Information Technology Active Directory
Resume:
John J Carpenter
Sioux Falls, SD 57110
*********@*****.***
Summary:
Self-motivated, goal-oriented IT professional with 17 years of progressive experience. Demonstrated customer service and personnel management skills. Ability to communicate effectively with non-technical and technical staff. Ability to perform tasks in a team as well as independently. Skilled in handling multiple projects and meeting deadlines. Excellent troubleshooting, analyzing and problem solving skills. Highly skilled in developing innovative solutions to handle complex problems. Ability to multi-task, properly prioritize issues and promote teamwork while mentoring employees to maximize effectiveness and morale.
Technical Skills:
Roles: Data Engineering, Network Architect, Network Administrator, Server Administrator, Security Administrator, Computer Administrator and IT Project Management.
Protocols: LAN/WAN, PIM, IGMP, Static Routing, RIP, STP/RSTP, LACP, Ethernet, TCP/IP, IPX/SPX, NetBEUI, NetBios over TCP/IP, SMB, CIFS, SNMP, SMTP/S, POP/S, IMAP/S, LDAP/S, SSH, Telnet, FTP, SFTP, SCP, SSL, TLS, IPsec, L2TP, PPP and more.
Hardware: PC/Server (Dell, HP, IBM, Lenovo, Gateway), Synology NAS Servers and more.
Server Roles and Features: Microsoft Active Directory / Samba 4 Active Directory, DHCP, DNS, WINS, File Server, DFS-R, IIS, Apache, Tomcat, Microsoft Active Directory (Group Policies, Site and Services, Domains and Trusts, Users and Computers), Microsoft Root Certificate Authority, AAD Sync, Remote/VPN/Server/SSL Certs, Windows Firewall with Advanced Security, Microsoft Exchange Server 2003, SQL Server Express 2008/2012, MySQL, Postgres, OpenLDAP, SSO(CAS Server), ADFS 2.0/3.0, PostFix/Dovecot, SOPHOS Encryption Server, Zabbix Server, Foreman, Nagios Server, OCS Inventory NG Server, Rancid Server and more.
OS: Windows Server 2008 R2 Data Center/2012 R2, Windows Server NT/2003, RedHat Enterprise 4/5, CentOS, FreeBSD, AWS Linux, Ubuntu, Windows 98/NT/2000/XP/Vista/7/8 and more.
Applications: Microsoft Office 2003/2007/2010/2013, Cayosoft Administrator, Orion Solarwinds, PowerBroker Identity Services: Open(PBIS), McAfee antivirus, Microsoft Security Essentials, Zoom Video Conference, PC Anywhere, TightVNC, Ultra VNC, Join.Me, LogMeIn, TeamViewer, HEAT, FreshDesk and more.
VPN Topologies: Client-Server, Site-2-Site, Split-Tunnel, Hub and Spoke, Hybrid.
VPN Software: Cisco IPsec/L2TP/PSK VPN, OpenVPN, OpenSwan and Softether.
Virtual Client/Server Software: VMware Workstation, VMware Server, VirtualBox.
Imaging: Windows Automated Installation Kit, Ghost Server, Clonezilla SE (DRBL server), Clonezilla Live, Fog, CloneDeploy.
Volume Licensing: Volume Activation Management Tool, MAK, KMS, Microsoft MVLS.
Domain Registrar/Authoritative: Godaddy Services, Amazon Route 53, Azure DNS zones, Office 365 Domains, Active Directory DNS.
VoIP: Avaya (IP series switches), Avaya IP Phones, Questblue(FreePBX), Yeaklink IP Phones.
Scripts: AutoHotKey, Linux Shell Scripting, Windows Power Shell Scripting.
