CNIC N* IT Support

NK Personnel Resume

Engineer/Scientist 4

Name: Keith Drakeford

Education: Bachelor of Science Degree in Computer and Information Science, January 2014 ECPI University, Concentration: Network Security

Security Clearance: Secret / T5

U.S. Citizenship: X YES NO

Relevant General and Specialized Experience

Work Experience

Insight Global: (01/2023 - present)

Sr. System Administrator - SDP

Senior member of the system engineering team for a major DOD enterprise network, Service Delivery Point (SDP). Actively monitors operational condition of all systems. Performs system operations and maintenance functions.

Manages the functionality and efficiency of a group of computers running on one or more operating systems, specifically Windows and Linux

Maintains the integrity and security of servers and systems.

Manages active directory settings

Collaborates with other system engineers or application owners to design solutions for customers.

Identifies hardware, software and services required to meet customer needs.

Manages system stability, operation, and scalability.

Provide technical guidance for troubleshooting systems and designing new solutions.

Evaluate current or developing technologies to consider for implementation weighing such factors as cost, compatibility, and usability.

Communicate with customers to understand current and future requirements for their systems and be able to speak on their behalf to the configuration management team.

Document design specifications, installation instructions, new processes, and procedures.

Perform ongoing hardware and software maintenance to include installing or upgrade hardware or software.

Perform patching as assigned.

Perform SCAP/STIG functions as assigned when Quarterly STIG updates are released.

Configure servers and appliances to meet functional specifications and cybersecurity requirements.

Evaluate existing systems to suggest changes to meet organizational requirements.

Communicate project information through technical reports and presentations.

Maintains current knowledge of relevant technologies as assigned.

Prepare system documentation, including system configuration, administration guides, standard operating procedures and concept of operations as required.

Participates in special projects as required.

KBR Wylye: (06/2022 – 12/2022)

C5ISC-MSSPL-HSIT Dental Radiology System Engineer: 06/2022 – 12/2022

Responsible for the administration of the following data systems:

Computer systems hardware, software, information systems & peripheral equipment such as servers, desktops, switches, printers, and storage devices.

Managing the deployment of Microsoft Windows workstations, servers, Active Directory, and Group Policy Objects to multiple treatment facilities.

Streamline deployments with MDT and PowerShell scripting.

Assessing lab and deployed systems for new vulnerabilities using Tenable Nessus (ACAS) and Security Technical Implementation Guide (STIG) updates.

Deploy software patches and security updates

Configure, troubleshoot, and update SQL databases as needed.

Cisco networking

Yubi Key

Working knowledge of the DoD Risk Management Framework process

Tenable Nessus (ACAS)

Microsoft Windows and Server platforms

Active Directory

PowerShell

Microsoft Deployment Toolkit (MDT)

Microsoft SQL Server

Configuration and maintenance of VMware Virtual Machines

General Dynamics Information Technology (10/20-8/13/2021)

AOC Feilding/Network-Systems Engineer Site Support Team (SST)

Provide support and assistance with fielding major systems upgrades to the AOC Weapon System configuration.

Worked with Cloud Technologies such as AWS supporting on-prem to cloud migrations

Deploy ACAS within AWS as an EC2 instance.

Configured site to site VPN on the Edge Firewall within the AWS Environment.

Provide detailed knowledge and experience in the configuration, installation, deployment, and maintenance of relevant components in an AOC environment to include but not limited to Windows Server 2008/2012R2, Windows 10 operating system, Microsoft Exchange Server 2010/2013, Microsoft SQL Server, Active Directory, McAfee ePolicy Orchestrator (ePO), Palo alto, Host Base Security System (HBSS), VMware (VCP), Citrix ZenApp 6.0 and NetScaler, antivirus, firewalls, load balancers, etc.

Travel to sites located both CONUS and OCONUS. Maintain back-up and redundancy per organization data priorities

Manages the functionality and efficiency of a group of computers running on one or more operating systems.

Maintains the integrity and security of servers and systems.

