Bartlett, IL *****
Alloya Corporate Federal Credit Union, Naperville, IL 4/2018 – Present
Systems Operations and Security Engineer
Merged 2 Active Directory Forests into a single AD Forest
Upgraded AD Forest from 2008 to 2016 Functional level AD Forest. Replaced all Server 2008 Domain Controllers with Server 2016 DC’s.
Upgraded 2 VMware sites running ESXi version 5.5 to VMware ESXi version 6.5. Both comprised 3 ESXi Hosts running VSphere consisting of a total of 85 Windows guests, 5 Linux guests and 3 Appliance machines.
Assisted in an Exchange 2013 on premises environment to a cloud based O365 environment.
Upgraded McAfee ePO version 5.3 to version 5.10.
Major duties and responsibilities:
Administered a Windows environment with 85 Virtual servers and 35 physical servers across 5 Sites.
Administered 2 SAN (NetApp and EMC) instances, maintaining patch level, provisioning volumes and LUNs and creating VM storage pools.
Responsible for provisioning, decommissioning and monthly patching of all Windows systems as well as break/fix, troubleshooting, resolving and documenting OS, performance and software issues.
Worked closely with application developers to assist in any requirements they required as well as troubleshooting application issues.
Monitor and administer security tools including: Network and Host Based IPS, Desktop and System agents, SELM and IPS systems
Vulnerability Management: Administer vulnerability scanning tool (Qualys) to identify vulnerabilities that exist in the environment. Report on open vulnerabilities and remediation efforts. Research open vulnerabilities to understand potential impact to the organization.
Proactively work with and collaborate with business units to identify risk and recommend mitigating controls to protect and secure all areas of the computing environment (electronic information, internal and perimeter network)
Work with all business units by responding to reports of suspicious system activity (phishing emails and other anomalous events)
Assist in audits and security controls reviews.
Maintain and develop documentation and procedures which adhere to regulatory and corporate guidance and policies.
Create and generate reports from various systems which provide broad visibility into the organizations information and cyber security risk and posture.
VMWare VSphere 5.5 and 6.5
Active Directory 2008 to 2016. Provisioning and disabling user accounts, printers and GPO’s.
Exchange 2013 and o365. Provisioning and disabling user account mailboxes, troubleshooting and documenting any OS or Exchange related issues.
PowerShell scripting, troubleshooting and creation/modifications of existing scripts as well as creating new scripts to enhance and assist with daily administrator functions.
McAfee ePolicy Orchestrator
McAfee Endpoint Security Adaptive Threat Protection
McAfee Endpoint Security Firewall
McAfee DLP Endpoint
McAfee Endpoint Security Threat Prevention
McAfee Client Proxy
McAfee Web Gateway
McAfee Email Gateway
Dell SecureWorks Red Cloak agents
Qualys Vulnerability Manager
Trusteer Endpoint Protection
Solarwinds Log and Event Manager
Ivanti Patch Management
Healthcare Financial Management Association (Contract), Westchester, IL 12/2017 – 3/2018
Job responsibilities include the day to day management duties of the onsite datacenter operations as well as some Azure based services
Met with software and hardware vendors to explain company’s infrastructure design in order to facilitate future project planning and budgeting.
Build and maintain Windows Server 2008, 2008 R2 and Server 2012 R2. (Virtual and Hardware Based)
VMWare vSphere 5.5
Deploying software installations and updates through Active Directory Group Policy.
Verifying backups, rotation of tapes for offsite storage and performing server and file level restores using VEEAM backup product.
Managed HP Storage Works P-2000 SAN. Provisioning of new disk as well as the monitoring/maintaining of existing Volumes/LUN’s.
Implementing security measures in the server environment
Performed firmware and software upgrades to existing servers & storage arrays
Maintained up to date levels for Microsoft application, security, OS software and patches using Microsoft Intune
LaunchPoint Corporation (Contract), Itasca, IL 6/2017 – 11/2017
Responsible for bringing the network infrastructure up to date and in line with the requirements necessary to meet audit and security requirements for HiTrust Certification by the end of the year
Involved in work in three key areas including authentication/authorization security, switch and firewall logging/alerting and centralized management of all network devices
Work was performed and carried out in alignment with the efforts of the system operations team and their parallel windows 7 to windows 10 migration efforts.
Involved in the replacement of existing Netgear FS728 and GS752 series switches with Fortinet FortiSwitch 248D FPOE switches to position the network switch infrastructure to accommodate POE for the existing VOIP installment, the ability to force 802.1x authentication on all ports and to intermesh with existing Fortinet firewalls, management and traffic analyses pieces already in place. (FortiGate, Forti Analyzer and Forti Manager)
Provisioning and configuring 2 Windows 2012R2 servers to act as Radius servers for 802.1x authentication.
