Software Engineer Windows Server
Resume:
Mr. Darren Pierre Green
H: 215-***-**** C: 267-***-****
adxx76@r.postjobfree.com
SKILL
YEARS USED
LAST USED
Cybersecurity, DevSecOps, Network / Systems Administrator IV Python Artificial Intelligence, Machine Learning, Developmental Concepts & Strategies with (NLTK)
22 Years
2023
Microsoft Windows and Red Hat Enterprise Linux (RHEL) 6.x & 7.x Active Directory, Server 2008, DNS, DHCP, McAfee ePO, Nessus Security Center Cisco networking devices, L3, VMWare ESXi
21 Years
2023
Summary
When incorporating Ansible to protect your Enterprise or Infrastructure with either Linux RHEL 6, 7, 8, 9, Fedora 27 Server, Fedora 38, CentOS 7 x86_64 to institute Powershell on Linux & other Windows 10 components these commands work very good (# dnf update, dnf install openssl10; # wget https://github.com/Powershell/Powershell/releases/download/v6.0.0/powershell-6.0.0-1.rhel.7.x86_64.rpm;) #dnf install Powershell-6.0.0-1.rhel.7.x86_64.rpm; # rpm –import https://packages.microsoft.com/keys/microsoft.asc;
# curl https://packages.microsoft.com/config/rhel/7/prod.repo sudo tee /etc/yum.repos.d/Microsoft.repo; # dnf install –y powershell; by instituting this particular command which starts it is #pwsh
By combining Atlassian Tool Chain along with Ansible creates a more robust Infrastructure and offers a wide array of possibilities when considering different security aspects within your Enterprise – wget https://www.atlassian.com/software/jira/downloads/binary/atlassian-jira-6.4.4-x64.bin
Designing, Implementation and troubleshooting of LAN/WAN//VLAN/ WWAN Wireless Security infrastructure all of Cisco ISE, Checkpoint, F5 vendor platforms which includes Routers, L2/L3 Switches, Fortinet Firewalls, Load balancers Wireless Controllers, Aruba, Clearpass, WatchGuard, FireEye HX, Carbon Black Protection(Bit9)
Involved and developing in automation, documentation, and standardization of Networks, Telecommunications
Experience in centralized management system to manage large-scale Palo Alto firewall deployments.
Capabilities include an extremely broad knowledge base and familiarity with the latest cutting-edge technologies, including firewalls, VPN, IDS, and IPS. In-depth knowledge of TCP/IP, high availability, load balancing, and remote management complements outstanding relationship management, analysis, and problem resolution skills as well as outstanding organizational, multitasking, and team building skills at all levels of UI builds in env.
Design/implementation responsibilities including design review, testing, implementation, and validation of enterprise networking technologies in data center environments in a timely, efficient manner with minimal downtime and following mandated compliances, design schematics/runbooks in full coordination / communication with relevant technical and non-technical teams, key stakeholders, and third-party vendors.
Focused and detailed-oriented Software Engineer offering exceptional troubleshooting skills and a talent for developing innovative solutions to unusual and difficult problems. Network Administrator experienced in Server Management; Systems Analysis; and Database Design. Implementing superior controls, and procedures, of a security program, which should reflect the nature of your data, being processed throughout the entire Network Infrastructure. When creating or updating Standard Operating Procedures it mitigates any difficulties a Network / Systems Administrator might endure while handling their duties performed on a daily basis.
Summary of Skills
Interface design and implementation
Open-Source Utilities (AIX&SANS)
VMware Experience ESX, NSX, vSphere, etc
Cisco Routers 2900 & Switches 3750 build using RIP, BGP, EIGRP, and OSPF Config.
