SUMMARY

** ***** ** *********** ********** experience; highlights of which include:

Administration and support of production B2B/B2C web service applications and related enterprise server infrastructure using Apache/Tomcat, .NET Applications in a SOA framework.

Experienced in installation, configuration, migration and day to day administration of Windows & Linux server infrastructure throughout multiple global data centers in High Availability “always-on” redundant hosting environments & public cloud infrastructure including Amazon Web Services (AWS) and Microsoft Azure, Active Directory (AD), Group Policy Objects (GPO), MS Exchange, SQL, IIS

Systems Configuration Management (SCCM), Qualys PM, BigFix, New Relic, DevOps automation tools (PowerShell, Desired State Configuration / DSC, Chef, Puppet), Jenkins for CI, Docker, GitHub, SVN for Source Control.

Support and maintain data architecture within a variety of network infrastructure, load balancing (Big IP, F5); SNMP, LDAP, DHCP, DNS, IPsec and more.

Multiple certifications, including AWS, ITIL v3, MCSE, MCP, A+, Six Sigma Green Belt, and more.

EDUCATION

BS, Electrical Engineering, 1999

California Polytechnic State University, Pomona, CA

CERTIFICATION

Microsoft Certified System Engineer (MCSE)

Microsoft Certified Professional (MCP)

AWS Certified Solutions Architect-Associate

GE - Six Sigma Green Belt

ITIL v3 & IT Service Management

TRAINING

Fundamentals of Application Security & Vulnerability Testing

Amazon Web Services, EC2, S3, IAM, Route53, RDS, VPC’s, Serverless, and HA Architecture

Team Foundation Server (TFS 2010) Administration

Team Foundation Server (TFS 2008) Administration, Source Control, Branching/Merging/Build Support

System Center Configuration Manager

Relational Database Management using SQL

Enterprise Data Management

TECHNICAL SKILL

IT Infrastructure: Amazon Web Services (AWS), SCCM, Qualys PM, VMware ESX, HP-EVA SAN, EMC Clarion, HP Blades, HP Insight Manager, GPO, MS Exchange Server, Boxer Server, BladeLogic Enterprise Automation Tools, Docker App Containers, Puppet, and Chef.

Operating Systems: Windows Server 2016, Windows 10, LINUX Red Hat/ Ubuntu/CentOS, UNIX, HPUX.

Enterprise Applications: New Relic, Service-NOW, HP Service Manager, MySQL, SQL Server, TFS, Visual Studio, MS Office 365, MS Access, MS Excel, Flash, Citrix, Tivoli, BMC Remedy ARS, Microsoft Outlook, Active Directory, Clarify, SharePoint Server, MOSS, SMS, Big Fix, Repliweb, and ADAM.

Network: Cisco IOS, Site Scope, Checkpoint Firewall, Sonic Wall, Siemens PBX, VoIP, LAN, WAN, SAN, TCP/IP, DNS, DHCP, NIS, VPN, Wi-Fi, T1, DS3, MPLS, Wi-Fi 802.11b/g/n, WEP, WPA, WINS, LDAP, Terminal Services, HTTP, HTTPS, SMTP, FTP, VPN, and IPsec.

Trade Practices/Methodologies: DevOps, Agile, SDLC, AD&S, Lean, Six Sigma, DMAIC, ITIL v3 / ITSM, SOA, and Disaster/Technology Recovery Planning

EXPERIENCE

Common Securitization Solutions (CSS), Pasadena, CA 2/2017 – Present

CSS is a joint venture Fannie Mae and Freddie Mac established in 2013 to build and operate a new single securitization infrastructure.

Sr. Systems Administrator

Supported hybrid deployment of Office 365 in Azure Cloud, including Microsoft Teams, Skype and SharePoint. Facilitated transition from Microsoft Office Business Productivity Online Suite (BPOS) to cloud-based Office 365 services / Microsoft Azure IaaS, PaaS, and SaaS.

Developed & implemented infrastructure patch management solution. Leveraged Qualys Cloud Agent Gateway Services to fast-track continuous deployments of software updates on all mission-critical applications and zero-day vulnerability remediation, and compliance reporting; automating the full lifecycle of discovering, prioritizing and remediating vulnerabilities

Configured and supported SCCM software distributions using the CAS model, Software Metering, maintained primary and secondary management sites, Desired Configuration Management State, OS deployments using MDT.

