Post Job Free
Sign in

Solution Architect Cybersecurity

Location:
Chicago, IL
Posted:
September 27, 2024

Contact this candidate

Resume:

Tam Nguyen

To whom it may concern,

I'm a US citizen who is currently living in the US. I have worked in the IT industry for more than 25 years, and I'm specializing in IT Operations and IT Security on- prem and on cloud.

I used to be Premier Field Engineer for AD, AD Security, Azure Engineer, Azure Security Engineer, and Azure Cybersecurity Architect Expert + Azure Solution Architect Expert, Office365, DB, AI, IAM for Microsoft.

I also used to be working as a Director, Manager managing more than 30 IT engineers.

I have been certified as Microsoft Cybersecurity Architect Expert, Microsoft Solution Architect Expert, DBA, Office 365, Azure AI Engineer, etc. I have also been certified as CISSP, CEH, and I'm also CCNP-Enterprise.

Here is the list of all certs I have earned so far: AZ102, AZ104, DP300, SC100, SC200, SC300, SC400, AZ305, AZ500, AZ700 Azure Security Architect Experts / Azure Solution Architect Experts / Azure AI Eng / DevOps Security / MCSE / Linux / CCNP-Encore / CISSP / CEH.

As of now, I'm the only one Sr. Cybersecurity Architect for Berkshire Hathaway - National Indemnity and I'm a Special Security Advisor for Mr. Warren Buffet. I would like to submit my resume for the Active Directory System Admin position.

.

Should you need anything please let me know. Thanks for your time, and I look forward to hearing from you soon.

Sincerely Yours,

Tam Nguyen

Tam Nguyen

Skills Overview

Professional

Worked as Enterprise System Engineer / Network Engineer, Premier Field Engineer (PFE), Security Engineer, Solution Architect, and lastly, Cybersecurity Architect for AD, Azure, O365, and Applications at Microsoft

Worked with Containers, Dockers, Kubernetes, and Terraform

Worked at Microsoft as Technical Lead for Cybersecurity Architect

Performed pen-test, malware hunter and analysis, forensics, and vulnerability management, and conducted several I&R cases.

Had over ten years working as an MCSE instructor / MCT (Microsoft Certified Trainer) at several CTECs, ATECs

Lead up to 20 highly skilled Security Analysts/Engineers/Architects.

Had written hundred how-to lab articles and sold them to various authors, the majority of which had been posted on Microsoft TechNet.

Performed pen-test, malware hunter and analysis, forensics, and vulnerability management, and conducted several I&R cases.

Accomplishment (in terms of Azure Cloud)

Led the team of 15 Cybersecurity Architects, give and take

Provided hands-on training to all Cybersecurity Architects on Azure and O365 as well as the processes of engagement, implementation, and better services to Microsoft customers.

Provided reports with performance metrics in terms of scalability, deployment readiness, and high availability.

Performed network assessments and provided the roadmap to MS clients in terms of scaling, deployment, and high availability by using Azure cloud.

Worked with Azure and Office Implementation teams to migrate, and build cloud networks for MS clients. After that, secure the network both on-prem and in the cloud to protect their data, both at rest, in transit, and in retention.

In terms of PaaS in particular, showed MS clients that they could cut their “coding” time, add their development capabilities without adding staff, develop for multiple platforms easily, support geographically distributed development teams, if an application, and manage their application lifecycle efficiently.

Pinpointed the areas the Azure cloud team could have done better, and Cybersecurity Architect teams could have provided better services if they could engage much more early on.

Identity and Access Management (IAM), Identity Governance and Administration (IGA), Privileged Access Management (PAM), Network Security, Zero Trust Network Access (ZTNA), Data Classification, Security Operations Center (SOC), Security Engineering, Asset Management, and Vulnerability Management.

A Security Advisor for 20 other companies of Mr. Warren Buffet – under Berkshire Hathaway

Transformed Security postures of all the companies under Berkshire Hathway.

Accomplishment (in terms of Community)

Been teaching AD, PowerShell, Linux, Bash Shell Script, Python online for 1k+ around the world for 2+ years, especially for at-risk youngsters, and around 350 people in Metroplex from the beginning of the year – for free.

Together with my son founded fortylove.org through which we conduct tennis tournaments, collect fees and donations, and donate everything to homeless shelters (Uplift.org) for more than five (5) years.

Experience

NICO and BHHC Oct 2022 – Present

Special Security Advisor & Sr. Cloud Cybersecurity Security Architects – AD, Azure, O365, IR & AI Research Lead

Transformed Security postures of all Berkshire Hathway companies, staring with on-prem to on-cloud.

Azure and MS365 Security

AD and AD Security Assessment

IIS, Dfs, Fie and Print, Universal Print

Azure Security, and O365 Security

Azure Migration and Security Architect

SRD, Security Baseline, and IR process

Palo-Alto Firewall.

CyberArk.

ProofPoint

Identity and Access Management (IAM), Identity Governance and Administration (IGA), Privileged Access Management (PAM), Network Security, Zero Trust Network Access (ZTNA), Data Classification, Security Operations Center (SOC), Security Engineering, Asset Management, and Vulnerability Management.

NTDS- Microsoft Dec 2017 – Oct 2022

Technical Lead of Cybersecurity Security Architects – AD, Azure, O365, IR

Azure and MS365 Security

AD and AD Security Assessment

Azure Security, and O365 Security

Azure Migration and Security Architect

Using Office 365 Security and Compliance Center

Incident Response

Provided Design/Architect Network Security including Microsoft technologies

DLP, and DR

Vulnerability Scanning and Pen-Test

Web application pen-testing experience based on (OWASP Top 10) or mobile application security, Kali, Damn Vulnerable Web Application, Burp Suite Pro, Mimikatz, and OWASP Zap.

