Roberto Carpio
**** ***** **** *** – Jurupa Valley, CA 91752 – Cell: 626-***-****
ad3kzy@r.postjobfree.com
Server Management · HW/SW Installation · SW/PC Support
Network Configuration · Maintenance · Documentation
EDUCATION AND CERTIFICATIONS
B.S. Telecommunication Technology, Mt. Sierra College, Monrovia, CA 2003
Certifications: MCSA (2016) 2018
MCSA / MCP (2012) 2010
TECHNICAL SKILLS
Operating Systems: Windows Server 2022, 2019, 2016, 2012 R2, 2008 R2, 2003, Windows 10, 8, 7, AIX 7.1, 6.1, 5.3, LINUX, Redhat Linux 7.3, 6.8, CentOS7
Hardware: HP Proliant Servers, DELL PowerEdge Servers, UCS c220/ UCSB-b200 Blades, IBM pSeries, IBM System x3650 M4, IBM Blade Servers HS22/21, IBM Blade Center, Cohesity, Rubrik, IBM HMC v7.3.5, HP ProCurve Switches E3800/ V1910, Meraki Cisco /Cisco S500 switches, LinkSys SRW2048 switches, Netscreen 25/5 and SonicWall 3060/NSA 2400, SonicPoint Wireless Access Point, Proxim Access Point, MAGTEK IntelliPin/ Encoders/ TravelScan/ Topaz SigPads, VXA Backup Device, Zebra Label Printers, Ubiquiti-Dream Machine, Access Points, Switches.
Software: VMware, Hyper-V, CITRIX, vCloud Director, VDI, SCOM, SCCM, Bomgar, Cohesity, Rubik, Veeam, Veritas BackupExec, BrightStor ArcServ, LiveVault, Acronis, PC Anywhere; MS Office, Cylance, Sophos, Symantec Endpoint, ESET, McAfee, Kaspersky, vROPs, AppVolumes, LaserFiche/Onbase(Imaging), Symitar/Untradata Core databases,
Cloud: Office365, Azure, AWS(S3/Glacier), vCloud Director, Meraki, ProofPoint, Call tower, Ring Central
Storage: NetApp, Compellent, HP 3PAR StorServ 7200, IBM DS7000, Dell Unity, VNX, vBLock/vxRail
Protocols: TCP/IP, DHCP, DNS, WINS, FTP, POP3/IMAP/SMTP, SNMP
Programming: HTML, AIX(UNIX), EXPECT Scripts, Powershell, PowerCLI
Networks: MPLS, VPN, LAN, WAN, DMZ, VLANs, VoIP
WORK EXPERIENCE
LCPtracker Inc., Orange, CA 92866. October 2021-current
Sr. Systems Engineer
Manage and supporting over 300 virtual machines in Azure
Created virtual image and created Azure Compute Gallery to deploy virtual machines.
Also deployed VMs using JSON files. Network Security Groups
Manage CyberArk and analyze executables if to be allowed and trusted.
Managed Endpoint Device Manager known as MDM in Azure or formerly known as Intune. Registering devices ( Mobile devices (phones/tablets)- iOS/Android, Windows 10/11. Creat ASR rules, Configuration Profiles, Conditional Access and powershell scripts for other tasks and policies.
Managed Backups using Azure Data Box disk exports and Azure Backup Center.
Managed and configured App Registrations/Certificate/Tokens/API permissions
Managed and configured Single Sign On for Azure on several Enterprise Applications in consideration to SAML configuration, token, application ID, Object ID, claims, user roles and assigned users.
Managed and configured Microsoft Sentinel (SIEM) for incidences and alerts in consideration to data connectors and Logic App configuration and playbooks.
Managed and configured Microsoft Log Analytics Workspaces for Services and Virtual Machine alert monitoring and notifications. Insights
Managed Azure Subscriptions, Azure Resource Groups, Azure Storage Accounts/Blobs
Kubernettes,, Load Balancing, Key Vaults – Access Policies, Secrets, Keys
Setup and Managed Ubiquiti router, switches and Unifi APs on new office location
Managed Wizer Security Training Application for monthly deploying training videos.
Managed VPN assignments via Watchguard via AuthPoint as well as VPN with Ubiquiti for new location
Managed some security parameters with regards to Microsoft Defender for Enterprise, Microsoft Cloud App Security.