Cisco: Cisco Meraki - Systems Manager, Cisco Adaptive Security Device Manager (ASDM), Cisco Pix, ASA55XX, 2600, 2950, 2960, 3500, 3750, 3560, 4500, 6500, 7200, 7600, WLC 2100 series Wireless Controller, Aironet 1130AG Series Access Point, Meraki MX Series Security Appliance, Meraki Z1 Security Appliance, Meraki MS220 Series Switch, Meraki MR18 Access Point,
Fortinet: Fortigate 60C POE Appliance, FortiExtender, FortiAPs.
Amazon Web Services: Amazon CloudTrail, Amazon Config, Amazon CloudWatch, Amazon SES, Amazon SNS, Amazon Directory Service, Amazon IAM, Amazon Trust Advisor, Amazon VPC, Amazon EC2, Amazon EBS, Amazon RDS, Amazon S3, Amazon Glacier.
Office 365: Office 365 E1, Office 365 E3, SharePoint 2013 Online, Microsoft Exchange 2013 Online
Microsoft Azure: Azure Cloud Architect with Azure Active Directory Premium, Enterprise Mobility Suite, Intune and Azure Portal management of all IaaS, PaaS, SaaS, etc.
Verizon: Connect IO Modem, UML290-295 4G Modem combined with Cisco Meraki MX Series or Fortigate 60c POE to provide fail-over at Profile by Sanford stores.
Clusters: Windows Server Failover Clustering (WSFC), SQL Server Failover Clustering using failover clustering instance (FCI) to host an availability replica for an availability group. KeepaAlived, HAProxy.
Misc.: Technical Documentation, Software Documentation, Hardware Documentation, Troubleshooting.
Awards:
Information Technology Cornerstone winner; Sanford Hospital - November 2005
Information Technology Cornerstone awards; Sanford Hospital - November 2005 – 2007
Technical Support Award Letters; Gateway Inc. – September 2002 – 2003
Education:
10 / 2011 Epic Certified in Hospital Billing Resolute Administrator.
10 / 2011 Epic Certified in SBO Administrator.
01 / 2002 Southeast Technical Institute, Sioux Falls, SD
05 / 2004 Computer Information Systems - Computer Technician
05 / 2006 Computer Information Systems - Network Administrator
05 / 2008 Computer Information Systems - System Administrator
Experience:
Sanford Frontiers Sioux Falls, SD 07 / 2014 – Current
Information Technology Manager, Network Engineering
My Current position started out as an IT Project Manager but quickly turned into a position that continues to utilize all my previous skills and knowledge as well as creating new ones. When I started Sanford Frontiers to work on their member based business Profile by Sanford, the infrastructure consisted of a complete open source solution with all virtual servers built within Amazon’s Virtual Private Cloud (VPC) service. All other resources were provided by Sanford Health’s infrastructure. Although a good starting point for the business, the Amazon infrastructure itself was simply not capable of scaling with this fast growing business due to bad implementation, design and administration from the current IT staff. The infrastructure was simply failing and becoming more fragile by the day. Sanford Health’s support for the infrastructure and resources it provided was slow in response time and was holding Profile by Sanford back from making adjustments in a timely manner for further growth and expansion within the US.
Fast forward 3 years and the infrastructure is strong and scales with the business easily. The work I have done thus far has given Profile by Sanford the ability to detach itself from Sanford Health’s network and resources allowing it to operate independently. Profile by Sanford has also benefited greatly by my designing, building and administrating all of the new infrastructure in house. This has saved Profile by Sanford currently $230,719 per year, by paying one person verses teams of outside engineering firms and 3rd party resellers, allowing them to reinvest savings back into the company.
Current experience and projects completed for Sanford Frontiers.
Designed, Installed, configured and administration of High Availability (HA) Profileplan Active directory domain for AWS and Azure IaaS.
Designed, Installed, configured and administration of HA Active Directory Federation Services (ADFS) cluster for AWS and Azure IaaS.
Design, setup and administration of Active Directory Federation Service 3.0(ADFS) and Web Application Proxy(WAP) for Single Sign On with claims based, third party trusts, AWS, Azure and Office 365.