Microsoft Tools (Windows Server 2008,2012, 2016,2019 Exchange Server Components)
Active Directory, GPO, OU, etc,
MySQL Server 2015,2017, 2019, Python AI & ML (NLTK), Tensorflow, Caffe, Apache Spark, Hadoop, Atlas, Athena, Tomcat, MS builds, etc
Linux Internals (YUM Config Build)
Linux Kernel, Rust Code Virtual Machine Build
Systems Designs & Knowledge of WIFI
Network configuration and Build Support
Development environment software UI builds
DHCP/DNS Ethernet and Firewall proficient
Make Files, Timelines, SLA, Inventory Audits
Visual Basics {Proficient in Golang, R, RoR, Python AI, ML, Languages} Pure Connect 2017r4-2019r1, Improve UI env. builds
RedHat Enterprise Linux/Oracle/OpenSUSE 15.1 & Secret DoD Government Clearance
Monitoring and Troubleshooting Experience
Knowledge of DOCSIS and its standards
Have expertise with TCP/IP & SDLC
Application administration of assigned COTS & GOTS products, specifically.
Accomplishments
Mastered engineering software programs, including Fedora, /RedHat Enterprise Linux 5.x, 6.x, 7.x, and Microsoft Server 2008, for a period of several years. Developed several internal tools to automate, mundane tasks, which were quickly adopted by other developers. Spearheaded the formation of an Internal Systems Group, to exchange ideas, and information, between the IT department, and other key internal groups, within the organization. Currently doing Linux Windows maintenance.
Education and Skills
ITT Technical Institute- Philadelphia, PA-USA
Applied Computer Science Specialized Technology Associates Degree, Graduated Information Technology April 1, 2014 (Computer Networking Systems)
Microsoft Office
Microsoft Windows 7
Microsoft Windows Server 2008
Fedora/RedHat Enterprise Linux, CentOS, Ubuntu, and 45 Different Distributions of Linux
Network Standards and Protocols
Networking Cisco Routers & Switches Studied from CCNA, CCNP Manuals.
Programming (C++, Rust, Python, Perl, Ruby, Golang, to improve UI/UX Environments with these Languages.)
Academic Achievement Awards (18 Awards including Excellent Attendance)
Experience
Network Engineer/Windows Admin /Automation / Systems Administrator 4 (The Magnificent D.P.G) September 2015 - Current
Have experience, expertise, and knowledge of applying SSL/TLS Certificates on Cisco Firewall ASA 5510, 5520, 5540, Assets by locating and following the SOP step by step until entire process is completed from within the SOP Manual. Red Satellite Linux for many software applications w/ 7.6, 8.0, 8.3, adding Rust Code to improve Linux.
Including real time threat analysis including detection, defense, and what makes networks vulnerable, {Building Snort Config, Metasploit Config, Influx DB Config, etc,} added Rust Coding to improve the Linux Kernel Environment
PBX highly sophisticated switch device utilized within telecommunications when combined with ACD it provides Queue Statistics, ANI, DID, DNIS, these functions and more can be incorporated through the IVR; S3 can be added through PS and many more components with an emphasis on Python AI scripting. Utilized a secured socket layer to implement the Cisco VoIP analysis to set the parameter of VoIP and utilized the WAN Concept and LAN Concept to find the right protocol. By building configurations through WinServer 2016&2019 Datacenter using VMWare ESXvi
Utilized RIP, BGP, EIGRP, OSPF, IS-IS, VoIP, and MPLS, to setup Cisco Apparatus 3950 and provided configuration to the Voice Gateways, SIP identifiers, H.323 identifiers, H.323 RFC3508, MGCP, SCCP DNS, DHCP, HTTP, FTP, SSH, SMTP, IGMP and ISO/IEC 27001 Standards includes 14 C.D. & 114 Controls; added Python 3.5, - 3.11, AI scripting S.P. builds to format extra security concepts in Enterprise for CUCM, CUC, and CER, RoR, Azure Pipelines trigger the version of YAML file that is utilized for each repository to be checked out. Z.T. IAM, OKTA.
Knowledge of Cisco vEdge for ZTP provides SD-WAN, Avaya, Extreme, HP and IBM networking equipment.