Setup Chef Server, client and wrote cookbooks and recipes to deploy applications on Dev, QA, and Production environment. Developed modules, manifests, classes to deploy database servers, J2EE web applications, web servers.

Implemented and maintained AWS EC2, IAM, S3, EBS, Elastic Load balancer (ELB), auto scaling groups & services.

Standardized automation practices utilizing Chef and Jenkins and installed Nginx, Redis, MySQL & Postgres Monitoring Tools.

The Walt Disney Company, Burbank, CA 12/2014 – 12/2016

Senior DevOps Engineer - Disney Technology Solutions & Services (DTSS) - Corporate

Primary responsibilities include implementation and support for Internet based solutions developed for Disney ABC online business units. This includes any content delivery systems, hardware configuration, custom software implementation, database administration, network and systems design, performance and process improvement, and systems documentation.

Streamlined Release Management process using automation tools (GitHub) by creating new Chef Cookbooks and modified existing configuration recipes for Dev, Test, UAT and Production Environments to enable continuous integration throughout the development lifecycle.

Designed a high availability application infrastructure for HP ALM tools suite scaled for over 65k global users utilizing Amazon Web Services (AWS - EC2) cloud hosted application infrastructure.

Integrated New Relic application and server performance monitoring tools and API’s as a SaaS to Disney Corporate Online services customers, deployed as a Chef cookbook, available as a standard service offering.

Experian, Costa Mesa, CA 03/2013 – 12/2014

Lead Systems Administrator

Responsible for day to day administration and support of production SOA web server infrastructure, supporting global B2C websites, including: www.Experian.com, ExperianInteractive.com, and FreeCreditScore.com.

Configured and deployed ESX VM host clusters and provisioned over 2,000 production VM’s into geographically dispersed Active-Active Failover VM server farm configuration co-locations (Irvine, El Segundo, & UK).

Maintained Experian's internal productions network including web, application server infrastructure and related services.

Designed, configured and deployed PCI/SOX compliant systems that delivery real time monitoring, centralized logging, security events, and file integrity checking. Responsible for compliance and security initiatives. Managed access control policies, identification and authentication, authorization mechanisms and logging and monitoring controls.

Developed scripts and tools to improve administration and support of UNIX-based systems architecture. Spearheaded virtualization initiatives to ensure that the critical business applications conform to high availability standards in a SOA enterprise framework.

The Boeing Company, Seal Beach, CA 01/2011 - 03/2013

Systems Administrator -Functional Excellence & Compliance, IT Product Systems, Centers of Excellence

Responsible for administration, integration, development, and support of Boeing Application Lifecycle Management systems and Global Integrated Development Environment (GIDE), as well as leading release/configuration management team for software development projects throughout FE&C. Managed source control, data collection, reporting and project tracking.

Implemented, configured and performed day to day administration of production VM server farm in a complex operating system (Windows/ Linux/ Unix) server environment

Developed TFS project reporting features and integration with SharePoint portals using SQL Server Reporting Services (SSRS) and SQL Server Analysis Services (SSAS). Maintained SQL Server Reporting and Analysis cube for team development projects in TFS 2010, SharePoint 2010 Team Portals, and Project Server 2010 Web Application.

Facilitated release planning meeting to create release plans that lay out the overall project as well as negotiate a release schedule that everyone can commit to.

Acted as a gateway for all production-bound code releases and configuration changes; ensuring the completion of testing and promotion of CI's thru all stages of development environments Dev, QA, UAT, and Pre-Production.

Established an Agile release process to meet condensed 4-week development iteration. Created a unified release plan by combining all maintenance into a single scheduled outage per month.

Developed automated testing capability of Microsoft Test Manager (MTM 2010) to accelerate development iteration unit testing, while doubling development cycle velocity. Leveraged Troux Configuration Management Database (CMDB) to store and catalog product specifications for all configured items.

