Post Job Free
Sign in

Systems Administrator Engineer

Roselle, IL
May 26, 2024

Contact this candidate


Andy Karklins

*** ***** ***** *****: 312-***-****

Roselle, IL 60172-1463


CREDENTIALS Microsoft Certified Systems Engineer (MCSE),(MCSA + Specialist Virtualization) Cisco Certified Network Associate/Professional (CCNA+ CCNP), Palo Alto Accredited Configuration Engineer (ACE)

VCE Converged Infrastructure Associate (VCE-CIA),

Certified Lotus Professional (CLP),

Sun Certified Systems Administrator (SCSA)



KaufmanHall February 2020 to present [Management Consulting] Cloud Administrator / Engineer Email Administration –Azure/ Exchange

M365 administration: Experience administering Microsoft 365 services, including Exchange Online, SharePoint Online, Teams, and OneDrive.

Mimecast SMTP gateway: Strong knowledge and experience with secure email gateways. Configuration and management email security policies, spam filtering, and email encryption.

Mimecast DMARC Monitoring portal implementation and renumeration. Domain alignment for SPF/DKIM for compliance. Audit Mimecast DLP policies implpementation/ Microsoft E5 license Strong Mimecast deployment ATP, Secure Send, Large File Send solution

Global Relay installation, migration and archiving for legal and compliance purposes Merger and Acquisition TSA punch list and remediation, collaboration experience with IT infrastructure: DLP policies for Global Relay config for legal department.

Experience integrating IT infrastructure during mergers and acquisitions. Understanding of due diligence processes, data migration, and post-merger consolidation.

Admin-level experience in infrastructure and network (DNS, DHCP, NTP, LB, etc.)

Strong analytical and problem-solving skills. Service-Now ticketing for Exchange,O365, Teams, and SharePoint over 2000 level 2-3 tickets

Office 365 exchange administration and migration in hybrid environment, adds moves changes, Expertise in configuring user authentication, authorization, and access control.

Azure security log analysis, user access auditing, troubleshooting, app client cert renewal

Collaboration with IT and security teams to identify and mitigate risks related to digital identities.

Provide advanced technical support and guidance in resolving complex identity-related issues.

MFA authentication troubleshooting and administration

Intune-Device enrollment conditional policies, upload apps, Configuration Manager. Monitor and troubleshooting deployments.

Review of threat protection analysis Mimecast, Proof Point, Zix and Cisco email solutions.

Experience with scripting languages like PowerShell, Python batch files for automating IT tasks.

AD Entra M365 Admin Portal, Defender, Compliance Manager, Azure, Exchange

On-Premise Exchange mailbox moves, logging, arbitration, monitoring, health mailbox cleanup to recover disk space. Email group scripting for migration, export, clean up and recreation

Windows Active Directory: experience designing, deploying, and managing Active Directory environments. Expertise in user and group management, security policies, and troubleshooting

Microsoft Failover Cluster Management, server creations. OS templates, new servers,

Knowbe4 email security troubleshooting and reporting, user mediation HIGHLIGHTS


Intune administration- AD Joined policy configuration for conditional access

Cisco Umbrella administration, SSO and administration troubleshooting

Configuration of custom transport rules to allow testing of application in a hybrid environment

Cisco UCS, Netapp documentation and configurations for several storage and UCS servers.

Annual AD / Azure AD and Teams access auditing for security and compliance

M365 Security Score improvements, audit log reviews for security and compliance

Scripting for automated processes utilizing PowerShell

Manage Engine/AD Manager /AD Audit plus reporting, configuration and automation

Data Center migration, documentation, implementation and management, Physical cable map

Meraki security monitoring, documentation and remediation for AP and Wifi access.

NOC remediation and troubleshooting regular security issues.

Tenable Vulnerability Management review and CVE remediation

Merger collaboration configurations, migration wizard for email- Bit Titan

Bitsight cyber risk mitigation and remediation,Tenible vulnerability scan remediation.

Service-Now ticketing for Exchange,O365, Teams, and SharePoint over 2000 level 2-3 tickets

Delininea PAM Password vault implementation, upgrade and maintenance

ZOOM, other APPs SSO troubleshooting, policy configuration, claim modification for AD attributes

SIEM monitoring and remediation, technolpgy review.

ADaudit, AdManager, ADpasswordReset, implementation, monitoring and upgrades. AD Self service install including reverse proxy and nls servers.

