all SLA's a corporation has and provide the best technology to allow users to be as efficient and proactive as well as secure as possible.

Confidential

Security Engineer Consultant

• Responsible for running Vulnerability Management Scans against all production Windows, Unix, Linux, HP-UX, AIX and Ubutu Systems to capture and report all threat, vulnerabilities and to check for all policy and compliance standards that Novartis has in place.
• Replace Tivoli with Qualys Guard Security software for all scanning both authenticated and unauthenticated and internal and external scans to find all security vulnerabilities on all platforms including networking hardware, servers, Web Application servers, routers, load balancers, Riverbed Steelheads, and on all internal and external communication lines.
• Reporting to all specific department heads with Qualys Guard Reporting Services for Windows Devices, Unix Devices, Database devices and Networking hardware to show exploitable vulnerabilities and to write or re-write Networking and System policies and to provide assistance in developing plans to harden these vulnerabilities and to tighten up the network to provide a safe, impenetrable global environment for Novartis Pharmaceuticals
• Qualys Guard utilized to determine each vulnerability and to what degree each vulnerability could cause issues and problems on a scale of one to five.
• Put together a preliminary project plan to scan the first group of servers which included Unix, Linux, HP-UX, Ubutu, Red Hat and SUSE Linux platforms along with various Windows 2003, 2008 and 2012 Physical and Virtual platforms numbering approximately 8800 Servers in multiple data centers globally for only Novartis Pharmaceuticals, All Novartis Pharmaceutical child companies were to come at a later date with a total global serves count of Production, Test and development platforms numbering roughly 74,000 machines, servers, devices, appliances
• Responsible for reviewing all Novartis Corporate SOP's and policies and transposing those policies to new scopes in order for Novartis IT Legal and CIO to review and colaborate and re-write policies with all new hardening procedures and standards and requirements for all new serves builds which will eliminate all vulnerabilities as of date services performed.
• Team of 3 Qualys Guard certified and various Novartis IT Engineers to create all new Golden Images for serves platforms which eliminate all vulnerabilities on Windows 03, 08 and 2012 all variations, R2, Standard, Enterprise, Data Center Etc.
• All Windows 7 and 8 and XP machines for laptop platforms and desktops scanned and Acronis images created for those platforms as well

Confidential

Contractor/Senior Network Engineer

• Currently working to build, configure, implement and deploy an Always-On High Availability pair of SQL Servers 2012 for the Veterans Administration Hospitals in the Mid-West of the United States
• Building and configuring full setups of Always-On High Availability Servers for manual and immediate failovers
• Building and configuring High Availability Reporting Services with Primary and Secondary Replicas for Disaster Recovery and for Synchronization from all VA hospitals back to multiple data centers with all workstations in every OR suite to be able to store Local SQL data if hospitals are unable to reach Data Centers
• Responsible for architecture of a High Availability SQL system that can not have any down time as declared in all SLA Agreements between Drager and the VA Hospital's Legal Council.
• Writing Microsoft Windows Power Shell Scripts to create users, create all SQL and Security Groups as well as administrative functions for SQL server build
• Solely responsible for all documentation for all SQL Server hardware, software, build procedures for clients and Drager.
• Tasked with creating forms for how to documentation and fulfilling SLA agreement for clients for all information on how servers were built, maintenance schedules, standard troubleshooting techniques and how Always-On Availability Groups and Reporting Services were all created, configured modes of operations, and failover how to and documentation for uninterruptable database connectivity.
• Learned Dragers Innovian Software that they create for Anesthesia machines to pull data and transfer it to local SQL Express computers which then Synchronize data up to SQL Always-On Servers to centrally store the data utilizing HL7 architecture specific to only healthcare server communication which consists of Patient information and specific patient data.
• Incorporated multiple IBM tape drive backup devices to capture SQL data from both data center servers as well as multiple local clinical workstations at various VA hospitals in the mid west areas for extra security for patient data security.
• Wrote custom Power Shell Scripts to create individual instances and security groups for specific instances on SQL Server
• Built full SQL Test environment to test Always On High Availability Failover groups and Report Server services, Quorum Share servers and Domain Controllers

Confidential

Senior Network and Systems Engineer III

• Currently working hands on in a group of three with my sole primary responsibilities being all Riverbed Steelheads located in 37 sites on an ATT global AVPN infrastructure.
• Built and maintained SMC and CMC Riverbed Appliances to control ALL steelheads in our environment and to roll out Riverbed clients to 400 mobile devices to do compression across VPN to have a faster and better work abroad experience.
• Main point of contact for all Barracuda Spam and A/V appliances located at two email gateways, responsible for all upgrades and any issues with these appliances 24/7/365.
• Built and Maintained 4 Edge and 7 Back office Microsoft Exchange 2013 Server environment with Servers located throughout the United States in various Data Centers.
• One of 3 Engineers that removed our domain from our old parent domain and setup all new infrastructure, Barracudas, Exchange 2013, Lync 2013, Domain Controllers, Qualys Guard, Active Admin All setup and running in production with DR servers in Co-Location for failover purposes.
• Built and implemented and maintained two EMC SAN units and personally built over 200 Development and test 2008 R2 and 2012 STD and Enterprise Virtual Servers on Vsphere with BG-Info for each Virtual Server and utilized Avamar Software to backup and Sync EMC units together
• Implemented Paperport Pro document management software for keeping all versions and copies of documents available to certain security groups and corporate deparments.
• Fully versed with VOIP technologies and implementing QOS on Riverbed Steelheads to traffic shape all voice communications across our AVPN infrastructure.
• Built and rolled out a primary and failover pair of Servers running Active Admin software to run reports, manage and track all Active Directory Functions Company wide.
• Responsible for rolling out a full Lync 2013 Platform for all interoffice communications including voice, data, screen sharing, Group meetings with a SQL Back End.
• Built and maintain a full PGP Encryption server for the addition of Mobile Apple devices on our corporate
• network and encrypted all devices per our SOP's requirements and Bit Locker Software for all Mobile computers for company employees.
• Implemented a pair of clustered Barracuda 400 and 600 platforms for email security to feed the Edge transport servers to funnel email to their respective back office servers and individual Email stores.
• Built and maintain three Message Stats Servers to run reports on all our email statistics, one test, one development and one production server.
• On Call 24/7 for any and all calls that required my expertise/input to repair from my local Langhorne PA office to any issues that involved all of the servers, SAN's, Email issues or anything that I could help with
• Maintain and build all server 08 and 12 R2 templates in VSphere on our virtual environment and update regularly as required.
• Tasked with upkeep of all configuration documentation from Visio to full install documents with screen shots for other engineers to be able to do hundreds of build out and maintenance tasks that I cross train them for.
• Implemented Qualys Guard Software and configured for enterprise to catch any and all security violations or out of date software service packs to keep enterprise up to date at all times. SLA Requirement for our customers to know our enterprise Status via reports.