Sign in

Systems Operations and Security Engineer

Elgin, IL
June 15, 2019

Contact this candidate


Daniel Boesen

**** ****** **.

Bartlett, IL *****



Alloya Corporate Federal Credit Union, Naperville, IL 4/2018 – Present

Systems Operations and Security Engineer


Merged 2 Active Directory Forests into a single AD Forest

Upgraded AD Forest from 2008 to 2016 Functional level AD Forest. Replaced all Server 2008 Domain Controllers with Server 2016 DC’s.

Upgraded 2 VMware sites running ESXi version 5.5 to VMware ESXi version 6.5. Both comprised 3 ESXi Hosts running VSphere consisting of a total of 85 Windows guests, 5 Linux guests and 3 Appliance machines.

Assisted in an Exchange 2013 on premises environment to a cloud based O365 environment.

Upgraded McAfee ePO version 5.3 to version 5.10.

Major duties and responsibilities:

Administered a Windows environment with 85 Virtual servers and 35 physical servers across 5 Sites.

Administered 2 SAN (NetApp and EMC) instances, maintaining patch level, provisioning volumes and LUNs and creating VM storage pools.

Responsible for provisioning, decommissioning and monthly patching of all Windows systems as well as break/fix, troubleshooting, resolving and documenting OS, performance and software issues.

Worked closely with application developers to assist in any requirements they required as well as troubleshooting application issues.

Monitor and administer security tools including: Network and Host Based IPS, Desktop and System agents, SELM and IPS systems

Vulnerability Management: Administer vulnerability scanning tool (Qualys) to identify vulnerabilities that exist in the environment. Report on open vulnerabilities and remediation efforts. Research open vulnerabilities to understand potential impact to the organization.

Proactively work with and collaborate with business units to identify risk and recommend mitigating controls to protect and secure all areas of the computing environment (electronic information, internal and perimeter network)

Work with all business units by responding to reports of suspicious system activity (phishing emails and other anomalous events)

Assist in audits and security controls reviews.

Maintain and develop documentation and procedures which adhere to regulatory and corporate guidance and policies.

Create and generate reports from various systems which provide broad visibility into the organizations information and cyber security risk and posture.

Technologies Administered:

VMWare VSphere 5.5 and 6.5

Active Directory 2008 to 2016. Provisioning and disabling user accounts, printers and GPO’s.

Exchange 2013 and o365. Provisioning and disabling user account mailboxes, troubleshooting and documenting any OS or Exchange related issues.

PowerShell scripting, troubleshooting and creation/modifications of existing scripts as well as creating new scripts to enhance and assist with daily administrator functions.

McAfee ePolicy Orchestrator

McAfee Endpoint Security Adaptive Threat Protection

McAfee Endpoint Security Firewall

McAfee DLP Endpoint

McAfee Endpoint Security Threat Prevention

McAfee Client Proxy

McAfee Web Gateway

McAfee Email Gateway

Dell SecureWorks Red Cloak agents

Qualys Vulnerability Manager

Trusteer Endpoint Protection

Solarwinds Log and Event Manager

Ivanti Patch Management

Healthcare Financial Management Association (Contract), Westchester, IL 12/2017 – 3/2018

Systems Engineer

Job responsibilities include the day to day management duties of the onsite datacenter operations as well as some Azure based services

Met with software and hardware vendors to explain company’s infrastructure design in order to facilitate future project planning and budgeting.

Build and maintain Windows Server 2008, 2008 R2 and Server 2012 R2. (Virtual and Hardware Based)

VMWare vSphere 5.5

Deploying software installations and updates through Active Directory Group Policy.

Verifying backups, rotation of tapes for offsite storage and performing server and file level restores using VEEAM backup product.

Managed HP Storage Works P-2000 SAN. Provisioning of new disk as well as the monitoring/maintaining of existing Volumes/LUN’s.

Implementing security measures in the server environment

Performed firmware and software upgrades to existing servers & storage arrays

Maintained up to date levels for Microsoft application, security, OS software and patches using Microsoft Intune

LaunchPoint Corporation (Contract), Itasca, IL 6/2017 – 11/2017

Systems Engineer

Responsible for bringing the network infrastructure up to date and in line with the requirements necessary to meet audit and security requirements for HiTrust Certification by the end of the year

Involved in work in three key areas including authentication/authorization security, switch and firewall logging/alerting and centralized management of all network devices

Work was performed and carried out in alignment with the efforts of the system operations team and their parallel windows 7 to windows 10 migration efforts.