City National Bank, Los Angeles, CA 8/2010 - 12/2010

Microsoft Solutions Architect

Maintained Active Directory network infrastructure consisting of multi-forest Enterprise network segments; tracked and repaired domain controllers, group policy, DNS, DHCP, WINS, and member servers including Active Directory database and MS-Exchange 2007.

Responsible for spearheading compliance and security initiatives throughout the entire network infrastructure.

Managed access control policies, identification and authentication, authorization mechanisms and logging and monitoring controls.

Performed Exchange 2007 data-store recovery and migration to SAN storage. Configured and managed Compellent SAN storage for VM infrastructure. Installed and configured VMware ESX4i hosts, including vSphere and SRM.

Established and implemented DNS caching servers in response to security concerns with DNS recursion. Executed MMS FDCC XP Compliance security settings through group policy and initiated Enterprise Service Optimization (ESO) project; collaborated with and enabled Microsoft engineers to generate detailed report of current environment.

Bank of America N.A. (formerly Countrywide Bank FSB), Pasadena, CA 03/2005 - 12/2009

Senior Systems Engineer, Bank IT Infrastructure

Built, configured and maintained high-availability, 24/7 server infrastructure for retail and commercial online banking customers. Collaborated with vendors; created system specifications for a new VMware environment including SRM/Virtual Center/VMotion. Provided comprehensive support from designing, capacity performance and optimization as well as Team Foundation Server, Windows Server 2008 administration, configuration / support of HP Blades and Proliant DL 380/DL580/DL385/DL585 (over 2,000).

Led implementation of systems development projects to sustain Countrywide's rapid expansion into the commercial deposits sphere. As leading enterprise architecture SME, played pivotal role as commercial bank IT infrastructure's liaison to corporate enterprise architecture, NOC engineering, PMO, and internal/independent banking auditing groups.

Responsible for maintaining servers residing in DMZ environment for online banking web & application tiers. Modified firewall exception rules. Performed PIX configuration, Alteon Load balancing, SQL clusters configuration, data replication & performance optimization.

Managed implementation and delivery of enterprise virtualization of production servers utilizing VMware ESX 3.5 in a shared VM Farm Environment. Project scope entailed the consolidation of 500+ HP Proliant DL360/380 Servers from four Corporate NOCs, and migration of 150 instances of Windows 2000/2003 Servers to new corporate VM Farm, reducing Server footprint by over 35% by moving to blades/VMware. Migration efforts resulted in $15k in annual cooling and power savings for Q3 '08 thru Q3 '09.

Responsible for administration and support of production SharePoint farm environment, T-SQL, SSRS and related IIS website architecture including: SharePoint Central Administration, SSP and site collection settings.

Installed and configured 3rd-party web parts and integrated CodePlex applications extending SharePoint automated tracking of all ITSM & Enterprise Change Management activity and approval workflows.

Developed and managed MOSS 2007 object/collection data security policies in accordance with business requirements, industry best-practices regarding privacy, security, and banking regulatory compliance.

Leveraged .NET MOSS 2007 Developer to create approval workflow forms to streamline the bank's bottom-up manually driven Change Management process, which relied entirely on capturing screenshots of notes from each stakeholder approving the Environmental Change Request. Performed ongoing administration support of production online banking web and portals servers using IIS, RepliWeb, F-DNS, F5 BigIP and 3DNS.

Implemented early-adoption of virtualization environment capable of hosting web, application, and database server appliances to facilitate rapid "Sandbox" deployment requirements; Built and administered Bank's first virtual computing infrastructure consisting of 30+ VPC Windows 7 / Windows 2008 Server and numerous Linux OS images to enable proper regression testing on a full range of operating systems and tooling environments.

Implemented production server infrastructure monitoring and alerting using HP Site Insight Manager, NetIQ, and SiteScope. Maintained production B2B commercial banking portal and B2C online banking website http://commercial.countrywide.com.

Responsible for production enterprise patch deployments, code release and overall administration of commercial banking server infrastructure. Implemented Multifactor Authentication technology on core commercial online banking B2B applications (CCS, Positive Pay) Leveraged preferred vendor RSA and PassMark and existing e-Pass architecture and hardware resulting in an annual cost reduction of $300k in development fees while exceeding organizational stated goal of capturing $100 billion in deposits by the end of 2007 fiscal year.