Managed HyperV 3 host cluster (also have VMWare extensive experience).
Built Windows servers 2022, 2019, 2016.
Configured SQL servers for special projects and test and development environments.
Setup Freshservice Ticketing system integration with AAD, O365, SSO and automations.
Puma Biotechnology, Los Angeles, CA 90024 05/10/2021-08/10/2021
Sr. Systems Engineer Contract
Managed and deployed VMs and supported 500 virtual machines Windows and Linux in a mixed environment on Vmware / Azure.
Perform Host updates from a VMWare cluster. 5 and 10 hosts per cluster.
Used vCenter and vSphere.
Managed HP Blade Centers
Performed Windows updates using SCCM.
Managed on-premise Active Directory and Azure Active Directory hybrid.
Managed GPOs and created some GPOs only as needed.
Managed Cohesity Backup solution and performed backups and restoration.
Deployed and managed Certificate Authority server.
Managed and setup SSO on Azure and OKTA.
Managed PRTG to monitor VMs status, services, disk space, and SAN disk space
Managed Trend Micro.
Provide access and roles on Azure Subscriptions.
Provided VPN Access thru Watch Guard.
Perform install of company portal and perform sync process.
Managed Apple Business Manager for iOS devices and MS Endpoint Manager. Managing IPad tablet, iPhones, android devices and Laptops.
Monitored and notified through vROPS, Cohesity, PRTG.
Used Salesforce ticketing system.
Used Veeva Vault for project change management.
Managed KnowBe4 for security awareness and training.
Forest Lawn, Glendale, CA 91205 10/04/2019-11/20/2020
Sr. Systems Engineer Full time
Manages vCenter, VMware 6.7 infrastructure and Storage; Deployed Windows Server 2019/2016/2012/2008 and Linux Servers (CentOS / RHEL and Workstation VMs (Win10 v1909/1803), updates ESXi builds and vmtools for compliance, take and manage snapshots for rollover needs.
Managed and supported 600 virtual machines in mixed environment on two different Hypervisors VMware/ Azure
Managed Hardware DELL PowerEdge servers and perform maintenance such as firmware updates on maintenance mode for ESXi Hosts.
Manages and deploys Server patching and fixes, with GFI and replaced with SCCM.
Setup and manages VM and file backups and restore with COHESITY for local backup and Archive to AWS S3/Glacier Buckets/Vaults. Backup VMs, O365 Mailboxes, AD users, SQL data/logs.
Setup SSO and MFA from Azure for web-based Applications
Deployed and setup VMs on Azure in consideration to Availability Set, Storage, Compute,
Setup 2 of 4 node Cohesity clusters with coordination with vendor for backup solution. Forest Lawn
Manages security with ESET, replaced with Cylance, setup policies and exclusions.
Deployed servers to manage Varonis for security on User access, permissions, activities and reports.
Manages and setup Active Directory and Group Policies as needed for Production or Testing.
Setup O365 Hybrid setup and performed mailbox migrations, inconsideration to DNS, SPF, DMARC, DKIM
Managed spam and malware filtering with Office365 through Exchange Admin Center.
Setup AWS Glacier Vaults and S3 buckets as targets for secondary archives after COHESITY backups.
Wrote procedure documentations and Change Controls and Projects.
Managed and setup DFS and SQL servers for developer’s needs.
Deployed, setup LINUX servers e.g. RHEL7, CentOS7 on VMware, modifies files to get servers UP and running.
Setup PRTG network, device monitoring tool considering layout, device discoveries, sensors, thresholds
Setup and managed Synology NAS devices for archives and installer repositories such as iso, exe, msi files
Setup and created Onboarding templates on ADManager integrated to Active Directory, Exchange, Office 365.
Setup and managed Certificate Authority server and created certificate templates.
Writes procedures and documentations for reference as well as Change Controls.
Takes and resolves issue tickets using JIRA.
Provided support to 1800 users throughout Forest Lawn locations in Southern California
Setup VPN access from CATO for remote users working from home.
Setup RDP IPsec for Admin remote users to members servers for secured connection.