Maintains system documentation

Interacts with users and evaluates vendor products.

Makes recommendations to purchase hardware and software, coordinates installation and provides backup recovery.

Develops and monitors policies and standards for allocation related to the use of computing resources.

May program in an administrative language.

Oversees implementation of testing strategies and documentation of results.

Provides advice and training to end-users.

Provides guidance and work leadership to less-experienced staff members and may have supervisory responsibilities.

Serves as a technical team or task leader.

Maintains current knowledge of relevant technologies as assigned.

Participates in special projects as required.

Applied-Insight Inc, Hampton, VA (07/2018-10/20)

ACC CCS/SCOZ Testing and Integration Lead Engineer

Validate installation of supporting network infrastructures and application software baselines for servers and end-user workstations.

Provide technical recommendations for optimization of system performance and

resources.

Perform systems analysis and database administration.

Managed arcsight Recon, enterprise security manager, arcsight Intelegence, with recon log management and security compliance tool.

Ensure Security manager is detecting real time threats and user behavior identifying hidden threats

Solve complex customer problems concerning C2 system inter-relationships and integration (For example: build active directory server; generate failover, outage, ASI, and other related reports.

Perform daily systems analysis, software/hardware upgrades, implementation support, and network services to ensure the integration of all systems components (i.e., procedures, databases, policies, software, and hardware). All recommended courses of actions (COAs) shall be provided to COR.

Determine if established networks need improvement and recommend solutions to government POC/COR.

Oversee/perform functional tests of the hardware/software to resolve technical problems, ensure appropriate on-site repairs, and identify potential failure points or other concerns. Contractor shall report all findings to COR.

Ensure that new or altered programs interface with existing systems.

When requested, develop proposals to enhance and improve efficiencies to meet future network operational requirements.

Assess network requirements related to development of the system architecture and changes to system/program specifications. Provide written recommendations for any suggested network/system modifications to the COR.

Determine physical storage requirements based on the volume of data, data relationships, size of records, anticipated growth, access methods, and data compression techniques (e.g., replicating user data across multiple sites).

Administer Windows and Unix-based servers& workstations at the operating system and application level for C2 systems for both physical and virtual instances.

Support installed software (mission applications) including, for example: updates and releases, patches, and Time Compliant Network Orders (TCNO’s) for C2 systems.

Manage Commercial/Government off the shelf (COTS/GOTS) software support for C2 Systems.

Manage identified C2 System network and infrastructure devices/equipment including

software setup and configuration management.

Troubleshoot and remediate network failures for IP based networks affecting C2 systems.

Administer National Security Agency (NSA) approved network encryption devices, Storage Area Network (SAN), Network Attached Storage (NAS), and network infrastructure supporting C2 systems.

Provide pertinent data, when requested, supporting the accreditation and certification of C2 Systems.

Adhere to IA policies and procedures in compliance with Defense Intelligence Security Agency (DISA) STIGs and Air Force Network Operations (AFNETOPS) directives for C2 systems.

Review various system diagram, patching, testing/integration, security, configuration, and upgrade planning documentation from team leads, COR, and help desk to ensure that all requirements are included, such as functional descriptions, maintenance manuals, user manuals, test and implementation plans, cost analysis, specification documents and/or database feasibility studies (e.g., field new baseline loads).

Implement Government approved network configurations changes.

Perform site surveys to assist with network configuration design considerations.

Perform system/application/patch installation and configuration, system services, and maintenance (e.g., document loading process, issues/resolutions of new software/segment, test software in 6 test suites before releasing for live operations).

Monitor system performance and provide in writing any noted software/firmware deficiencies and their impact on operations and security. Noted deficiencies will be included as part of the Monthly Status Report (MSR). (See Section 3 for information related to MSR deliverables).

Prepare briefings and reports reflecting technical recommendations, skill requirements, and direction to meet new requirements associated with projected changes and new equipment and systems. Documentation shall be provided in accordance with

Section Provide hands on training to active duty and civilian personnel as needed when performing C4I daily operations tasks. Any recommendations should be included as part of the MSR.