Coordinated security audits of bank production SQL servers. Developed, and implemented IIS vulnerability remediation for Deposit Operations, Online Commercial Banking, and Electronic Payments Systems (Wire Ops) Project deliverables included: defining scope, analyzing 0-day vulnerabilities, determining risk potential for exploitation in DMZ & on CFC corporate network, measuring post-remediation performance in QA environment and implementation of tested counteractive / remedial measures.

Documented Fiserv core banking applications configuration, interdependencies and DR procedures for BCP including relevant architectural diagrams as well as 3rd-Level Run books and SLA -focused escalation procedures.

GE Financial, Sherman Oaks, CA 06/2002 - 03/2005

Senior Network / Compliance Engineer

Responsible for delivery of critical IT transformation projects at GE Financial Wealth Management business units. Delivered systems integrations, application/data migrations and process improvement projects utilizing DMAIC cycle and Six Sigma quality tools.

Responsible for design and implementation of HP Continental Clustered storage for fault tolerance & high availability: HP business servers (RP8xxx/K580/T class, N class, L class) HP Proliant DL360/DL380, HP RAID Disk Arrays, EMC SAN Clariion 310 (Fibre Channel /iSCSI Transport solutions). Configured Cisco7000 series routers/firewall using Cisco IOS.

Assisted client in formulation of business intelligence teams and infrastructures by sharing best practices learned through the application of Six Sigma quality tools in a matured SDLC environment. Integrated and tested infrastructure re-deployment & data recovery procedures in disaster recovery environment; raising audit assessment score from 68% to 91% compliance.

Reinforced corporate document policies and adopted compliant offsite storage for production data in compliance with SOX stringent requirements. Identified existing process gaps and created rigorous standardization implementation plans required for FTC compliance.

Led delivery of helpdesk modernization projects utilizing ITIL framework of prevailing IT practices. Coordinated IT support teams responsible for desktop imaging, patch deployment and hardware provisioning.

Planned, tested, and integrated Seibel core E-Contracting process and existing Great Plains data into a platform independent - intranet based implementation using Citrix MetaFrame 8.0, client internet browser and web2.0 ready mobile devices.

Fuji Photo Film USA Inc., Cypress, CA 02/2002 - 06/2002

Systems Engineer Imaging & Information Division

Utilized Fuji advanced technical training to develop and implement integrated, real-time, interactive Web applications developed at FUJI Imaging & Information Laboratories in Tokyo, Japan. A strong understanding of IIS, Java script, .NET, DHTML, XML and Secure Socket Layer (SSL) technology was essential in the deployment of Internet based photo processing and cataloging point of sale portal.

Member of Data Architecture Imaging and Information group; lead the development of secure web portal utilized by field photographers to transmit encrypted files containing images from a scene back to editorial management for copyright and publication. Developed installation procedures for groundbreaking Photo-Development-film processing system of the day and Implemented-training course for Client Lab Operators-speeding profitability.

LAN-Lab Communications Inc., Costa Mesa, CA 12/1999 - 02/2002

Network Specialist / Project Manager

Planned and implemented project team to satisfy Y2K rollout requirements for National Bank. Managed subcontractors & technician activities at jobsites. Recognized by same banking firm for achieving exceptional customer satisfaction.

Planned, designed, installed, and supported network expansion projects for leading supermarket chain with stores in, UK, Canada, South America, and the U.S.

Managed vendor relationship with Symbol Technologies, IBM, Nortel Networks, Avaya, 3Com, and Bay Networks.

Installed, digital cable head-end systems, ATM switches and Nortel / Cisco routers, 3Com switches, IBM Servers, fiber optic cable, Symbol IEEE 802.11b Wireless LAN (Wi-Fi) in Retailer Point of Sale (POS) applications.

Intel Corporation, Folsom, CA Summer 1999

Engineering Intern

Assisted with schematic entry and analysis to support flag bits evaluation for multiple vector single instruction, multiple data (SIMD) channels execution including SSE instruction set.

Participated in binary code validation of SIMD (first featured in the Pentium 3 processor). Authored ISO-9000 procedures for inventory management and Y2K risk assessment.

Contact this candidate