Designed, Installed, configured and administration of Duo Security Multi-Factor Authentication (MFA) access for Cisco Meraki client VPNs when they were used. Change to OpenVPN Access Server with Google Authenticator for MFA client VPN access in Azure.
Designed, Installed, configured and administrated automatic snapshots providing 7 days of Amazon Elastic Block Store (Amazon EBS) for fail-over and/or disaster recovery of all servers running on AWS.
Designed, configured and administration of automatic backups/snapshots with Geo-Graphical Recovery Services vaults providing 7 years/7 days of fail-over and/or disaster recovery of all servers running on Azure.
Designed, Installed, configured and administration of HA Cayosoft Administrator server for Windows Active Directory in Azure IaaS.
Setup, designed and verified Profileplan.com, Profileplan.net, Profileplan.us and profilemembers.onmicrosoft.com (Azure AD B2C) for Azure subscription and Office 365 tenant as well as DNS name servers for AWS Route 53 and Azure DNS zones.
Manage Godaddy domain registrar and DNS authoritative for AWS and Azure.
Administration and scripting of all Amazon Web Services and Microsoft Azure.
Created the new and current Amazon Virtual Private Cloud (VPC) from the ground up with multi-zone super subnets for production, pre-production and development environments.
Reverse engineered original Amazon Virtual Private Cloud (VPC) and upgraded VPC router, subnet, gateways and harden security. Upgraded all server instances and upgraded all RDS databases and instances. Fixed failing HDD on 2 instances and added auto security updates on all instances. Removed all old resources like old instances, snapshots, AMIs, security groups, cert key pairs and old S3 buckets. Created CloudWatch alerts with AWS CLI tools and Perl on key instances. Added VPN solution to VPC to extend network securely and new VPC.
Created from the ground up the new Microsoft Azure virtual networks with multi-zone super subnets for production, pre-production and development environments.
Designed from the ground up, because they didn’t have a network scheme before I started, the Sanford Frontiers master network scheme. This includes some of the following networks, Amazon Web Services, corporate networks, franchise networks, 3rd party networks, pre-production networks, development networks, client VPN’s, etc.
Design, setup and administration of all Sanford Frontiers deployed resources like software, hardware, VMs, virtual infrastructure, DVR/NVR, Synology servers, PCs, printers, IP phones, VPNs, networks, security, images, unattended installs and all operating systems.
Design, setup and administration of all Microsoft and Linux computer images and deployment schemes.
Design, build and administration of Amazon/Azure Linux virtual servers which includes some of the following, NAT/Firewall, OpenVPN AS, OpenSwan VPN, DNS, Employee Self-Serve Portal, Zabbix, Foreman, Clonezilla Live Server, Project Management, ITIL and many open source test platforms.
Design and build Linux scripts for servers and computers regarding automation, automatic security updates, joining Microsoft Active Directory, etc.
Designed, setup and configured migration from OpenLDAP to Microsoft Active Directory.
Designed, setup and configured migration from Postfix/Dovecot mail servers to Office 365 E1/E3.
Design, build and administration of all Amazon/Azure Windows virtual servers such as Microsoft Active directory domain controllers, ADFS, WAP, Softether, Lansweeper, PDQ, AAD Connect, Group Policies, KMS, DNS, WINS, Root Certificate Authority, DFS Namespaces and DFS Replication, File Server, Print Server, etc.
Manage Microsoft MVLS for all Profile EA volume licenses.
Setup and configure all Synology NAS servers leveraging Microsoft Active Directory for centralized and secure local storage at all Profile stores. Also utilize Synology Cloud Sync, Azure cloud storage and Azure AzCopy for PCs to distribute computer images to all store locations for local imaging. Utilize Amazon Glacier for secure archiving as well as Azure AzCopy.
Design, setup and administration of all CloneDeploy Windows 10 Enterprise servers with PXE booting (Bios or UEFI) at each LAN segment to image systems without crossing the WAN from within Profile by Sanford stores. This is like Microsoft’s SCCM server and distribution point server scheme. These servers replaced Synology servers.
