Information Security Engineer
Resume:
DENIS OMWENO
*******@*****.***
PROFESSIONAL EXPERIENCE
Professional Summary
Over 18 yrs. of IT experience with broad background in many areas of IT engineering.
Unique strength - creativity: developing new solutions to simplify, improve, and streamline processes to increase productivity, make better use of available resources and deliver better solutions and services to the customer is always my goal.
In-depth understanding of corporate information security governance and policy.
Lead Systems administration and senior information security engineer with solid project management skills.
Strength and innovation approach to problem solving even under extreme pressure. Ability to provide confidence to the team, analyze specifics while maintaining a total perspective to achieve the required goal.
Understanding of available resources, oversight of budget and best allocation, research, analysis, cost control, user training and development.
Flexibility to adapt to new priorities and engage management as needed to succeed.
Team player: I always strive for the development of every team member to be the best they can be. Mentoring, sharing knowledge, providing guidance and encouragement is something I always love doing.
Systems, Infrastructure and Security Platforms/Environments
Cloud -AWS and Azure
Splunk
Fortinet
Infoblox DNS.
vSphere version 6.7, 7.0 and 8.0
SolarWinds
Carbon Black
NESSUS (Tenable)
Veeam enterprise backup and restore version 12
SCCM and Ivanti administration
Work Experience Summary:
Pumex contract: Inteleos.
Rockville MD Sr. Sys Admin. May 2024 to Dec 2024
Sr. Sys admin
·Overseeing the maintenance of servers in all capacities that included, configuring, installing new hardware/software, performing upgrades to existing servers & software, coordinating the introduction of additional servers and storage to the network, following security policies and procedures.
·Installed, configured, and maintained servers, workstations, and network devices (switches, firewalls).
·Designed and deployed Windows 10 and 11 provisioning processes using Intune Autopilot
·Managed and configured Microsoft Intune to streamline device management across the enterprise.
·Developed and maintained strategies and configuration profiles for Intune-managed devices.
·Managed user accounts, permissions, and access control.
·Monitored system performance and troubleshoot issues proactively.
·Performed regular system backups and disaster recovery procedures.
·Implemented and maintained security measures to protect systems from threats.
·Maintained and troubleshoot network connectivity issues.
·Provided technical support to end-users on hardware and software issues.
·Created and maintained knowledge base articles for end-users
·Upgraded ESXi hosts and vCenter from 6.7 to 7.03 within two days.
·supporting AWS EC2, S3, IAM and Azure.
·Managed Mimecast email security, Geolocation and DLP deployment.
·Supported and maintained SaaS platforms such as, Miro, Box, Microsoft 365 and Asana and several other applications.
·Deployed and maintained Multi-factor Authentication (MFA)
·Used helpdesk request/service request/change request systems using JIRA.
·SSO Certificate management and renewals.
Novo Nordisk perm employee.
West Lebanon NH. SR Infrastructure engineer Jan-03-2023- April 2024:
·Designed, Operated, Troubleshoot, Managed, Supported and Upgraded - all site NH IT Infrastructure including but not limited to Windows Servers, Virtual Environment VMWare, Microsoft Exchange, Active Directory, Storage (SAN, NAS), Backup/Archive & Restore/Retrieve services, Microsoft 365 and Azure.
· Provided technical support for applications, troubleshooting technical issues, and optimizing system performance. Ensured data integrity through accurate data entry, migration, and regular backups using Veeam.
· Implemented cybersecurity measures to maintain system integrity and security.
·Established and enforced IT policies related to the systems, ensuring compliance with IT standards and regulations
· Setting and configuring Windows Servers in VMware virtual environment.
· Administration of Active Directory 2019, Azure AD, Office 365 and Skype for Business Online
• Designing, managing, and testing data backup and disaster recovery using Veeam version 12
• Setting, supporting, and managing network monitoring system using SolarWinds.
• Interfacing with internal data center design teams, construction teams, supporting data center infrastructure augments as needed.
• Facilitated data center commissioning operations
• Overseeing automation systems commissioning to ensure best possible data center performance is maintained.
• Monitoring servers and troubleshooting problems. Patching and hardening of servers.
• Producing appropriate documentation for application deployment, configuration, and related processes.
• Installing, configuring, and maintaining server operating systems and repairing server hardware
• Managed VMWare vSphere and its features (vMotion, HA, DRS etc...)