SSO attribute alias settings troubleshooting 35 application sign ins, claim rules modification after introducing secondary signs

Crowdstrike Falcon Dashboard – incident review, monitoring, reporting and administration

Contract Liaison for multiple vendors, interface to legal teams

Virtualization VMware and Hyper-V server administration

DLP data label creation and troubleshooting for Microsoft Office Suite and SharePoint

EA vendor agreement, generated cost savings through vendor negotiations

Troubleshooting archiving, ost, group policy for end user issues when importing mail from Symantec evault archive PST. Modification of GPO to control custom Outlook profile settings

Department role definition and staff analysis after divestiture

Troubleshooting Room list mailboxes for Room finder in Hybrid environment

Budget review of current and future solutions

Cisco UCS KVM interface to virtual machines, Cisco Prime

CrowdStrike login issues and administration, remediation of incidents

Cisco ASA / Prime configurations and review.

PowerBI administration troubleshooting, user setup, Portal reports

Symantec Evault archive data retrieval and manipulation

Certificate Services installation and configuration for Enterprise CA

Documentation of IT Standards- SharePoint library

Failover Cluster Manager Configuration and Administration

Veeam Backup and Replication + Veeam One administration and DR recovery, mailbox restore upgrades and troubleshooting issues.

Splunk Administration Console interface to Managed Service, review of security scans and remediation

Cisco Nexus documentation for data center move, auditing.

SCIM and SSO implementation for Zoom

KnowBe4 training portal campaign review, troubleshooting connectivity

Zoom and Teams administration various configuration, user and quality issues

Microsoft Defender alerting, logging and incident remediation, problem resolution

Exchange On-Premise installation and updates in hybrid environment

Kemp Load Balancer customized for Exchange 2016 on premise. Updated to VL series

DNS internal and external records management, Azure and CName, SPF, records

Microsoft Defender alerts remediation and monitoring

Azure-AD Sync/Connect upgrade and installation

Power BI Product Usage Analysis Workspaces and Reporting

Thycotic Privileged Identity server migration to cloud Delinea with vendor

Tenable scan remediation for vulnerabilities, CVE patch review

DAG troubleshooting and creation for Exchange on premise servers.

Storage disk space recovery for Information Store for on premise servers.

TLS remediation for secure operation

Role assignments for help desk and admins

Bitsight security reporting remediation and continuous monitoring reviews

Hydro September 2019 to February 2020

IT Manager /Senior Systems Administrator/ Project Management

Office 365 exchange administration and migration in hybrid environment, adds moves changes, PowerShell scripting, DirSync in a hybrid environment.

Veeam Enterprise Backup and Replication disaster recovery, full and instant recovery for Linux, exchange and server restorations, integrated repository and ransomware protection strategy. Cloud connector offsite replication. Instant live recovery, backup & replication 3-2-1 strategy.

Daily administration via cloud portal for O365 users, email delivery troubleshooting and configuration changes environment over 400 mailboxes. Quarantine, Advanced Threat Protection, Security and Compliance policy updates. Troubleshooting of emergency issues interfaces with vendors

Cloud migration planning for managed services, interfaces with vendors for enterprise and private cloud. Core/CPU resource analysis and sizing.

IT budgeting for software, network and telecom. Licensing of global contracts, cost savings implementation and negotiations. VMware, Microsoft and Veeam, and other vendors. Cost savings

VMware vSphere ESXi, Vcenter for over 200 virtual machines throughout the global enterprise, new server creation, monitoring and troubleshooting of complete global environment.

Windows 2008/2012/2016 implementation and upgrades, new machine creation

Infrastructure support of Epicor ERP system, new server creation for upgrades and migration

Remote systems administration for 16 global locations including UA, UK and Canadian affiliates.

Manage a small staff individuals, helpdesk monitoring and ticketing assignment

Monitoring of Barracuda spam filtering and control console, Microsoft Advanced Threat Protection quarantine monitoring and remediation.

Avaya phone system, adds moves and changes. New phone system specification and quoting.

Bitdefender Gravity Zone for global visibility into enterprise security platform. Troubleshooting connectivity issues, policy edits and monitoring, submittal of incidents for review.

Malware, ransomware remediation, virus protection,

Security policy creation, user education regarding safe practices.

VPN implementation for remote access and security, radius server planning

Dell EMC Equalogic SAN/NAS storage, QNAP remote replication RTRR low cost solutions

Best practices 3-2-1 backup and replication for 200 tb of data including Veeam cloud connect

Storage, review alternate storage solutions, including ransomware protection,

Purchasing of hardware and software, Department approvals for IT budget

AIT Worldwide Logistics February 2018 to September 2019 [Logistics] Senior Systems Administrator- Project Manager - Network Management- IT Leader

Office 365 exchange migration in hybrid environment, PowerShell scripting, troubleshooting migration, archive errors, dirsync in a hybrid environment.