Ausgar Technologies Inc, Norfolk, VA (09/2017-07/2018)

Navy Warfare Development Command (NWDC), Navy Continuous Training Environment (NCTE) Cyber Security Engineer III

Provide Information System Security Engineering expertise throughout the system's entire lifecycle in accordance with DIACAP and NIACAP.

Certification and Accreditation (C&A) activities, which include developing the security requirements, developing artifacts, conducting security test and evaluations, developing risk assessments, and documenting the information system in security system analysis plans through all accreditation activities.

Facilitate the accreditation of DoD and Federal information technology systems and utilize technical skills to assess and implement required system security controls.

Conduct C&A of DoD and Federal Information Systems, which will include developing security requirements, data gathering and documenting system security plans, risk assessments, contingency plans, security test and evaluation plans, security concepts of operations.

Deployed Splunk clusters in AWS Cloud for monitoring and troubleshooting enterprise endpoints Within red hat Linux

Built Splunk servers from the ground up and had to ensure the configuration of SNMP in RHEL for them to properly work

Ensure the proper packages for Splunk are installed by doing a yum install net-SNMP which will install the appropriate packages

create snmp.conf file do define how the SNMP daemon will behave

Integrate windows and Linux environments with realmd command

Coordinate and perform technical and non-technical certification & accreditation assessments to evaluate compliance with established information assurance policies and regulations according to DoD, NSA, DISA, NIST and other IA related military/federal requirements.

Develop, review, and maintain security policies and standards on commonly deployed systems, such as MS Windows, UNIX/LINUX, routers, switches, firewalls, wireless bridges, wireless intrusion detection systems, databases, web servers and software applications.

Managed arcsight Recon, enterprise security manager, arcsight Intelegence, with recon log management and security compliance tool.

Ensure Security manager is detecting real time threats and user behavior identifying hidden threats

Use effective writing and verbal communication skills to advise management on security requirements and information assurance trends and solutions.

Manage multiple projects and deadlines.

Vectrus Inc, Norfolk, VA (04/2017-09/2017)

Unified Atlantic Region Network Operations Center (UARNOC)- Shore Lead Engineer (Fleet Shore Engineering Team)

Unified Atlantic Region Network Operations Center (UARNOC), serving as technical advisor to government and other contractor personnel. Conducts on site troubleshooting and maintenance assistance for problems that cross multiple systems, provides training on new systems, and works processes that cross multiple systems. Provides leadership to other NOC and FSET engineers at UARNOC.

Coordinate repair of installed C4I systems and other advisory and systems engineering services.

Provide support for shore-based facilities to ensure those facilities are fully operational to meet the requirements of fleet units/ships assigned permanently or temporarily to the AOR. Support fleet units/ships as required to ensure connectivity to naval

networks. Provide support for NOC restoral procedures, rapid response for emergent issues and network documentation and training as required for Fleet NOC personnel.

Provide on-site engineering and technical support for the integration of IT hardware and

software upgrades.

Provide support for maintenance of the system architecture configuration and systematic baseline to meet the site program objectives; on-site support shall provide activity based technical and engineering support for process configuration.

Provide recommendations for alternative courses of action to accomplish the integration of upgrades, modifications, and networking strategies more effectively.

Assist in conducting preliminary network testing after integration and configuration of site upgrades and modifications.

Support Information Assurance, to include adherence to IA policies, operations of IA related systems (HBSS, IDS, antivirus, firewalls, load balancers, etc.).

Provide support for restoral procedures, rapid response for emergent issues, and network documentation.

Honeywell Technology Solutions Inc, Norfolk, VA (11/2015 - 04/2017)

U.S Fleet Forces Command NAVNorth Network/ Systems Engineer

Re-Engineer and develop US Fleet Forces virtual environment on the Classified and Unclassified networks.

Upgraded from ESXI 5.5 to ESXI 6.0. Build virtual ACAS (Security Center), NESSUS, Passive Vulnerability Scanner, Kiwi logger, WhatsUp Gold, CISCO primer serves for the Primary and Secondary suites.

