Resume

AHSAN RAZA

ALBANY, New York ***** • 585-***-****

adjgrl@r.postjobfree.com

Vmware, Azure, IAM & IQM, Server & NETWORK ENGINEER Talented IT professional with more than 5 years of hands-on experience maintaining and improving technology infrastructure in the education and retail sectors. Proven ability to analyze operational needs and design cost-effective solutions. Track record of managing complex projects on time and within budget. Demonstrated capacity for building and securing mission-critical software and networks. Solid expertise in maximizing resource utilization by automating key tasks and carefully tracking inventory. Outstanding written and verbal communication skills. CERTIFICATIONS

Cyber Ark Defender Certified Sentry

PMP certified

Microsoft Certified Enterprise Expert

Microsoft Certified Solution Expert (MCSE) core

Microsoft Certified Solution Expert (MCSE) productivity Microsoft Certified Solution Associate (MCSA)

CISA (Certified Information System Auditor)

CISM (Certified Information Security Manager)

Cisco Certified Network Professional (CCNP)

Cisco Certified Network Associate (CCNA)

compTIA Certified Advanced Security Professional CASP+ compTIA Security+

CompTIA Linux +

TECHNICAL SKILLS

Desktop, Web & Mobile Languages: Java, C#, C++, JavaScript, HTML5, PHP, Android, Python, CSS Networks: LAN, WAN, TCP/IP, SSH, DNS, DHCP, VPN, SAN, VLANS, MPLS, OSPF, EIGRP, RIP, Port Security, STP, NAT, Firewall, WINS, ACL, VoIP, IPsec, SSL VPN, Palo Alto Firewalls, Checkpoint Firewalls, ASA 5505, Cisco Catalyst Equipment, 802.1x, RADIUS, TACACS+ Security: Wireshark, Nmap, Snort, Cisco Packet Tracer, Virtual Box, Metasploit Framework, Ettercap, Ufonet Databases: MySQL, Microsoft SQL Server, Oracle Database Methodologies: Object Oriented Programming (OOP), Data Structures and Algorithms Applications, Tools & Services: cyberarl, SAILPOINT, okta, Office 365, MATLAB, VMWare, Citrix Technologies, WordPress, Amazon Web Services (AWS), SAP Crystal Reports

Platforms: Windows Client Platforms, Windows Server Platforms, Red Hat Linux, Ubuntu, Kali Linux, Mac OS PROFESSIONAL EXPERIENCE

New York State Office Of Information Technology 2014-present Information Technology Specialist 2

Data Centre Hosting Group

VMWare:

• Managing and full administration for 6000+ windows servers and virtual machines in 6 different vcenters.

• Worked and managed large scale 6(NASA, EMEA, APAC region wise) vCenter servers with 500+ HP ProLiant Server as ESXi Hypervisor OS with vrops v6.5 console.

• Managed the design, installation, and management of organization-wide local area network, wide area network, network segment, and internet systems.

• Managing 500+ physical servers with hardware monitoring, fault identifying, raising request to replace defective unit with HP vendor through remotely console.

• Have excellent knowledge in Windows Server 2003 & 2003 R2, 2008 & 2008 R2, 2012 & 2012R2 and 2016 versions.

• Failed to connect with server, OS hung state troubleshooting and unexpected failures handing with servers in service now alerts and user issues.

Resume

• Optimize network performance and reliability by maintaining hardware and software, analyzing technical issues, and ensuring availability to system users.

• Provisioning Windows and Linux Servers with parent VM (Template or. OVF or .ISO) with Service now change tickets and work requests.

• In VMware VSphere clients, Machine unresponsive and troubleshooting it and bring back the server online.

• VMotion with host and storage, Monitoring DRS, HA and data stores monitoring and clustering VM app servers.

• Worked on Physical Server configuration, peripherals troubleshooting, CMOS and Network connectivity issue and raise case with vendors for defective unit replacement activity with site contact to Field engineers. VDI infrastructure:

• Organized VMware View VDI infrastructure with VMware Horizon Administrator, Security and connection server configuration, Pool creation, RDS Farm and provision with parent VM snapshot as per requirement troubleshooting recompose operation and agent unreachable issues.