Upgrading existing Fortinet FortiGate 100D firewalls from version 5.2.9 to 5.4.5 to accommodate centralized management of all access switches as well as offer a tighter integration with Forti Analyzer and Forti Manager.
Perform numerous subtasks involving close work with Help Desk, Security and Operations teams to meet milestone deadlines and coordinate efforts as to impose as little impact on the user community in their day to day operations
Blue Cross Blue Shield Association (Contract), Lombard, IL 9/2015 – 12/2016
Microsoft Windows Engineer
Job responsibilities include the day to day management duties for Microsoft Windows services spread across the Chicago, Maryland and Kentucky data centers, as well as the installation, configuration, administration and troubleshooting for the following technologies:
oWindows Server 2008, 2008 R2 and Server 2012 R2. (Virtual and Hardware Based)
oVMWare vSphere 5.5
oOpenText RightFax server 10.6
oSolarWinds Patch Manager version 2.1.2
oCylance Protect Security
Creation of scripts using PowerShell, VBScript and Windows scheduled task-based jobs for creating server health reports and up to date records on vulnerability and security patching for an enterprise wide base of 690 + Windows Servers.
Maintaining current to date levels for Microsoft and third-party application security, OS, Service pack and hotfix software and patches, using Windows server update services and SolarWinds Patch Manger.
Level 2/3 support for Enterprise Help Desk tickets through Service-Now ticketing system
Peters & Associates, Oakbrook Terrace, IL 4/2015 – 9/2015
Job responsibilities include the support of new and existing clients under the P & A varied support structure leveled umbrella including anything from a single support call to a multi-week client engagement to ongoing regular scheduled onsite visits to client sites
Project: CH Hanson Company
Installation and configuration of Cisco Meraki MR-24 wireless controller and access points to provide coverage for two floors of office space and three separate warehouse/manufacturing spaces.
Project: Creative Werks, LLC.
Installation of 3 VMWare ESX 5.5 hosts for a new office/warehouse/disaster recovery site, designed to serve as an active replication and production environment with their home office.
Project: Handi-Foil Corporation
Replacement/upgrades to existing network infrastructure with new HP Flex Fabric 5700 layer 3 switches to replace the existing core routing devices, and the addition of 3 new HP Storage Works P-2000 SAN w/ I-SCSI disk arrays.
Project: Institutional Capital Corporation (New York Life)
Provide ongoing support of Cisco Firewall/Routers/Switching network infrastructure, as well as the upgrades of existing Cisco devices coupled with an office move to a new location.
Project: Lawndale Christian Health Center
Installation of new HP Storage Works P-2000 SAN disk arrays to expand a growing VMWare and Citrix based infrastructure.
Project: Jernberg Industries
Provide ongoing support for 3 Office/Manufacturing plant locations with a mixture of HP/Cisco/Dell networking devices
Active with bringing internal systems up to date with OS/Firmware/Patch levels for both Network and Windows systems to meet new Sarbanes-Oxley audit requirements.
Project: SD-86 Hinsdale School District
Upgrade of core networking systems from a legacy HP environment to Cisco L3 and L2 switching and ASA firewalls
Installation of HP 850 Wired-WLAN Controller to replace the existing device and manage 135 existing AP’s throughout the school.
Project: SD-114 Manhattan School District
Installation and configuration of HP 830 Wired-WLAN controller as well as 64 access points for Anna McDonald Elementary
Chickasaw Nation Industries, Argonne, IL 11/2012 – 4/2015
Client: U.S. Department of Energy
Project: Technical Services (CNITS)
Job responsibilities include the administration/support for the Chicago, Fermi and Berkley Department of Energy local networks, as well as working with a multi-site team of administrators to manage the DOE Office of Science wide area enterprise network.
Installed, configured and maintain McAfee and Nessus vulnerability scanners.
Analyze and respond to security vulnerabilities reported by vulnerability scanners.
Planned, coordinated, and implemented network security measures in order to protect data, software, and hardware.
Evaluate security technology products for purchase.
Maintain Cisco IPS with updates/upgrades.
Assisted in project to combine multiple datacenters into a single one.
Maintain patch management solution for 550 workstations and servers.
Designed, configured, and maintain McAfee (ESM, ELM) SIEM solution for consolidated logs from security equipment, workstations, servers and network infrastructure.
Maintain McAfee ePO antivirus solution for corporate network.