Involved in the replacement of existing Netgear FS728 and GS752 series switches with Fortinet FortiSwitch 248D FPOE switches to position the network switch infrastructure to accommodate POE for the existing VOIP installment, the ability to force 802.1x authentication on all ports and to intermesh with existing Fortinet firewalls, management and traffic analyses pieces already in place. (FortiGate, Forti Analyzer and Forti Manager)

Provisioning and configuring 2 Windows 2012R2 servers to act as Radius servers for 802.1x authentication.

Upgrading existing Fortinet FortiGate 100D firewalls from version 5.2.9 to 5.4.5 to accommodate centralized management of all access switches as well as offer a tighter integration with Forti Analyzer and Forti Manager.

Perform numerous subtasks involving close work with Help Desk, Security and Operations teams to meet milestone deadlines and coordinate efforts as to impose as little impact on the user community in their day to day operations

Blue Cross Blue Shield Association (Contract), Lombard, IL 9/2015 – 12/2016

Microsoft Windows Engineer

Job responsibilities include the day to day management duties for Microsoft Windows services spread across the Chicago, Maryland and Kentucky data centers, as well as the installation, configuration, administration and troubleshooting for the following technologies:

oWindows Server 2008, 2008 R2 and Server 2012 R2. (Virtual and Hardware Based)

oVMWare vSphere 5.5

oOpenText RightFax server 10.6

oSolarWinds Patch Manager version 2.1.2

oCylance Protect Security

Creation of scripts using PowerShell, VBScript and Windows scheduled task-based jobs for creating server health reports and up to date records on vulnerability and security patching for an enterprise wide base of 690 + Windows Servers.

Maintaining current to date levels for Microsoft and third-party application security, OS, Service pack and hotfix software and patches, using Windows server update services and SolarWinds Patch Manger.

Level 2/3 support for Enterprise Help Desk tickets through Service-Now ticketing system

Peters & Associates, Oakbrook Terrace, IL 4/2015 – 9/2015

Senior Consultant

Job responsibilities include the support of new and existing clients under the P & A varied support structure leveled umbrella including anything from a single support call to a multi-week client engagement to ongoing regular scheduled onsite visits to client sites

Project: CH Hanson Company

Installation and configuration of Cisco Meraki MR-24 wireless controller and access points to provide coverage for two floors of office space and three separate warehouse/manufacturing spaces.

Project: Creative Werks, LLC.

Installation of 3 VMWare ESX 5.5 hosts for a new office/warehouse/disaster recovery site, designed to serve as an active replication and production environment with their home office.

Project: Handi-Foil Corporation

Replacement/upgrades to existing network infrastructure with new HP Flex Fabric 5700 layer 3 switches to replace the existing core routing devices, and the addition of 3 new HP Storage Works P-2000 SAN w/ I-SCSI disk arrays.

Project: Institutional Capital Corporation (New York Life)

Provide ongoing support of Cisco Firewall/Routers/Switching network infrastructure, as well as the upgrades of existing Cisco devices coupled with an office move to a new location.

Project: Lawndale Christian Health Center

Installation of new HP Storage Works P-2000 SAN disk arrays to expand a growing VMWare and Citrix based infrastructure.

Project: Jernberg Industries

Provide ongoing support for 3 Office/Manufacturing plant locations with a mixture of HP/Cisco/Dell networking devices

Active with bringing internal systems up to date with OS/Firmware/Patch levels for both Network and Windows systems to meet new Sarbanes-Oxley audit requirements.

Project: SD-86 Hinsdale School District

Upgrade of core networking systems from a legacy HP environment to Cisco L3 and L2 switching and ASA firewalls

Installation of HP 850 Wired-WLAN Controller to replace the existing device and manage 135 existing AP’s throughout the school.

Project: SD-114 Manhattan School District

Installation and configuration of HP 830 Wired-WLAN controller as well as 64 access points for Anna McDonald Elementary

Chickasaw Nation Industries, Argonne, IL 11/2012 – 4/2015

Systems Engineer

Client: U.S. Department of Energy

Project: Technical Services (CNITS)

Job responsibilities include the administration/support for the Chicago, Fermi and Berkley Department of Energy local networks, as well as working with a multi-site team of administrators to manage the DOE Office of Science wide area enterprise network.

Installed, configured and maintain McAfee and Nessus vulnerability scanners.

Analyze and respond to security vulnerabilities reported by vulnerability scanners.

Planned, coordinated, and implemented network security measures in order to protect data, software, and hardware.

Evaluate security technology products for purchase.

Maintain Cisco IPS with updates/upgrades.

Assisted in project to combine multiple datacenters into a single one.

Maintain patch management solution for 550 workstations and servers.

Designed, configured, and maintain McAfee (ESM, ELM) SIEM solution for consolidated logs from security equipment, workstations, servers and network infrastructure.