Designed, Installed, configured and administration of Lansweeper server in AWS and now Azure to monitor all systems and resources within the Frontier’s secure network.
Created from the ground up Foreman server to manage systems from within Frontier’s secured network which was replaced by CloneDeploy servers.
Setup and administration of Office 365 E1/E3, SharePoint Online and Microsoft Exchange Online.
Design and build PowerShell scripts for Microsoft Active directory, Azure and Office 365 E1/E3.
Design, setup and administration of AAD Sync for Office 365 E1/E3 leveraging the new SSO password sync for single sign on.
Design, setup and administration of Microsoft Active directory and Office 365 E1/E3 Users, Groups, OUs, Distribution groups, Security groups, Mailed-Enabled Security Groups, In-Place Holds, Enterprise Mobility Suite, Intune, etc.
Design, setup and administration of Office 365 SharePoint 2013 team sites regarding storage and resource collaboration.
Design, setup and administration of Office 365 Exchange 2013 public folder resources like calendars and contacts for teams, groups and global.
Setup and administration of Office 365 Skype for Business and federated trust to Sanford Health for syncing of contacts between both organizations.
Built and helped migrate Counterpoint server(NCR-CP) for Profile by Sanford’s Point of Sale(POS) systems.
Researched five choices for video conference evaluation which was Zoom, Blue Jeans, Mediasite, Pexip and Lifesize. Worked with Program Development to evaluate pros and cons of each. In the end I recommended Zoom, Profile as well as Parent company Sanford Health has since purchased licenses and currently utilize for remote video conferencing.
Sanford Hospital Sioux Falls, SD 07 / 2011 – 07 / 2014
Information Technology Application Support – Billing
Currently concentrating in the HB collections, reporting workbench extracts, fee schedule imports and updates as well as creation of procedures for fee schedules. I have been building the new reporting workbench feature available in Epic to extract data for reporting purposes to collection agencies.
I have been a part of all the standard responsibilities for the HB billing side like building of WQs, System Auto Actions, Rules, HSD, system profile, clarity, extensions, go-lives, etc. and much more.
Subject matter expert for MOVEit on the SF IT billing team and have setup the majority of all new tasks for migration from Windows/Unix server scripts to MOVEit.
Thoroughly document all issues as well as business related expenses.
Sanford Hospital Sioux Falls, SD 10 / 2008 – 7 / 2011
Information Technology Personal Support Analyst
Serve as the primary point of contact in the IT department for all Children's Care Hospital & School (CCHS) sites.
Helped CCHS transition their network over to Sanford's network and domain.
Provided Primary support for CCHS's Avaya VoIP infrastructure.
Provide support on all information technology related issues which included; support and administration for Firewalls, Terminal Servers, Active Directory Domain controllers, Unix/Linux servers, PCs, Accessories, and WAN/LAN networks.
Provide support for 300+ PCs and 20 different servers as well as 100+ printers. Carry out hardware and software updates, troubleshoot systems, and conduct on-site and telephone support.
Reduced costs while increasing reliability by eliminating use of outside hardware and software consultants through personal hardware and software expertise.
Install equipment, maintain inventories, and help create policy and procedure manuals.
Thoroughly document all issues as well as business related expenses.
Vantage Point Solutions Mitchell, SD 05 / 2007 – 08 / 2008
Engineering Department Data Engineering
Research, design, and implement telecommunications equipment projects for client companies. Prepare project drawings, research of vendor products and preparation of contracts. Also prepare equipment layouts, creation of timelines, creation of action registers, assembly of data requests, assembly of Plans and Specifications, assembly of contract documents, and prepare equipment inventories.
Some of the many duties include installation, configuration, and troubleshooting of various Wide Area Network (WAN) technologies, as well as Local Area Network (LAN), such as DHCP, advanced IP routing and switching, RADIUS, Network Security, content filtering, as well as network performance monitoring, Intrusion Detection systems, and Intrusion Prevention systems.