Microsoft Azure configuration of federation services, blob storage, Azure Explorer

Daily administration via cloud portal for O365 users, email delivery troubleshooting and configuration changes environment over 4000 mailboxes. quarantine, ndr and policy updates

VMware vCenter 170 nodes update and expansion, new server deployment and sizing

Forcepoint firewall replacement over 15 locations, troubleshooting network latency

On call rotation for over 65 international/national locations, network and server monitoring and troubleshooting for Metro-E, T1, and Ethernet circuit performance and latency resolution nationwide.

Cacti node monitoring, traffic management and troubleshooting, Whats up alerting config

Vmware, vCenter, VSA, Site vShere cluster, storage integration fabric interconnect

Wireshark, tcpdump packet sniffing for problem resolution. ISP service quality diagnosis

Troubleshoot issues with deeply integrated and complex vendor workflows

BGP router configuration for redundant circuits, circuit implementation. Catalyst sup module upgrade

New location office documentation and implementation, equipment setup and upgrades due to

(M&A) mergers and acquisitions.

Office 365 admin portal, compliance and security, AD and messaging

Microsoft System Center image building and modification with Hyper-V

Citrix/Xen remote desktop along with Direct Access technology.

Level 2 &3 Service tickets for desktop and servers through Fresh Desk software

Kaseya scripting automation, server and workstation access, stored procedures, documentation and patching and remote installations and registry changes.

Cisco Umbrella url protection administration based on Open DNS

Microsoft Direct Access implementation and troubleshooting, SCCM

Aerohive wifi and Cradlepoint mobile circuit redundancy for remote locations

Vendor liaison, project management daily stand up

Daily spam monitoring Forcepoint Websense/Triton and migration to Mimecast, language and spam analysis, spf, dkim look up for improving spam scores, rule configuration for spam containment

Veritas backup deployment, recovery and monitoring

Over 200 server environment, Windows 2012/2016, Office 365/ 2016- 1100+ users

Windows 2003/08 server migration analysis and recommendation, Project Management Lead

VMware/ Cisco UCS / Net App upgrade migration analysis/ implementation to fabric interconnect

Disaster Recovery and implementation, runbook creation

SharePoint/ Office 365 Admin portal/ Security and Compliance/ Email search and confirmation

Active directory Manage Engine consolidation, clean up and improvement, spf compression DNS updates, spf compression, dkim and dmarc

Jira project collaboration with DEV, SQL and web teams, Teams and SharePoint Online

Multi-factor authentication, password recovery self service

Load Balancer market study, TLS 1.3 analysis to improve security scores & compliance

Vulnerability remediation, Symantec security portal management

Adobe Media Server migration and application migration to cloud.

Farm Journal Media. June 2016 to November 2017 [Digital Media Company] Senior Systems Administrator- Technical Project Lead /Manager IT Leader

Led Data Center move PHL to CHGO locations –planning and implementation for consolidation of data center resources, move and expand to hosted colocation at data center in Elk Grove, IL. Scaled storage in data center as needed for drives, memory and operating systems.

Hyper-V and VMware consolidation and migrations of physical machines, sizing, ordering and implementing VMware hosts in new Data Center. Implemented production and development machines with ESXI v5.5, 6.0 and 6.5. Windows 2012, SQL servers and Linux hosts.

Worked with stress test vendor to perform detailed performance monitoring of SQL servers which resulted in temporarily implementing Amazon RDS for SQL Server on solid state drives

Selected and determined new data services for 7 remote offices, re-location, including sale of company closing of remote branch suite, new services and expansion. P2V migration and images

Network documentation for server migration, network architecture and implementation of SQL server, application servers, AWS hosted solutions storage augmentation, Great Plaines,

Windows 2012/2008, Windows 7/10, Mac, Microsoft Hyper-V & VMware ESXI (5.5/6.0/6.5) vSphere client and Group Policy administration for client and server configuration. Setup new hosts and instances

Troubleshooting exchange and domain administration, Performance monitoring design and sizing new SQL and Windows host servers. AWS SQL instance to handle temporary overload along with stress testing through coordinated offshore vendor effort

Office 365/2016 /SharePoint Online Deployment for 380 users +SharePoint online setup for document repository and integration with Office bundled in Microsoft Office 365 subscriptions. Including daily administration of cloud portal for O365 users.

Instrumental in the success of office 365 migration project for hybrid on premise environment later converted to cloud based environment. Initial configuration for SharePoint. Visio documentation

Active directory -FSMO roles, schema update, group policy, OKTA, exchange migration to cloud

Managed VOIP phone VOIP implementation. Jira, Confluence, SharePoint collaboration. Office 365 migration for nationwide decentralized locations.