Mazda USA, Irvine, CA 92623 01/09/2017-07/12/2019
Systems Infrastructure Engineer III Contract
Manages and coordinates with different IT department group mostly developers for their server requirement needs and application.
Manages VMware, deploying VMs (Windows 2016,2012,2008 and Linux 7.3) and allocating resources (Compute, storage) through vCenter via vSphere
Managed and supported 2500 virtual machines in a mix environment of Windows and Linux.
Manages VDI via VMware Horizon View, setup pools and machines as dedicated or floating for different users.
Assists on moving server hardware to new building location in Irvine.
Migrated Virtual Machines from vCenter to vCloud Director and deployed inconsideration to AppStack
Manages Active Directories creating Distribution Groups/Lists, Users and Groups
Managed and setup SSO, LDAP, SAML integrations with Microsoft ADFS / considering Metadata, Relying Trusts
Migrated mailboxes and distribution lists, shared mailboxes to Office 365/Exchange 2010 HYBRID
Managed Mail System Flow in consideration to Exchange, SMTP, Filtering, MX/SPF/DKIM/DMARC-DNS records
Built and Managed virtual servers e.g. domain controller, ADSF and Proxy servers in AZURE for Office 365.
Setup several SQL severs joined to SQL VMware cluster for developers’ application testing
Manages backups with VEEAM then replaced with RUBRIK
Deployed Cylance and replaced McAfee
Deployed SCCM inconsideration to Distribution Points, Software Update Point (WSUS) for Windows Patches and 3rd party software deployments
Deployed Airwatch server and coordination group for training with Cisco, register mobile phones
Used Dameware shadowing users performing user support
Managed storage EMC Unisphere/Unity, present to host and create LUNs
Managed storage vxRail / vBlock mapping and present to Host, create LUNs and extends datastores
Managed and modified DFS File Servers for Folder targets and permissions and data migrations
Performed Domain Controller deployments in consideration to DNS, DHCP, and FSMO roles
Migrated VMs from vCenter to Azure and vCloud Director in consideration to using ZERTO for virtual replication
Created and managed rules on Proofpoint for mail filtering unwanted emails
Provided support to 3500 users throughout US Corp and Japan, Canada, and Mexico countries.
Syska Hennessy Group, Culver City, CA 90230 10/20/2014-10/21/2016
IT Systems Operations Engineer III Full Time
Manages and coordinated and deployed MPLS Network Infrastructure with Century Link.
Manages Microsoft System Center Configuration Manager (SCCM / WSUS) for OS images deployment, distribution points, patch deployment (Windows updates), software deployment (Java, Adobe, Sophos(Antivirus)), software removal McAfee
Implemented and Managed Microsoft System Center Operations Manager (SCOM) for server monitoring, notifications and alerting and services.
Manages Symantec NetBackup with backup redundancy and node replication.
Manages VMware Node Clusters and SAN Storage for both main locations in Los Angeles and New York.
Managed HP Blade Center and HP 3PAR SAN storage which runs VMware ESXi server v6.
Manages ticketing system with ManageEngine and implement upgrades.
Performed domain controller demotions and promotions
Managed Active Directories (AD), OUs and GPO Group Policies
Implemented Office 365 migration and provides support on MS Office 365 cloud.
Implemented and Managed SQL servers and installations and backups.
Manages Sharepoint user access and sites integrity.
Setup and build Windows Server 2012 R2, Windows 2008 R2 for special projects.
Managed and supported 600 virtual machines in Windows environment.
Migrated SQL Databases to SQL Enterprise Server as central location.
Manages network shares and mappings and DFS (Distributed File System) considering Target Folders. Migration to NASUNI NAS infrastructure with cloud capability and backups.
Configured and deployed CISCO MERAKI Wireless Access Points.
Deployed and managed MERAKI MDM for Mobile devices.
Configured and replaced switches with HP ProCurve 3800/3500 and 1920-48G Switches for different locations and configured VLANs for Wireless segregation and DHCP leases.
Provide technical support to users. Friendly and people person.
Documented procedures change controls and project plans.
Great contributor and independent and quick learner.
Provided support to 1600 users on Southwest and locations and Eastern state locations.