Build CISCO UCS TMS servers and Virtual Windows servers 2012 on the Classified and Unclassified networks. To support US Fleet Force VTC team for Primary and Secondary suites.

HBSS Administrator provide IT repair, maintenance, operations, logistics, and engineering

services to ensure secure, reliable, and uninterrupted availability of US Fleet Force Engineering, Tactical and VTC Enterprise IT Systems.

ACAS Administrator provide sustainment support of the US Fleet forces network vulnerabilities security assessment capability and related hardware and software per enterprise design and build guidance. Assist the Government in implementing technical solutions ensuring adherence to established Government and US Fleet Forces Linux ACAS operational/technical requirements and standards.

Configure and deploy new and/or additional clients on the locally managed networks.

Application server administration and configuration including but not limited to: Single Sign On, Identity Management, Public Key Infrastructure Management, Cryptographic Log On, Server Replication, Backups and Load balancing.

On-site operational and functional support for application and end users and support personnel, for but not limited to application deployment, active directory management, data recovery services, client hardware and software support.

Analysis and guidance for application architectural enhancements including but not limited to: Information Assurance/security, high availability, scalability, capacity planning, network design, cable plant and IP management

Maintain the systems and applications security integrity including maintaining and updating the Certification and Accreditation (C&A) packages and maintaining compliance with current Information Assurance policies.

Experience with virtual environments to include Microsoft Hyper-V and VMware

Experience with Storage Area Networks preferably NetApp

Command Post Technologies, Suffolk, VA (07/2015 – 11/2015)

Navy Cyber Defense Operations Command, Capability Manager (UNIX RED HAT/SUSE SME II)

Maintain Navy Assured Compliance Assessment System (ACAS) collection systems. N61 Department SharePoint Administrator responsible for managing SQL server deployment to include adding and suspending user accounts.

Provide Enterprise support for ACAS and Continuous Monitoring and Risk Scoring-Navy (CMRS-N) advanced technical issues. Maintain SME-level knowledge of current and future ACAS, Security Center, and Asset Publishing Service (APS) components.

Provide SME-level input for development of Navy ACAS and CMRS-N policies and TTPs. Ensure ACAS Scan data is populated to CMRS-N, as well as coordinate with Defense Information Systems Agency (DISA) for delivery of Navy ACAS data to Tier II CMRS.

Facilitate delivery of HBSS Capability Manager tracking/artifacts/documentation to the HBSS Overarching Project Management/Team Lead or his/her designated representative.

Responsible for initial loading, STIGGing, Patching of ACAS Security Console (SC) and CMRS-N

servers

Maintain ACAS date feed, via APS to DISA (Tier II)

Provide ATO Certification & Accreditation artifacts for ACAS and CMRS capabilities

Provide SME level input\support for SC Administrators and HBSS Support Admin’s

Lead for the HBSS connection to CMRS-N

Provide Administrative duties for over 800 physical and virtual environments on two enclaves in production and development domains.

Five Rivers Services LLC, Portsmouth, VA (04/2014 – 06/2015)

US Coast Guard Command Control Communications Center, Engineering and Development, Sustainment Team, Systems Administrator

Administration of Multiple Active Directory Domain controllers in a forest for U.S Coast Guard

to include the administration of Organizational Units and Group Policies for servers and users joined to the Domains.

Provides full-spectrum communications, information technology, network operations, video teleconferencing, audiovisual, multimedia, and command, control, communications, computers,

intelligence, Surveillance and Reconnaissance services and solutions to Department of Defense, Federal Government agencies, and the commercial sector.

Provide engineering support services, for the unclassified Common Operational Picture project team, including upgrades, optimizations, repairs, logistics, and maintenance tasks on core systems.

Monitor and isolate systems and hardware deficiencies impacting VLAN/LAN/WAN.

Configure, troubleshoot, and maintain systems switches and routers, both VLAN/LAN/WAN and virtual distributed switches to include iSCI configurations.