• Maintain the performance of the Linked-clone desktop pools.

• Create and provision the different type of VDI pools.

• Assigning users to the pools by entitlement options. AD:

• Supporting and managing more than 6000 Windows servers globally 2003/2008/2012/2016 solutions and configurations.

• Responsible for deploying security patches to the servers following standard patching methodology.

• Active Directory experience, DNS, DHCP, GPO and DFS support for multiple regions and domains.

• Administering active directory services, replication, trust relationship and group policies.

• Active Directory related issues such as: Logon failures, Replication issues, authentication problems, chasing logs in global console Alert Logic and finding cause for issues.

• Files share permissions with inheritance and DFS requests and issues with targets.

• Managed DNS records reservations and DHCP request in info lox IPAM console with VLAN.

• User account management (Creation / deletion/password reset / unlock/ disable etc/Account extension).

• Raise a support case with avatier for password station related issues. SCCM Administrator:

• Handling SCCM architecture, which includes 3 SCCM CAS servers, 67 Primary Server, 53 Distribution Points and 60000 Clients.

• Monthly Patch Deployment: Perform monthly MS security patch deployment activity to keep the clients IT environment free from known vulnerabilities. Activity includes testing and deploying security patches as per the business requirement (Test, Pilot and Production phases). Maintaining the compliance for deployed security patches.

• Worked on the Database Replication issues where the DB replication between the sites was not happening.

• In Patching worked on the Enforcement State Unknown machines to make it complaint and achieve the compliance level.

• Follow ITIL methodologies to handle Incident/Problem/Change Management related work within the scope of the project. Providing updates on Client’s call, handle Outage call (major issues).

• Client troubleshooting: Troubleshooting and repairing the machines having SCCM client issues.

• Reporting: Generate and provide various reports on environment status, Patch and Software deployment status, Compliance status, and Hardware and Software inventory.

• Performing Daily Checks on SCCM 2012 site servers and troubleshoot if any issues found.

• Performing testing activity on LAB infrastructure of various SCCM operations before changing/implementing it in production environment.

GENERAL ELECTRIC/GDIT ALBANY NY 2019- TILL DATE

IAM & IQM DEVELOPER

• Configured Sail Point Identity IQ Application Software and implemented the software as per the requirement of the Architecture and Infrastructure team.

• Worked on Upgrading Sail Point Identity IQ from 7.2p2 to 7.3p4.

• Performed application onboarding and configured connector applications like JDBC, active directory, web services, delimited file, cloud gateway, sales force.

Resume

• Deployed Self Access Certification (A certification that would trigger Access Reviews for all the Employees throughout the Company).

• Custom java classes were developed in order to raise custom assignments in Identity IQ.

• Created and developed active phase, revocation phase, and sign-Off rules for certifications.

• Constructed policy rules to ensure the Separation of Duties (SOD) and wrote new workflows to reflect business needs.

• Worked on migration from PeopleSoft HR to Workday - Identity Mappings, Life Cycle Events, LCM Workflows Attribute Sync.

• Developed Custom Reports using HQL Query.

• Engaged in the development of custom Approval Workflows that are specific to each of the entitlements by using Extended Attributes.

• Rapidly establishing a good working relationship with customers and other professionals.

• An ability to assess each customer/employee's IT knowledge levels.

• Ability to deal with difficult callers.

• Developed Life Cycle Manager Workflow as per the client requirements by integrating custom approval workflows.

• Developed Custom Connector for Blackberry UEM Client.

• Undertaken the development of Sail Point build processes, code migration, and source control use.

• Worked on Policies like Advanced Policy for Employees & Contractors, Account Policy, Entitlement SOD Policy.

• Worked on Birth Right Provisioning and Role-Birth-Right-Provisioning.

• Worked on Life Cycle Events - Joiner, Leaver, Mover, Rehire. Environment:

Java, SailPoint 7.1/7.2/7.3, Identity & Access Management, BeanShell, XML, CSS, Tomcat 8.0, Active Directory, LCM, IIQ Console, LDAP, JDBC, Oracle, Linux, Project Planning, Business Analysis, Process Improvement, Process Flow. MetLife Incorporated- Albany, NY- January 2017 to Nov 2019 NOC Technician (Unix, Linux & Window Server Group) Diagnostic & Resolution Support:

• Analyze, troubleshoot, and resolve basic Network problems that impact production systems within the organization; documentation and appropriate escalation is requisite in this process Install, configure and maintain a scalable and high availability virtual environment utilizing VMware Horizon View 7.x and vSphere ESXi 6.5 hyperviso.