I have been heavily involved in IP Video deployments for DSLAM and PON clients.
I designed and setup all the VPN connections for Vantage Point and Clients utilizing OpenVPN, Cisco PIX, and Cisco ASA55xx.
Helped designed and setup all the wireless connections for Vantage Point’s new building utilizing Cisco WLC 2100 series LAN controller, and Aironet 1130AG wireless access points.
Before my leave with Vantage Point I was working on designing a Network Monitoring Service to offer to their clients. I created it from the ground up utilizing Solarwinds Orion Network Performance Monitor and Red Hat Enterprise Linux 5, also CentOS 5 for field IDS box, for IDS functions as well as rancid device configuration backups. Both Linux operating systems utilized OpenVPN for Site 2 Site SSL VPN links.
Sanford Hospital Sioux Falls, SD 02 / 2006 – 05 / 2007
Information Technology Personal Support Analyst
Serve as the primary point of contact in the IT department for all Sanford external Hospitals/Clinics in the state of Minnesota.
Provide support on all information technology related issues which included; support and administration for PC, Accessories, and LAN networks.
Perform technical support for more than 11 remote locations and 500+ PCs and several hundred printers. Carry out hardware and software updates, troubleshoot systems, and conduct on-site and telephone support.
Reduced costs while increasing reliability by eliminating use of outside hardware consultants through personal hardware expertise.
Increased efficiency and productivity by implementing use of Tight VNC on all PC’s to administer computer and telecommunications support for remote locations.
Install equipment, maintain inventories, and help create policy and procedure manuals.
Thoroughly document all issues as well as business related expenses.
Sanford Hospital Sioux Falls, SD 10 / 2005 - 02 / 2006
Information Technology Desktop Support Analyst
Provide support on all information technology related issues which included; support and administration for PC, Accessories, and LAN networks.
Helped implement and test client wireless connectivity to Cisco access points at the main corporate building before wireless was rolled out to the rest of Sanford hospitals.
Performed technical support for the main corporate building with 300+ PCs and 20+ printers.
Carry out hardware and software updates, troubleshoot systems, and conduct on-site and telephone support.
Install equipment, maintain inventories, and help create policy and procedure manuals.
Thoroughly document all issues as well as business related expenses.
Sanford Hospital Sioux Falls, SD 10 / 2004 - 10 / 2005
Information Technology Helpdesk / Operations
Serve as initial and primary point of contact to Sanford Hospital Information Technology department.
Provide first level support on all information technology related issues.
Thoroughly document issues using HEAT ticket management system.
Monitored and performed tape backup of all servers in the data center.
Ran scripts and updates for the 32TB IBM SAN server and IBM AS/400 servers as well as provided first level support on all AS/400 issues.
Responsible for offsite tape backup storage needs.
Updated the Helpdesk and Operation documents and manuals once a month.
Midcontinent Communications Sioux Falls, SD 10 / 2003 - 10 / 2004
Overnight Specialty Group Support / Lead Support
Provide support to all departments which included; internet, video, phone, dispatch, and collections. Provide support for residential to corporate clients as well as internal techs to help resolve issues.
Correct and updated different department databases with proprietary software.
Monitored Dispatch equipment for outages in coverage areas.
Gateway Inc. Sioux Falls, SD 09 / 2000 - 10 / 2003
Technical Support Tech III Gateway Priority Access
Consumer Electronic Support Wired/Wireless Network Support
During my stay at Gateway I had the opportunity to work in several different departments. The last and key department I worked in was the Wired/Wireless Network Support Dept. before they closed the Sioux Falls location.
Provided network/technical support for home and business users in setting up Gateway’s network devices.
Helped the company many times recognize issues with computers, software and accessories.
Awards and compliments from customers and excellent customer service/support.
Contact this candidate