Create and configure Dvport groups and associated Dv 10Gb and 1 Gb switches.

Establish and maintain virtual servers and network storage devices (SANS) using VMWare/ vSphere/ vCenter/ESXI.

Configure Data base volumes and Multipathing for Dell and Nimble SANS.

Worked with Engineering and Development team for desired configuration for Window 2008 R2, Oracle Linux and RHEL Operating systems and Databases.

Managed Enterprise HBSS for Coast Guard and Companies private domains.

Create and provide systems documentation and Network diagrams for five Chassis for the CMC, Blades, iDrac, ESXi 5.5VMWare Servers, Switches and SANS to the project technical writer for final submission to the Government approval.

Develop Continuity of Operations (COOP) and Disaster Recovery (DR) operations and conduct evaluation of COOP and DR during annual incident response training.

Identified weaknesses in fielded configurations while performing system requirement analysis

and design modifications.

Dynamic Network Enterprise, Inc. Norfolk, VA (08/2013 – 04/2014)

Military Sealift Command N6 IT, Department Systems Analyst/Administrator

Assist with engineering and acceptance testing and evaluation on all software, hardware, and database related changes.

Provide detailed reports to supervisor regarding installations and configurations. Update and maintain documentation for daily, weekly, and monthly tasks to ensure system reliability and availability.

Track all system engineering trouble reports and resolutions using provided helpdesk tracking system

Active Directory Systems Administrator with specific authority to add/ remove users and assign

user permissions to network share and resource. Create and change user password

Verify/Change Directory group policies for correctness in the directory. Control users’ access to server resources, logging specific users out of the system as directed.

Create/maintain a test area for test instances. Provide installation of updated software into the test and production environments. Write Problem Reports/Change Requests (PR/CR) identifying system problems or enhancements against production system and test instances

Verify/Change the UCPS variables on the CITRIX server. Assist in the migration from the legacy payroll servers, UCPS, to DFAS system. Establishment of VPN services for transfer of customer information.

Provide back-up and cleanup of East (Atlantic) and West (Pacific) UCPS systems. Remotely monitor, log off users, and stop running processes when necessary. Providing trouble shooting support for customers experiencing payroll hardware/software problems. Assist with training the users on any process changes due to application updates.

Northrop Grumman Technical Services, Virginia Beach, VA (08/2003 – 03/2012)

Computer Systems Analyst

Serve as appointed GS13 equivalent while providing systems administrator duties for Commander Second Fleets IT division.

Assembled, troubleshot, repaired, and maintained hardware/software configurations for various server, router, and switch types.

Networked using Ethernet, TCP/IP and UDP protocols, LAN, and WAN network topologies,

connectivity devices including routers, switches, hubs, and printers; network traffic analysis and maintenance to include defense and counter measures.

Microsoft Windows 2000-2008R2 Server and workstations installation and administration, Deployment of active directory and domain controller configuration. Security through group policy employment of WDS, WSUS configuration, DHCP pools, WINS, DNS, and VPN.

Worked with THIRD FLEET in San Diego and Hawaii to trouble shoot the system configurations for operating in the C.O.P Synchronization environment for SECOND FLEET and RIMPAC exercise support

Applied system analysis and design skills in portable workstation interoperability, shipboard local area networking linked by fiber optics, and computer systems imbedded within other range systems.

Responsible for analyzing computer hardware and software relationships and providing remedial actions and/or recommendations for corrective solutions for GCCS-M machines.

Installed and uninstalled LDTS at remote sites using a variety of communication paths to include

SIPRNET, T1, and dial-up connection; transport, install and uninstall Participant Instrumentation Packages on ships, vehicles, and landing craft to bases and facilities on the East Coast, Gulf of Mexico, and Puerto Rico.

Provided coordination between the SOOT, JECG, CVW and MEU and NWC detachments supporting JTFEX, C2X, UNITAS, Independent deplorer and participating range facilities.

Contact this candidate