• Execute the maintenance window changes for multiple locations, performing troubleshooting of routing and switching issues.

• NOC Distributed Specialists will be properly engaged when additional support is required. Enterprise monitoring research alerts, trends, and network performance to resolve chronic issues or assist in root cause analysis. Utilize Network Management tools for incident identification, trend or historical analysis, pro-active research, and for corrective actions where appropriate.

• Installation and Configuration of SCCM 2012 and WSUS Servers. Application Package Creation (MSI, MST etc using tools like admin studio.

• Applied routing changes including BGP, OSPF, RIP, PIM, and EIGRP, which improved network/system performance.Monitor performance and ensure system availability and reliability.

• Maintain network LAN/WAN infrastructures, monitoring and performance disaster recovery operations and data backups when required.

• Provided support for required infrastructure & business projects; gave timely status updates to direct report and other IT management.

• Query based customized collection set and Creating SCCM Cloud Distribution Point.

• Provided Tier3 Support for issues in relation to all aspects of SCCM/SQL infrastructure including proper escalation, communication and management of production system problem.

• Performed backups of all servers and provided support and assistance to users and troubleshooting, tested networks, and performed other duties as required.Recommend and implement process and procedural enhancements that will maximize efficiency and performance to improve operational effectiveness. Proven ability to determine necessary corrective action steps to minimize delays and restore operational functionality. Perform ad-hoc requests or be assigned smaller scale initiatives by NOC management reduce network and server based Resume

service interruptions. Develop a fluid relationship with our technology partners to increase NOC knowledge and capabilities.

Communication:

• Report and document all issues by utilizing daily turnover log, Service Now (Incident and Change). Assist in determining root cause and recommend permanent resolutions. Ability to communicate with peers on issues and tasks that require proper management and escalation. Assist in compiling and writing of documentation for procedures to troubleshoot, recover, and support all Network and Distributed based devices Provide guidance and feedback to other NOC members by sharing system and process knowledge and expertise Appropriate parties are engaged and issues are resolved in a timely manner and impact is minimized and lessons learned / take ways communicated.

• Performing duties on different issues in command center/NOC MetLife on Windows server 2003/2008/2012 administration Windows 2003/2008 server builds HP server/storage hardware UCS server hardware, Server virtualization

(VMWare) Network clustering, Citrix, Microsoft Active Directory ‘Microsoft Exchange/Outlook Basic understanding of TCP/IP protocol, VMware, vSphere wide area networks, Cisco switches routers, Solar Winds, Power Shell Scripting, Networker Data Domain, Symantec, Blackberry Enterprise Server, RSA, Red hat Linux /Unix scripting/Linux & Unix server monitoring /Linux Unix server management/supporting different groups in running different applications on Linux or Unix servers by restarting /recycling jobs after checking system out logs /error logs running must gather/restarting nodes and servers (web, App, DR and QA) monitoring different alarm in all mentioned(windows, Linux & Unix) environments for CPU usage their disk space issue monitor security scan failure alarms etc.

• Windows 2003/2008/2012 administration Windows 2003/2008 server builds HP server/storage hardware.

• UCS server hardware, Server virtualization (VMWare) Network clustering, Citrix, Microsoft Active Directory.

• Microsoft Exchange/Outlook Basic understanding of TCP/IP protocol.

• Wide area networks, Cisco switches routers, Solar Winds, Power Shell Scripting, Networker Data Domain, Symantec, Blackberry Enterprise Server, RSA, Linux Unix scripting, Linux Unix server administration, Vsphere resolving tivoli alarms. NEW YORK THEOLOGICAL SEMINARY, New York, New York • September 2013-July 2019 Education center with up to 70 professors and support staff including IT, HR and accounting personnel

• Monitoring and maintaining internet connections and network strength.

• Talking staff or clients through a series of actions, either face-to-face or over the telephone to help set up systems or resolve issues.