• Responsible to maintain qualified state of GxP IT Infrastructure platform at Site, providing
hands-on as IT Infrastructure SME on relevant documentation and test execution.
·Managing, supporting, and maintaining Novo Nordisk IT infrastructure
·Managed VMware 7.x virtual environment
• POC for all servers built and upgrades.
• Made sure all network switch requests were completed in a timely manner and configured correctly as requested (CISCO Switches)
• Lead IT efforts as work package owner on site projects and lead internal and external team working on projects.
• Installed, Configured and Maintained AD Integrated & Non-AD Integrated DNS Zone
National Gallery of Art (NGA) – Employer: Belcan Employee
Sr. Systems Engineer Technical Lead October 2020 – Nov 2022
·Established a system to gather telework metrics for 11 months during the pandemic to track workload in the categories: Helpdesk tickets, IT security tasks and IT projects.
·Developed and maintained standardized Windows 10 and 11 deployment images
·Developed and maintained strategies and configuration profiles for Intune-managed devices.
·Deployed Windows 10 and 11 provisioning processes using Intune Autopilot
·Assured all gallery employees were able to telework during the pandemic by introducing and maintaining the tools and systems: MS Teams, Zoom, Office 365, Citrix VDA and Citrix VPN. For Windows.
·Upgraded 1000+ Windows desktop and laptops from Windows 10 build 1803 to 1909 in 2 months, during the pandemic while 100% teleworking.
·Created over 130 virtual desktops and a separate VLAN, during the pandemic while 100% teleworking.
·Provided IT design for the Laptop Deployment project to convert 1000+ gallery employees from desktops to laptops. The focus was to prevent end-users from coming into the office space to pick up laptops during the pandemic. Along with a smooth migration of the user’s data and customer satisfaction.
·Point of contact for the Chief Information Security Officer (CISO) for all 1200+ workstations and managed a team of four tier 4 system admins and 10 Helpdesk members to remediate IT security tasks. Such as missing security agents, rouge device detection, patch compliance and baseline compliance.
·Implemented security baseline GPOs for Windows 10 build 1803 in two weeks and later modified them for the 1909 build.
·Consulted our senior Mac system administrator on the security baseline for 150 Catalina workstations.
·Introduced the business service “computer jail” for workstations that were highly difficult to bring into IT security compliance during the pandemic.
·Administered cybersecurity protection systems; McAfee, FireEye, Zscaler and IVANTI.
·Created playbook on how to handle the detection of a virus, malware or ransomware on a workstation.
·Revamped the patching process that is composed of the systems IVANTI and NESSUS scan (Tenable) and increased our remediation efficiency by 12%. Resulting that within two weeks 92% of all workstations and servers were in compliance.
STGi
IT Manager May 2019- Jan 2020
·Supervised assigned Information Technology operations and staff, such as computer
·Managed User Accounts on Windows and Linux Platform (Creation, Deletion, Permissions, and VPN Access.
·operations, e.g., data entry, telecommunications, and user support/help desk functions.
·Performed network system administration as required.
· Monitored the performance of application and network servers and troubleshooting issues when they arise promptly and efficiently to ensure maximum availability and operation.
·Managed Virtual environment Citrix Xen desktop/Application images.
·Managed VoIP phone system and troubleshooting issues when they arise promptly and efficiently to ensure maximum phone availability.
·Maintained Active Directory Domain services.
·Administered all domain policies implemented through Group Policy Object (GPO).
·Organized department to support 24/7 activities.
·Managed network infrastructure to ensure optimization and maximum availability.
·Administered STGi’s firewall policies and systems using FortiGate firewall.
·Determined work requirements, priorities, communications, and best use of resources for scheduled operations including unplanned incidents.
·Overseeing all Tier 1/11helpdesk support.
·Managed Acronis Backup, Restore and recovery, Cybersecurity and data protection on both individual files by backing up the entire system as a single file, ensuring a bare metal restore capability.
·Troubleshooting technical, operational, and customer service problems and taking corrective actions to resolve conflicts.
·Provided Tier 3 support to individual users.
·Monitored FAQ database.
·Installing new and/or updating software applications and training users as appropriate. Planning long term infrastructure for a dynamic environment.
·Responsible for continuity of operations and disaster recovery plans.
·Ensured security of assigned operational center and assumed delegated management responsibility during emergencies.