Cisco ASA, WatchGuard, Barracuda firewall security management, Cisco Catalyst switch management, vlan configuration and network configuration.

Led Veeam file and replication, Office 365 cloud backup, Led with Symantec console deployment and migration from McAfee endpoint consoles

Project Management of IT migrations to data center and replacement of infrastructure upgrades, firewalls, circuit upgrades. Instrumental in IT infrastructure collaborations for fast paced environment

Troubleshooting identification of circuit issues with Metro-E, SDLan, MPLS, T1, and cable services.

On call group for high availability environment during technology consolidations and migrations.

Staytus Zabbix monitoring, Dev-Ops, Cloud SQL, environment. Meraki Wifi cloud mgmt.

Documentation of network and data center management using Visio, MS Project and Office 2016

Anselmo, Lindberg and Oliver. Apr 2016 to May 2016 [Real Estate Attorney] temporary Senior Systems Administrator- Security Administration

Exchange 2013 administration performance tuning, storage management of EMC NAS, SAN and similar storage administration. Group policy configuration for improved security.

SonicWALL firewall and Forefront Triton AP-Mail spam protection administration

Patch management, compliance, & vulnerability management utilizing GFI LanGuard

VMware ESX/Server monitor ESX hosts. Administration., monitor performance to identifying bottlenecks and tweak settings with improvements to performance and capacity

VEEAM backup/replication administration. Monitored production systems and daily backups/replication. Extended partition/memory to help improve performance

Shortel VOIP administration, adds moves and changes- 100 users

CBRE US Equities Realty May 2006 to December 2015 [Financial / Real Estate] IT Manger/ IT Project Manager – IT Leader GLOBAL INFRASTRUCTURE GROUP Led IT Project teams for the global infrastructure group, Managed IT department in Chicago including staff, budgets and upgrades (M&A). Managed staff, generated cost savings for IT department, implemented updated technologies, negotiated contracts, introduced security, business continuity and disaster recovery policies incorporating best practices. Cost analysis and savings IT departmental expenses, then presented alternatives to budget while upgrading infrastructure and producing substantial OPEX cost savings (140K). Presented metrics to gauge results. Projects varied from small to large implementations (up to 10 Million in value- 650 users to 89000 users) with local and Virtual teams including:

Citrix Xen APP version 6/6.5 server farm for virtualized environment, troubleshooting and upgrades

SharePoint server configuration of 2010/2013 including server setup /workflows/ document management, Office 365 implementation planning

Main contact on projects to implement global connectivity via IPSEC VPN Tunnels between United States, Mexico, UK and Latin America, qualifying new sites with security requirements. Led virtual teams of cross platform multinational stakeholders. Directed all activities related to installation of equipment at more than 14 sites, both local and worldwide.

Led and managed Projects for new software releases and migrations to DEV, UAT and PROD environments, working with corporate Change Control Processes to ensure established guidelines are followed. PM on Pilot document signing software, Web site migration to new platforms. Delivered technical briefings and project plans to management. Visio documentation for better communications

Architected new technology upgrades while producing budgeted cost saving, presenting to upper management for approvals. Implemented new DR solution with local images and cloud archiving.

Led team to perform a complete infrastructure upgrade server environment P2V conversion of infrastructure including bringing in new virtualized environments, adding redundant disaster recovery while performing platform upgrades.

Successfully upgraded organization’s Windows Domain and Exchange email server. Provided support for financial applications and process control software. Group policy configuration for domain user’s server configuration, FSMO roles for active directory including upgrading the schema.

Supervised staff, hiring and performance reviews, budget management, equipment procurement, researched new technology, and implemented new corporate security policies and disaster recovery.

Led the automation of design of new organization-wide IT/IS systems and defined the IT/IS architecture. Performed server and security audits, system backup procedures, and recovery processes to support business continuity strategies. Infrastructure:

Managed infrastructure and telecommunications systems for multiple WAN/LAN sites. Utilized various remote access technologies to allow efficient management for troubleshooting remote sites. Upgraded, documented and tracked several WAN circuits to introduce regular savings. Active directory moving FSMO roles, schema update, group policy, exchange migrations. Setup site to site VPN's to several remote locations, improving security during the process. Meraki Cisco wireless implementation. Disaster Recovery and Security: Introduced a hybrid cloud disaster recovery solution as part of a cost savings migration alternative, instantly achieved significant improvements to service and costs. Security; provided analysis of security vulnerabilities and roadmap for new technologies. Upgraded PIX to ASA firewall, introduced next generation Palo Alto firewall intrusion detection, Rapid7-Nexpose vulnerability scanners for remediation, decreased network risk security scores by updating firmware, server patching and device

Contact this candidate