Avatar Partners, Huntington Beach, CA 92648 04/21/2014-7/22/2014
Sr. Systems Administrator Contract
Manages the HyperV infrastructure
Setup Team Foundation Server (TFS) integrated with SharePoint Foundation developers’ collaboration of testing 64 bit codes
Setup and built SQL servers in consideration to Instances, Service Accounts, storage, Security Roles and Database backups.
Managed VM backups, files and directory backups and database backups using VEEAM.
Setup and managed Symantec Endpoint Antivirus deployed to machines
Setup and managed WSUS on Windows 2012 server for pushing Windows updates to all machines.
Setup MySQL using Work Bench for ticketing system JIRA to use for issues and user requests and collaborations
Managed SharePoint server, adding users and managed document libraries and permissions
Managed Active Directory, inconsideration to OU Organizational Units, and created Group Policies.
Managed MS Exchange 2010 creating mailboxes and Distribution Lists.
Managed the SAN storage (VNX-EMC) direct attached used for file server and virtual machine storage.
Manages software licenses and upgrades and subscriptions and hardware purchases.
Setup voicemail boxes and Polycom phones and manages the phone system (VoIP) “Ring Central.”
Coordinated with developers on system and software needs and testing.
Documented all processes and proposals and procedures.
People United for Christ, Upland, CA 91786 06/24/2013-11/08/2013
Network Administrator Contract
Managed and setup TS Web Access and RemoteApp publishing (Citrix-Like)
Migrated Domain Controllers in consideration to Functional level Win2008 R2, FSMO roles, DNS and DHCP
Replaced Dell Switches with CISCO MERAKI Switches on locations
Managed and responsible for system backups using LiveVault installing agents
Managed Mail Filtering System Barracuda.
Setup Microsoft SQL server 2008 R2 for eTime and ADP databases considering
Manages IBM Blade Center via IBM Management Module (MM) web interface setting up new blade servers
Setup two node cluster using Failover Cluster for Hyper-V on Windows Server 2012 with Shared Storage using iSCSI targets from IBM System x3650 M4 SAN cluster nodes and iSCSI initiators via Windows Server 2012 and moved VMs via Live migrations.
Setup two node SAN cluster with RAID 5 and RAID 1+0 on Storage System (IBM System x3650 M4) to create SAN Cluster nodes with High Availability volume replication Active-Active using OPEN-E for the use of Hyper-V Failover Clustering
Setup Cluster-Aware-Updating for Windows updates on Clusters in considerations to PSremoting, WinRM
Configured server Network Adapters for NIC Teaming for better throughput and Fault Tolerance and added virtual adapters used for private network for each Cluster Node.
Managed SAN UltraStor
Created LUNs
Managed Fibre channel
Zoning and WWN/Ports brocade switch
Managed Exchange 2007 creating user mailboxes and Active Directory changes On/Off boarding users
Built WSUS server for Windows Update packages pushed to workstations and servers
Built Print Server on Windows Server 2012 for Network Shared Printers
Setup Spiceworks as ticketing system for user requests and issues.
Manages SwitchVox VoIP phone system.
Manages company intranet via MS SharePoint.
Managed servers in Co-locations via MPLS network.
Writes Proposals and documents server inventory, security plans, change controls, running applications and server configurations, Network Schema and assist on Mandates and Regulations.
Farmers Insurance Group FCU, Los Angeles, CA 90010 05/2008-06/21/2013
Systems Administrator Full Time/Permanent
Managed Citrix XenApp Server Farm.
Support on ICA install
CAG Access
Shadow session with users
Printer management, printer drivers, ports and mappings
Access Management Console, server user loads and server reboots
Monitoring resource load / Load evaluators
Installation Manager for software packages, MS Office, Adobe, AppEnabler, FSP via Presentation Server
Deployed and managed VDI XenDesktop over VMware backend running on NUTANIX
Supported users’ sessions XenDextop via Desktop Manager shadowing and disconnect and reconnect.
Provisioned pools, VDI workstation, applications, storage
Managed and deployed Windows update packages to servers and workstations via WSUS
Managed backups using Symantec BackupExec.
Deployed Trend Micro antivirus and removed Symantec Endpoints.
Setup virtual machine Windows 2008 R2 servers through vShpere for projects
Lending Service Incorporated (LSI) program, which is a program pathway for receiving Loan applications to migrate to the Host Core.