Passed yearly network security audits from the Office of Inspector General and private auditors on NIST 800-53 standards.
Installed, configured and maintain McAfee internet gateway proxy servers.
Analyze incoming e-mail for malicious content and SPAM.
Respond to government security advisories.
Configured and maintain Cisco ASA firewall.
Assisted with VMware View design, configuration, testing and deployment for remote desktop solution including thin and zero client testing.
Apply NIST security policies to working environment to conform to government regulations.
Assisted with creating security policies to conform to NIST standards.
Management role when primary manager was unavailable.
Perform installation, configuration, administration and troubleshooting for the following technologies:
oCisco Catalyst 2940, 3750, 3850, 4507 and 6509 switches
oCisco 2811, 2911, 3925 and ASR 1001 routers
oCisco ASA 5520 and 5585 Firewalls as well as IPS and IDS modules
oSolarWinds Orion Network Monitor
oPlixer Scrutinizer Incident Response tools
oNetScout InfiniStream Network sniffer
oCisco ASDM and IME for ASA/IPS administration
oMicrosoft Exchange 2010
oMicrosoft Lync 2010 / 2013
oBlackberry Enterprise server
oGood Messaging server
oRSA Security Radius servers
oMcAfee Web Gateway
oMcAfee ePolicy Orchestrator
oMcAfee Enterprise Security Manager
oProofPoint E-mail Gateway
oSyncSort Backup Exec (Tape backups)
Bridgestone Retail Operations, LLC, Bloomingdale, IL 2/1996 – 10/2012
Windows Systems Infrastructure Manager
Led a team of 5 administrators for the support of the Chicago, Akron, Cleveland and Clearwater data centers, which included 85+ remote support offices and approximately 2500 Firestone and Tires Plus store locations across 48 states.
Lead role for all Active Directory functions including the migration of approximately 500 Tires Plus store and user base into the unified Bridgestone domain structure
Lead role from ground up of all design, implementation and migration efforts of the internal corporate E-mail system from Microsoft Exchange 5.5 thru Exchange 2010.
Restructured and upgraded the corporate E-mail system for approximately 1000 support personnel and 2500 store locations across 48 states.
Consolidated 130+ existing standalone servers across 4 datacenters onto a centralized virtualized platform running VMWare 4/5.x
Installed and maintained MS SQL server in a HA Clustered environment
Oversaw the administration for the VMWare vSphere platform for 600+ servers spread across 4 data centers
Installed, configured and maintained Blackberry Enterprise Server for our 650 + remote users
Responsible for antivirus implementation and support using Symantec Endpoint Protection
Maintained and administered the EMC Clariion SAN environment.
Worked closely with the Help Desk, offering Level 2 and 3 support
Coordinated with vendors for purchasing of new equipment as well as maintenance of existing support contracts.
Mentored less experienced administrators and was a strong proponent of cross training for team members.
Worked closely with other operations teams to maintain business continuity and resolve any issues across the enterprise.
VMWare thru 5.x – Server consolidation
Blackberry Enterprise Server – 650 + remote users
Symantec Endpoint Protection
Websense Web Gateway
Analyzed equipment performance records in order to determine the need for repair and replacement.
Coordinated with vendors and with company personnel in order to facilitate purchases.
Recommended changes to improve systems and network configurations and determined hardware and software requirements related to such changes.
Performed data backups and disaster recovery operations.
N.O.B.B. Engineering Services, Inc., Park Ridge, IL 3/1991 – 1/1996
Modified existing software to correct errors, to adapt it to new hardware and to upgrade interfaces and improve performance.
Executed daily operations of server health monitoring, troubleshooting end user problems, data backup and retrieval.
Analyzed information to determine, recommend and plan installation of a new system and modification of an existing system.
Consulted with engineering staff to evaluate interface between hardware and software, developed specifications and performance requirements and resolved customer problems.
Coordinated installation of new software systems.
Developed and directed software system testing and validation procedures
2 Years completed, Michigan Technological University, Houghton, MI
2 Years Core Curriculum, Oakton Community College, Morton Grove, IL
Cisco Certified Network Associate - CCNA
Microsoft Certified Systems Engineer – MCSE
Certified Novell Engineer – CNE
In process of obtaining CISSP Certification as well as updating current CCNA certification status
Trained in all areas of Microsoft Exchange, Microsoft Active Directory, EMC VMware 3.x – 6.5, EMC Navisphere Clariion CX600, Symantec Endpoint Protection, McAfee ePO, McAfee Web Gateway, McAfee Email Gateway and Blackberry Enterprise Server