With any distribution of the Linux Family there are over 750+ different flavors and climbing your LVM’s {Bios Boot = sda1,Boot=sda2, /home=home= sda3/ext4, /root=sda5=ext4, swap=swap=sda6=ext4, var=sda5 =ext4 etc,} need to be set correctly this includes CentOS, RHEL 5, 6, 7, & 8 for System Deployments / Oracle Linux and Log parsing Developed RoR/Extraction application utilizing Microsoft SQL Server with a web front end written in HTML and JavaScript Rails uses Active Record to manage relationships between application data, constructed as objects with models, when concerning the Application Database. RoR protects against SQL Injection w/ORM or Active Record.
Completed the entire Shon Harris CISSP Examination Certification Test Guide manual reviewing all 1,453 Questions & Answers will be taking test very soon, I am a Member RedHat Developer Program(Integrate, Design, Orchestrate Continuous Development with New Emerging Builds of RedHat Components focused on Security, Compliance, and Performance which is RedHat Insights, RedHat/AWS, RedHat Runtimes, RedHat Openshift C.P., RedHat Ansible Automation Platform, and many other new developing architectures from RedHat that are currently being worked on
Utilizing DevOps configuration tools like Chef, Cobbler, Docker, Forman, and Puppet, AWS, Azure & EC2 package particulars along with scripting capabilities, CC, CI, CD, CP, S3, RDS, ELB, EBS, and EFS concepts of security, for Ansible, Ansible Tower, integrating ServiceNow with Chef, configuration baselines for DevOps, VMWare SD-WAN etc, Infrastructure as a Service (IaaS), Software as a Service (SaaS), Platform as a Service (PaaS), Desktop as a Service (DaaS) Python AI & ML Tensorflow & PyTorch, Keras, kubectl utilized for security in Telecommunications builds and constructed Machine Learning Methodologies to incorporate fascinating architectures in any environment.
Performed automated installation of Operating System using Kickstart for CentOS, RHEL 5, 6, 7, & 8 used SELinux for troubleshooting, MLS, ASCII, and other security platforms: GitLab, GCP, and Netcool, & ServiceNow Plugins
Utilized Octopus Deploy, Chef & ServiceNow for PKI/SSL Certificate Authority Automation just to maintain a higher level of Security when it comes to CA Virtual Concepts within the Cloud maintained SOP Creation and troubleshooting techniques; also, would use other concepts such as AWS, & Azure depending upon the Environment.
Developed automated scripts, templates, and interfaces to facilitate continuous improvement of applications.
Performed testing; debugging; and documentation for new and existing systems involving many Ethical Hacker Tools for Websites, Networking, Systems such as Linux Operating Systems & Windows Assets, O365, AD, TC, etc.
Constructed a lab environment utilizing vRealize, VMWare Workstation Player Pro 16 and VMWare ESXi, NSX for both Windows Server 2008 – 2019, Arch, BlackArch, CentOS, Fedora, Kali, and RHEL 6.x & 7.x, 8.x, Linux OS the scripting languages varies bash, perl, python, ruby, and some C including C++, wget https://sfc-snowsql-updates.s3.us-west-2.amazonaws.com/bootstrap/<bootstrar_version>/linux_x86_64/snowsql-<version>-linux_x86_64.bash; wget https://www.python.org/ftp/python/2.7.8/Python-2.7.8.tgz; Install pip: curl “https://bootstrap.pypa.io/get-pip.py” -o “get-pip.py”; sudo python get-pip.py; sudo pip install awscli; dnf install ansible; yum install ansible* can enable it with these two: subscription-manager repos –enable rhel-7-server-ansible-2.6-rpms or $ git clone https://github.com/ansible/ansible.git; $cd ./ansible; make rpm; $ sudo rpm –Uvh ./rpm-build/ansible-* .noarch.rpm, having knowledge of LUA, flatpak install flathub com.visualstudio.code, AWS CF, Route 53, Dynamo, Lambda, Zookeeper, Grafana, Prometheus, Kabana, Kubernetes, GitHub Repositories, etc
Extensive knowledge of ACD, building call server devices which institute many different functionalities that support everything within your Enterprise Environment that contains RabbittMQTT, Kafka, Cassandra, Hadoop, API’s, UI,
Sr. Systems Administrator III/Windows Admin / Network March 2018 – November 2018
LG-TEK & DoD Customer
Member of a team of professionals responsible for project/implementation, administration/service requests, and escalation support/ticket resolution in an enterprise LAN/WAN environment for datacenters, WAN links, corporate and branch offices with Cisco ACI & Cisco ISE work together by providing end-to-end security features in ACL.