Maintain McAfee ePO antivirus solution for corporate network.

Passed yearly network security audits from the Office of Inspector General and private auditors on NIST 800-53 standards.

Installed, configured and maintain McAfee internet gateway proxy servers.

Analyze incoming e-mail for malicious content and SPAM.

Respond to government security advisories.

Configured and maintain Cisco ASA firewall.

Assisted with VMware View design, configuration, testing and deployment for remote desktop solution including thin and zero client testing.

Apply NIST security policies to working environment to conform to government regulations.

Assisted with creating security policies to conform to NIST standards.

Management role when primary manager was unavailable.

Perform installation, configuration, administration and troubleshooting for the following technologies:

oCisco Catalyst 2940, 3750, 3850, 4507 and 6509 switches

oCisco 2811, 2911, 3925 and ASR 1001 routers

oCisco ASA 5520 and 5585 Firewalls as well as IPS and IDS modules

oSolarWinds Orion Network Monitor

oPlixer Scrutinizer Incident Response tools

oNetScout InfiniStream Network sniffer

oCisco ASDM and IME for ASA/IPS administration

oMicrosoft Exchange 2010

oMicrosoft Lync 2010 / 2013

oBlackberry Enterprise server

oGood Messaging server

oRSA Security Radius servers

oMcAfee Web Gateway

oMcAfee ePolicy Orchestrator

oMcAfee Enterprise Security Manager

oProofPoint E-mail Gateway

oSyncSort Backup Exec (Tape backups)

oVMware 4.x/5.x

Bridgestone Retail Operations, LLC, Bloomingdale, IL 2/1996 – 10/2012

Windows Systems Infrastructure Manager

Led a team of 5 administrators for the support of the Chicago, Akron, Cleveland and Clearwater data centers, which included 85+ remote support offices and approximately 2500 Firestone and Tires Plus store locations across 48 states.

Lead role for all Active Directory functions including the migration of approximately 500 Tires Plus store and user base into the unified Bridgestone domain structure

Lead role from ground up of all design, implementation and migration efforts of the internal corporate E-mail system from Microsoft Exchange 5.5 thru Exchange 2010.

Restructured and upgraded the corporate E-mail system for approximately 1000 support personnel and 2500 store locations across 48 states.

Consolidated 130+ existing standalone servers across 4 datacenters onto a centralized virtualized platform running VMWare 4/5.x

Installed and maintained MS SQL server in a HA Clustered environment

Oversaw the administration for the VMWare vSphere platform for 600+ servers spread across 4 data centers

Installed, configured and maintained Blackberry Enterprise Server for our 650 + remote users

Responsible for antivirus implementation and support using Symantec Endpoint Protection

Maintained and administered the EMC Clariion SAN environment.

Worked closely with the Help Desk, offering Level 2 and 3 support

Coordinated with vendors for purchasing of new equipment as well as maintenance of existing support contracts.

Mentored less experienced administrators and was a strong proponent of cross training for team members.

Worked closely with other operations teams to maintain business continuity and resolve any issues across the enterprise.

VMWare thru 5.x – Server consolidation

Blackberry Enterprise Server – 650 + remote users

Symantec Endpoint Protection

Websense Web Gateway

Analyzed equipment performance records in order to determine the need for repair and replacement.

Coordinated with vendors and with company personnel in order to facilitate purchases.

Recommended changes to improve systems and network configurations and determined hardware and software requirements related to such changes.

Performed data backups and disaster recovery operations.

N.O.B.B. Engineering Services, Inc., Park Ridge, IL 3/1991 – 1/1996

LAN Specialist

Modified existing software to correct errors, to adapt it to new hardware and to upgrade interfaces and improve performance.

Executed daily operations of server health monitoring, troubleshooting end user problems, data backup and retrieval.

Analyzed information to determine, recommend and plan installation of a new system and modification of an existing system.

Consulted with engineering staff to evaluate interface between hardware and software, developed specifications and performance requirements and resolved customer problems.

Coordinated installation of new software systems.

Developed and directed software system testing and validation procedures


2 Years completed, Michigan Technological University, Houghton, MI

2 Years Core Curriculum, Oakton Community College, Morton Grove, IL


Cisco Certified Network Associate - CCNA

Microsoft Certified Systems Engineer – MCSE

Certified Novell Engineer – CNE

In process of obtaining CISSP Certification as well as updating current CCNA certification status


Trained in all areas of Microsoft Exchange, Microsoft Active Directory, EMC VMware 3.x – 6.5, EMC Navisphere Clariion CX600, Symantec Endpoint Protection, McAfee ePO, McAfee Web Gateway, McAfee Email Gateway and Blackberry Enterprise Server

Contact this candidate