Touché Analyzer for Marketing Department reporting use
Transaction Exchange which runs UltraAccess Gateway - housing ports served as the pathway to the Host AIX server communicating with both Mobile and Home banking servers.
Webtalk program used as pathway to receive Credit Reports from credit bureaus such as Transunion, Experian and Equifax.
SFTP server for vendor file uploads and vendor batch import purposes
Passive Failover servers setup at DATA CENTER SAVVIS at Fort Worth Texas.
Setup a Print Server running Network Shared Printers
Onbase imaging server, indexing, and cataloging reports
CRM Marketing Financial Database on SQL 2008 R2
Setup Oaisys for recordings and agent recordings sessions
Managed own Home Banking server performing release upgrades
Setup Domain Controllers in consideration to DNS and DHCP and FSMO roles.
Involved with managing Distributed File System (DFS), on monitoring disk space and DFS replication.
Deployed and Managed Active Directories creating Organizational Units (OUs), Security Groups for On/Off boarding users and Deployed Group Policies (GPOs) for users and machine policies
Managed Exchange Server 2007, creating mailboxes and distribution lists.
Setup SQL servers and ODBC connections
Used KVM switches to manage servers through the data center server console.
Supported VoIP Telephone Systems – Mitel and Avaya replaced
Provide software support: Microsoft Office 2003/2007/2010, ad core applications, imaging
Managed High Availability and Replication on AIX core banking server
Performed annual Failover tests. Notifying vendor processors CO-OP, FSCC, FIDELITY
Managed Host Network Infrastructure for AIX Systems via HMC v.7.3.5 with IBM PowerVM 6 on pSeries 6/5, Created LPARs (Virtual servers) with AIX 6.1, running IBM RDBMS UniData 7.2.12 Database used for Production, Development and Training test LPARs controlled through HMC Host Managed System.
Create a copy of Live database from Prod LPAR to Dev LPAR to install and test latest release for functions and security permissions prior to installation to Live Production Environment.
Managed IBM SAN Storage using Storage Subsystem Manager 9, Created LUNS and mappings of disks for extending Volume groups and expanding FILESYSTEMS.
Manages DAC controllers and manages the Fibre channel IBM SAN switches.
Demonstrated replacement of hardware such as HBA cards considering the WWN-World Wide Name
and Port and Fibre Channel switch.
Perform UniData Database system purges to optimize filesystem and database files to not reach 2 GB.
Perform database file conversions to dynamic files to prevent database crash and audit file sizes and
Perform audit on database files on its sizes and count of records prior to purges and part of system
maintenance.
Wrote documentations such as checklists, procedures, proposals, WBS, Change Controls, Risk Analysis/Assessments, System Security Plans, Project Plans, Asset Purchase Request and Network Diagram.
AxMinster Medical Group, Hawthorne, CA 90250 08/2006-11/2007 IT Systems Administrator Full Time/Permanent
Upgraded and monitored Server backups Brightstor ArcServ with VXA library Backup device and Dell LTO Library
Managed PROPALMS v5.0 (Citrix very similar program) on Application/Terminal Server and Failover Server
Managed and created rules on Sonicwall Firewall Pro 3060, created One-to-One NATting, access rules and VPN
Managed all company servers: Domain Server Win2k3, EMR - Electronic Medical Record (Medical Manager – Sage on IBM pSeries running AIX 5.3, NextGen- Windows SQL on Win2k3- HP DL380, Touchpoint(Reports) on IBM running Windows 2k Server, IIS, FTP Server on Win2k, Imaging Server (IMX Viewer) on IBM xSeries running Red Hat Linux 5, Exchange on Win2k3. Deployed Application PROPALMS(Citrix-like) on Terminal Server Win2k3. Webserver on Win2k3. Security server install Symantec SSC on Win2k3.
Uploaded quarterly updates from CD, Drug Formularies on AIX 5.3
Managed ticketing system using Kayako SupportSuite v3.00.90 for user requests.
Remote connect using Team Viewer, VNC and RDP for supporting users.
Managed IT with 4 group members, 350 users in 5 sites and in charge of MPLS Network.