Identity and Access Management (IAM), Identity Governance and Administration (IGA), Privileged Access Management (PAM), Network Security, Zero Trust Network Access (ZTNA), Data Classification, Security Operations Center (SOC), Security Engineering, Asset Management, and Vulnerability Management.

DDOS Mitigation

Mitre Att&ck

Lead 15 Premier Field Engineers at Microsoft

Quilogy, LLC Nov 2012 – Dec 2016

Sr. Network Security Director

Worked on various projects for clients.

Designed Microsoft Security for AD

Implemented O365. Migrated Office 365 in Hybrid mode then cut over

Designed Microsoft AD

Performed Vulnerability Scanning.

Pen-Test with Python and PowerShell Empire + Kali Metasploit + Burp, etc.

Incident Response

Performed audits on NERC CIP, FISHMA, HIPAA, SOX, PCI, etc.

LogRhythm

Network Security Architects

Perform computer / mobile forensics for electronic crimes.

Datalink Connection Nov 2005 – Nov 2012

IT Manager

IT Consultant for Microsoft, Sprints, etc.

Performed pen-tests as Network Security Consultant and Vulnerability Scan on all segments of the network. Managed Firewall Policies. Performed domain security tasks (File, Active Directory & DNS Security, and Web access).

Created general IT policies.

Perform vulnerability scanning and pen-test for federal.

Mobile Device Management (Mobile Security Management)

Worked as a Network Application Security Analyst for BMC-Remedy product, which involves scripting (JavaScript), gathering all the requirements – including ports and security associated with daily tasks and monthly maintenance. Tested all new releases from the beta environment to the production environment and performed security checks from the product front-end to the database back-end with vulnerability scanning, pen-test, and firewall application-id-based filtering.

Created all GPOs for W2k3 and W2k8-R2 forest /domains and baseline security policies for all servers.

Managed over 300 servers, 1500+ nodes, multiple forests/domains, Active Directory, GPOs, DNS (Primary/Secondary, Active Directory – Integrated DNS), WINS, WSUS, IIS (Web), Exchange 2k / 2k3 (front-end and back-end), Exchange 2k7 and Exchange 2k10 including the Edge server, MOM 2k / 2k5, 2k7, SCCM 2k7, Dfs (Distributed File Servers), File and Printing, Backup (such as Net Backup), and Security.

Managed nine (9) technical staff; one is CCIE – Cisco; one is Network Security; four are MCSE’s – System Engineers, and three are Desktop Specialists.

Composed technical articles and conducted training for various teams on W2k3 and W2k8 technologies as well as Hyper-V, etc.

IKON Network Geeks Sept 2001 – Nov 2005

Director of System/Network Services

Managed the IT team, its budget, and technical staff (10 full-time and five contracts)

Provided in-house hands-on training.

Migrated NT 4.0 multiple domains and BackOffice products – such as IIS 4.0, Exchange 5.5 - to W2k domains and IIS 5.0, Exchange 2000, Conference, Share-Point Portal, Microsoft Office Management (M.O.M.), W2k-Terminal, IIS 5.0, SQL 2000, SMS 2.0.

Created and managed Domain Controllers, DNS, DHCP, WINS, FSMO, Sites, RIS, Distributed File System (Dfs), Group Policy, IntelliMirror, Security, and routine maintenance domain wide.

Created and managed mailboxes, storage groups, policies on incoming and outgoing mail, routing groups, public folders, instant messages, security, and routine maintenance on all front-end/back-end Exchange 2000 servers.

Johnson County Community College Aug 2000 – Jan 2003

Part-time / Evening Adjunct Professor

Taught NT 4.0, W2k Server, and W2k Active Directory classes at JCCC as Adjunct Professor / several CTECs as Microsoft Certified Trainer.

Voted best Adjunct Professor by the IT division within JCCC. Nominated for the Lieberman award for the years 2001, 2002, and 2003.

City of Lenexa Dec 2000 – Sep 2001

The lead of Network Administrator

Manage NT 4.0 domain, three sites, and 40 servers, all PDC, BDCs, WINS, DHCP, DNS, IIS 4.0, File and Print servers, Exchange 5.5 server, policies, security, and routine maintenance.

Managed SMS 2.0 server.

Provided in-house hands-on training.

DPA July 1990 - July -1999

Technical / Project Manager

Managed 35 full-time server and desktop/laptop technicians.

Hired and conducted performance reviews for all staff.

Managed multiple projects for multiple clients at any given time.

Managed NT 4.0 multiple domains, multiple sites, over 3000 nodes, 200 servers.

Provided in-house hands-on training for all staff.

Education

Math – University of Science (VN)

Dakota State University – AI (in-progress)

Attending A.I. Bootcamp

Certification

Azure Solution Architect Expert 2023

Azure Cybersecurity Architect Expert 2023

Azure Network Engineer Associate 2023

Azure Security Engineer Associate 2023

Azure Database Admin 2023

Azure A.I. 2023

Microsoft Cybersecurity Architect 2023

Microsoft Security Operation Analyst Associate 2023

Microsoft Identity and Access Administrator Associate 2023

Microsoft Information Protection Administrator Associate 2023

MCSE

Linux Engineer

CEH

CISSP

CCNA & CCNP 2023



Contact this candidate