Technologies in network environment include but not limited to routers, switches, security firewalls, VoIP, wireless along with various server/application administration, applications reformatting / systems reimaging, and remote setup.
Assisted with Viptela SD-WAN implementation along with creation of Cisco Nexus and Next-Gen build environment Spine & Leaf Configuration setup 9K/7K/5K/2K/100V Switches. Maintaining Zero Trust build concept strategies.
Designed and planned devices integration into SD-WAN network; utilized JSON to Rewrap Legacy Applications.
Configured System-ID, hostname, system organization name through vEdge routers ZTP for Cisco SD-WAN.
Daily responsibilities include but not limited to daily support, maintenance, installation, escalation support, maintenance, vendor/client relations, hardware/software issues and troubleshooting various IT Enterprise Infrastructures as a Service (IaaS), Software as a Service (SaaS), Platform as a Service (PaaS).
Developing and standardization of Networks especially when it comes to utilizing Visio Studio 2015, 2017, 2019 along with Microsoft Azure can create Architecture Diagrams/Designs including many different Coding Repositories.
Participated in network design activities supporting IT infrastructure peer domains including security, voice, wireless, server, storage and virtualization components and tools: Azure, AWS, Ansible, SIP, VoIP, QoS ACD, and WFM, etc,
Currently managing a team of eight security engineers who were responsible for building/ deploying security devices.
Created new Standard of Operational Procedures Manual and archived the older manuals.
Upon entering the skiff area several new log journals and sheets were created by me in order to keep track of vital assets within the in accordance with BIA and DRP regulations: (Battery UPS – which consisted of PERCENTAGE : Date, Time ; MINUTES ; VOLTAGE ; Hz) all of this is part of “Opening and Closing along with System Change Log Journal Files which just meant any significant System Changes Event Management Systems (IBM Netcool Tivoli)
System Change Log Journal Files (NXlog & Netcool Support EMS) which just meant any significant System Changes that were implemented STIG’s (Backups, Microsoft Update Patches, McAfee, Cisco Routers & Switches etc.)
The Checkpoint Firewall, SolarWinds, Wireshark PKI, IPSEC, SAM, SEIM, Nagios, and Tenable Functionality, Integrity, Availability, and Confidentiality on 10 standalone Server Cabinets and VM’s environment which was very exclusive, Windows 10 Systems Enterprise & DataCenter Level. Enhancing the UI environment with AI & ML API’s
McAfee HIPS updates were gathered from the These were done just to make sure of Exceptional knowledge about dealing with F5 BigIP Load Balancing, handling McAfee website and thoroughly checked for their integrity by scanning all ePO updates which were usually v3_3587dat.exe and applying with a right click through McAfee icon on Server product. Migrating Windows Server 2012 to NEW 2019, Server making sure all steps are complete STIG’s
Then by logging on to the Cisco web portal downloading latest software updates which are stored in zip files but before applying these updates a thorough scan should be implemented Legacy Cisco IOS, Nexus IOS, Cisco ISE
Would constantly check the performance of all the VM’s through Event Viewer maintaining the structural integrity of every asset by being able to see this through an HP LCD 8500 KVM device would make sure nothing went : Critical, Errors were always checked and troubleshooting protocols initiated, Information about each VM was displayed, Warnings that indicate something might be wrong check, and successful Audit’s whether good or bad results were indicated the entire System six times in an eight hour shift to eliminate any problems within the System
Incremental Backups were initiated during the week Monday – Thursday, and Full Backups happened every Friday on all 150 Virtual Machine appliances including the vCenter in VMWare vSphere Hypervisor 6.0 & 6.5 the version of virtualization utilized within all the Server Cabinets that were Linux CentOS, Kali, Black Arch, RHEL 6.x, 7.x, 8.x and Microsoft Windows Server 2012 R2 64bit, knowledge of IBM Netcool, IBM DB2, Chef Cookbook, several other IBM platforms such as AS/400 and AIX-IBM, Virtual IO Servers, maintained all assets including patching,