Managed Phone System NEC created subscriber lines, and voicebox
Managed Exchange 2003 and creating aliases and distribution lists in Active Directories
Accomplishments:
Implemented Symantec SMTP 5.0 Spam Filter server
Implemented Symantec Antivirus via System Console (SSC) to deploy to workstations
Setup Terminal/Application server installing PROPALMS to access Imaging and EMR programs
Setup House call server and implemented PHONE TREE program for confirming appointments
Upgraded SonicWall firewall firmware to latest version and enabled IPS and CFS
Coordinated with PAETEC to setup T1 Lines for MPLS network
Coordinated with vendor to setup network patch panels for each exam rooms
Purchased and installed stackable Dell 2450, 6248 and 6224 switches and setup PROXIM 4000 Wireless
Access Points including TSUNAMI Wireless Bridge on the network
Implemented Imprivata for SSO Single Sign On with integrated facial recognition solution.
Setup an FTP server site for software installations and file transfers
Documented procedures, program installations, system setups, vendor contacts, audit trails and proposals
Wescom Credit Union, Pasadena, CA 91101 05/2006-07/2006
Systems Analyst Temporary
Provided support and managed FileNet (COLD) for cataloging reports and assist on retrieving reports to be viewed by other branches on intranet web
Assigned to daily system checks on database servers checking on event viewer and database logs.
Ran daily extract file which updates MS Access Database and populates fields of documents opened through ASCENT program ready for indexing/data entry
Print volume reports for Check, ATM, Remit for eVision and API system databases with Crystal Reports program creating templates.
Glendale Area Schools Federal Credit Union, Glendale, CA 91208 12/2004-02/2006
I.S. Administrator/Support Full Time/Permanent
Server/Network Management
Migrated domain controller to Windows 2003 R2 in consideration to Functional level 2003.
Managed Active Directories on/off boardings, logon hours, OUs and GPOs for Folder Redirections and Security Page and password policy.
Managed and deployed Database Servers for MS SQL 2k (Imaging-LaserFiche) and (Courtesy Pay – NSF) running Windows 2003 Servers; monitoring SQL services and FULL Backups and SQL agent jobs
Managed backups using Veritas BackupExec software, backing up files shares and server files.
Managed Webfilter Server for Surf Control (monitoring user activity) running Win2k Advanced Server created rules on certain websites, blocking executables, streaming media
Managed Core Banking Application server Symitar which was Credit Union running on AIX v5.3 on IBM pSeries, installing Core Release and system backups.
Managed Exchange 2003 for user mailboxes and distribution lists.
Assigned Static IP addresses, default gateway, DNS servers on each workstation, naming and joining the domain
Mapped network shared drives and created user folders and login scripts
Configured Netscreen 25 Firewall created rules for VPN tunnel and DMZ network for PEMCO and FEDLINE VPN device
Managed PanaVoice/InterVoice systems for voiceboxes and phones
Hardware and Software Installation
Installed CISCO 2950T and LinkSys SRW2048 switches to the network
End User hardware support, PC/hardware replacement.
Installed and managed Okitdata Printers and Shared Network Printers
Installed PGP software for encryption/decryption used for email loan link files
Setup software on desktop machines MS Office, Laser Fiche, Max Viewer (COLD), Symitar for Windows (Episys), Symulate for Windows, MICR Quick, Magtek IntelliPin Card Encoders, Receipt Capture System, MVI (Millennial Vision), Symantec
Manages Windows updates on machines.
Documentation
Wrote procedures/troubleshooting for software and hardware installation for reference purposes
Printed reports on user activities using Report Central (Surf Control) and firewall logs
Created Network Diagram, Organizational and Gantt charts projects using MS Visio, MS Project for
References
California Institute of Technology, Pasadena, CA 91125 03/2004-09/2004
Systems Coordinator/Desktop Support Temporary
Installed OS WinXP/2k Pro on Laptops, Desktops and Win98 to run POS systems in Cafeterias and Coffee shops around CALTECH and JPL.
Configured LANTRONIX for Omni 3200, 395, Copy Reader Card Swipe machines and Load Stations to connect to the network
Provide software and hardware support for laptops and desktops running XPs
Ran daily Batch Imports to update account and profiles for Envision System
Updated and created POS Register buttons for Menus and Ingredients on CBORD System
Data entry and Printed Purchase, Order, Product Distribution Summaries, and updated Dining Services website portal.