• Maintained seamless end-to-end communication by delivering support for Video Conferencing System (Cisco VCS/TMS).

• Ensured assessment and supporting materials were complete and met Citi and the supplier's expectations including the identification of controls gaps, weaknesses and vulnerabilities.

• Designed, configured, and installed all Data Center Network Devices to support 2000+ users, including ran cables, ports, routers, switches, Load Balancers, and VPNs.

• Documented and defined risks, potential impacts and the probability of such an event.

• Escalated high risk findings to Third Party Risk Managers (TPRM) within Global Supply Chain to drive decisions, formal signoffs and security treatment plans.

• Vender access management adherence to maintain compliance include but not limited to the following Segregation of duties, least privileges, data sensitivity and classification, Multi factor authentication, Access control and Physical security.

• Software update deployment (Patching using SCCM and WSUS). Bitlocker Integration with SCCM and Bitlocker MGMT via MBAM.

• Analysed systems to identify and perform needed maintenance & applied new information and techniques to security strategies.

• Primary responsibilities include patch management, application/package distribution, operating system deployment (OSD) and security compliance.

• Created and configured 800+ VPNs for corporate and employees use planned, designed, and installed networks for 500+ clients on devices. Ensured scalability and security on all networks.

• Maintaining records in the Database of the candidate that have been sourced accordingly by skill wise, experience levels and also weekly reports on behalf of number of technical rejects, number of rejects, Candidates on hold and number of offers generated.

• Composed and posted risk assessment reports regarding third party exposure and risk likelihood. Resume

• Created assessment packages Third Party Assessment Questions (TPAQ Questionnaires) based on the supplier's task/service to Citi. This includes Cloud Services, Electronic Transportation Media (ETM)/Courier, Continuity of Business, Physical Security and European Agent Banks.

• Successfully remediated SCCM Site and client issues regarding boundaries replication, application deployment patching group policy and windows management instrumentation (WMI) using configuration manager trace log (CMTRACE) Tool.

• Supported the Information Security (IS) Risk Assessment team within Third Party Risk Management, enhancing and/or maintaining the IS Risk Assessment program, managing, monitoring, and prioritizing assessments to effectively balance capacity across the team.

• Worked closely with various groups, including development, operations, networking, security and allied businesses to achieve goals.

• Collaborated with Quality Assurance (QA) and internal supplier relationship owners to understand business requirements, and provides them with support, education, and training to build their risk awareness.

• Provided guidance and direction on conducting thorough Information Security due diligence to onboard and pre-screen prospective new suppliers. Advised directed reports as needed, to engage with prospective supplier's technology and security teams to assess their technology, operating methodology, and security policy worked on the Database Replication issues where the DB replication between the sites was not happening. ACADEMIC PROJECTS

Intrusion Detection System (IDS) & Intrusion Prevention System (IPS), CCNY • 2018 Utilized C coding and bash scripts to perform man-in-the-middle attack in laboratory environment. Collected statistics using Wireshark. Developed Java-based graphical user interface (GUI) to enable users to detect intrusion based on statistical data. Constructed Linux- based firewall using IP tables, NFQUEUE and C++. Allowed users to detect protocol-specific cyberattacks and protect critical infrastructure.

Cross Site Scripting

Auditory Modified Perception - A solution to transform a mobile phone and a Bluetooth headset into an economically programmable hearing aid device

EDUCATION

Master of Engineering, Electrical Engineering - 2019 Cyber Security Engineering Specialization

The City College of New York (CCNY), New York, United States Bachelor of Science, Engineering

BE Telecommunications

Allama Iqbal University Islamabad Pakistan

Core Competencies

System Administration • Networking • Intrusion Detection & Prevention • Antivirus Protection • Hardware Software • Peripherals • Telecommunications Equipment • Cloud Services • Routing & Switching • Servers Project Management • Procurement • Installation & Configuration • System Integration • Performance Monitoring Inventory Management • Software Licenses • Business Continuity • Audits • Reporting • User Training & Support AFFILIATIONS

Institute of Electrical and Electronics Engineers (IEEE) LANGUAGES

Fluent English, Urdu, Punjabi & Hindi

Contact this candidate