Building RHEL6.x & 7.x, CentOS, Fedora, Kali, Black Arch, making sure LVM are set correctly ext0, ext1, ext2, ext3,ext4, which are Boot, Home, Root, Swap, Var extensions, creating VM’s through VMware ESXi, inserting basic commands yum update yum*, yum –y install fastestmirror* when adding the star its very powerful to the build because your gather multiple software packages from different places like Sourceforge.net, Google, Linux Foundation, Firefox, etc, wget https://github.com/Powershell/Powershell/release/download/v6.0.0/powershell-6.0.0-1.rhel.7.x86_64.rpm, you can either use Powershell in Linux to install pip or Python 2.7 – Python 3.7, DataCenter Configuration with certain AWS tools and DevOps builds Ansible, Ansible Tower, Chef Cookbook, Cobbler, Docker, Forman, Jenkins, Openshift, Puppet, Bamboo, GitLab CI, Drupal 7 & 8, CC, CI, CD, CP, ELB, ELK, EBS, EC2, EFS, RDS, S3, iptables, for dealing with large Linux Server Farms, AWS VPC Role (ansible-galaxy init aws-vpc),etc.
Creating and adding new passwords for user to access the System Remotely through Microsoft Windows Server 2012 R2 64 bit, concerning GPO, OU, making sure CA’s were updated for all Assets & Users throughout Enterprise
Zero Trust Principles were applied to all users depending upon your Level Clearance and Managerial Status this kept Security at a heightened level which helped improved the entire Network Infrastructure Environment, OKTA & IAM
Utilized DigiCert application when applying for SSL Certificates which were needed by users, certain applications, and the ASA Firewall apparatus such as the Cisco ASA 5510 by using Putty on a standalone notebook device
Would use an already configured Dell Latitude XT3 Series & Dell X509 notebook with SSH & Putty capabilities already installed and formatted in order to complete the processes of ordering said SSL Certificate for Web Servers, Cisco ASA Firewall devices, Cisco ISE, Cisco ACI, Update High Vulnerability Patches CVE-2018 for Cisco vital assets (RHEL CVE-2018-Daily), (Microsoft CVE-2018-Monthly) (Cisco CVE-2018-Daily) STIG’s guidelines.
Supporting Terminal Servers, VDI and COTS applications in a multiform environment performing application administration of assigned COTS products, specifically Hadoop, PostgreSQL, MapReduce, Kafka, Mesos, RoR, etc
Added new content to several different websites in order to improve the functionality and appearance of these Web Portals as specified by the customer DoD utilized Jira Confluence in order to institute any Cloud Formation Architect
Utilized Akamai to push all the updates and make them permanent within the several different Websites by initiating the Production Tab and selecting other significant icons to complete all necessary steps of the process.
If any IP Addresses or Subnets changed then would institute those changes through the specified Cisco Routers 2900 & Switches 3750, Cisco ASA Firewall, Cisco Firepower, Cisco ACE Application Engines 4710, Palo Alto, DNSSEC with GTM, LTM, utilizing these protocols to incorporate PKI Cryptography that makes sure public-private keys are built within each layer of DNS architecture
Would check Akamai daily for any new alerts, attacks, breaches, and other anomalies just to be sure of CIA, DRP, BIA, and NIST 800-37, 800-53, 800-144, 800-145 /800-146, 800-171 ISO / IEC 27001- 27005, 27033-1, etc.,
Provided outstanding troubleshooting skills in Networking, Systems, and Code analyzation in order to mitigate any issues which surfaced with expertise in a timely fashion then providing Timelines with accurate incident report status that indicated entire content minutes, hours, what happened.
Had to rebuild the vCenter from an actual Backup image which was a difficult task to say the least however completed all steps for smooth transition and resolved negative errors utilizing HP StorageWorks MSL 2024 TL
Removed older content from previous years in order to preserve space of every VM of Windows Server 2012, 2016 environment especially when updates had been approved by superiors especially upgrades to Server 2019, 2022.
Scanned everything from updates, download content, anything which needed to be reviewed or study it was scanned for Viruses, or other potential threats to keep all Systems safeguarded from malicious content this pertained to all CVE’s for Microsoft Windows Server 2012 R2 86_64, Cisco zip files for Routers Switches, ASA Firewalls, RHEL, CentOS, Fedora, Kali Linux, Black Arch OS, these CVE’s are for RPMDS, Apache, and WebSphere you need to be proactive in order to obtain them by searching on these different Portals, KVM Design & Build
Ideas were always valued especially since the creation of “Group Dynamics”, which states that anyone can propose an excellent strategy or protocol that can add safety, value, or some other positive effect to the Infrastructure.
Installed DigiCert SSL/PKI Certificates onto different components throughout all 10 Server Cabinets by Opening IIS credentials and completing all necessary steps especially when combining Octopus Deploy Chef & ServiceNow
Checked and updated all significant changes to Cisco Routers and Switches when it came to security scripting techniques by maintaining a solid structure of Penetration Testing, Hardening Techniques, thorough analysis of every device within the Skiff according to STIG’s recommendations.
Sr. Principal Systems Engineer May 2015 – August 2015
A. S. & T - US
Built; Configured; Developed; Downloaded; Implemented; and Installed thousands of Software Packages, within many distributions of the Linux OS. By utilizing the command-line interface terminal and the Super User password you can incorporate many different scripting languages to modify Thousands of Software Packages, using several compilers with YUM or Yellowdog Updater Modifier being one of them. Have knowledge of AWS and EC2 including all the groupinstall packages when it comes to CentOS, RHEL6.x & 7.x utilizing YUM.
Network Engineer / Automation October 2001 to January 2015
Lookaway GC / AES Clean Technology - Buckingham, PA
Installed, configured & maintained 3Com, Cisco, & other vendor switches to HP, Dell, & IBM servers.
Configuration of V/H firewalls connected through VPN.
Knowledge of general networking infrastructures including checkpoint firewall, VPN network security, VPN, firewall, digital CCTV, and card access
Experienced in WAN, LAN, digital CCTV, and card access design, installation, and administration; and small to medium sized project management tasks, experience with IaaS, SaaS, and QoS, SIP, etc.
Configure and maintain LAN systems using Cisco 6500, 4500, 3750, and 2950 series switches and Nexus switching platforms 7K/5K utilized VDC and including Cisco vEdge Viptela along with ZTP config utilizing DHCP.
Utilized 802.11a/b/g/n and used this for modulating data using radio carrier signal, wireless and just to make sure that this was a proper frequency and used 2.4GHZ frequency range up to 5GHZ for tight security.
Assisted in the maintenance of VPN connections using Cisco ASA 5505 and Pix 506 firewalls.
Configure and maintain WAN systems using Cisco 1760, 2800, 2900, 3800 and 3900 series routers.
Utilized VMware ESX configured and installed it properly to implement Cisco, Microsoft Server 2008, Linux, MySQL builds, designs, throughout the entire Network Infrastructure to enhance UI env to make it better.
Knowledge of Extreme Routing Protocols: Babel; B.A.T.M.A.N.; BIRD; GNU Zebra; OpenBGPD; OpenOSPFD; Quagga; and XORP. Utilized Splunk, Wireshark, Tenable Nessus, and Snort for monitoring purposes on Enterprise.
Firewall port settings for Oracle are as follows: 22 TCP SSH; 80 TCP HTTP; 443 TCP HTTP over SSL/TLS; 1521 TCP Oracle TNS Listener; 1158 TCP OEM or Oracle Enterprise Manager 11g.
Modifying/Writing scripts in Bash for optimizing day to day administration including knowledge of RPM’s.
Applied appropriate support packages/patches to maintain system integrity and system firmware.
Performed automated installation of Operating System using Kickstart for CentOS, RHEL 4, 5, 6, 7, 8, EC2, AWS.
Verified the Confidentiality, Integrity and Availability of all hardware and server assets were well maintained.
Contact this candidate