Employer: Advanced Digital systems, Fairfax, VA
WMATA (ADVANCED DIGITAL SYSTEMS)
Sr. Systems Admin 03/2015 – 08/2019
·Implementation of a ticketing system, Service Now
·Created and maintained email addresses and distribution lists in MS Exchange.
·Managed User Accounts on Windows and UNIX Platform (Creation, Deletion, Permissions, and VPN Access.
·Integration with SCCM to import computers and servers.
·Experience with large systems migration.
·Active Directory Migration from Windows Server 2003 to Windows Server 2012
·Outlook client (2010/2013/2016) & Outlook Migration in the Cloud to Office 365
·Lead technician in Window 10 migration project to capture user’s data from window 7 and restored to window 10.
·Setting work schedule and onsite support schedule for IT team. Managing Windows 10 and 365 migrations onsite and remote users.
Blue Yonder, Rockville, MD:
Data Center Operations Lead 04/2012 – 03/2015
·Microsoft Exchange 2010 administration and troubleshooting
·Administering Windows Server 20012/2008/2003, Microsoft Exchange 2010, VMware Technologies, TCP/IP, Active Directory, DFS/DFS-Replication, DHCP, DNS network connectivity.
·Daily troubleshooting and diagnostics of MS Server Operating systems, VMWare, network (LAN/WAN) and VPN troubleshooting. Use of SolarWinds monitoring tool.
·Able to work flexible hours, including evenings, weekends, as project and system availability requirements demand. Sharing on-call duties with other members of the global Windows/Server team.
·Working calmly under pressure and meeting deadlines, making modifications to the systems with little or no interruption of service and organize projects and tasks according to priorities
·Preparing, planning and delivering solution summary, project scope and snapshot, cost/benefit analysis documents to Senior IT and Executive Management
·Acting as a liaison between vendors and customers to ensure a level of accuracy and responsibility meets expectations.
·Assisting with multiple system rollouts; RAID rebuilds, and HDD recoveries.
MDOT/MVA (Employer: ADVANCED DIGITAL SYSTEMS )
Sr. Technical support 06/2009 – 04/2012
·Developing/maintaining images for use on various hardware platforms.
·Imaged, deployed, encrypted and set up of computer systems and Servers (virtual desktops, desktops, laptops, printers, scanners, projectors) assigned to various branches around Maryland.
·V.P.N. access management (Authorization, Audit and modification of end-user accounts, permissions and group policies in RSA database)
·ECDL, LAWTEST and VDI project/infrastructure management (system implementation, administration, maintenance, security and improvement)
·System Administration Duties not limited to managing TARIS servers, Exchange Server, MacAfee EPO and End-Point encryption servers, Absolute Software etc.
ALL Covered
Systems Support Specialist: Dec. 2007 -May-2009
·Provided tier 2 technical desktop support for over 20 companies with over 200 end users each, on variety of issues that includes hardware/software installation, network systems, peripheral devices, LAN connectivity, Outlook 2003, network printers and periodically assist network admin with minor server troubleshooting issues, researched and resolved issues in a timely manner.
·Coordinated and oversaw IT projects that include upgrading printers, re-image of laptops and backup/restoration of data
·Installed, configured (using imaging software), maintained and troubleshot applications.
·Oversaw the investigation and resolution of hardware and software onsite.
·Identified and removed computer viruses and provided major repairs in accordance with guidelines.
HUDFED CONSULTING, Silver Spring, MD
Technical Consultant May-2004 – Nov-2007
·Designing, Implementing, and deploying small business LAN and WAN solutions using Cisco routers/switches and Windows 2003/XP. Installing Internal and external e-mail solutions using MS. Exchange Server 2003 and providing other data storage and backup solutions.
·Troubleshooting various server, network issues and supporting desktop clients
·Installing Antivirus software – server and client solutions (McAfee, TrendMicro)
·Implemented security using Cisco ACLs and checkpoint firewall
·Installing and troubleshooting Microsoft ISA proxy server solution, Web servers and implemented office intranet using IIS
·Tracking client issues using remedy trouble/help desk ticketing system
·Consulting with customers on their various IT problems/requirements and recommending the best solutions.
EDUCATION AND CERTIFICATIONS
Bachelor of Business Administration, UNIVERSITY OF NAIROBI.
National American University- MCSE: 2002
CERTIFICATIONS:
A+ Certification
MCP (Microsoft Certified Professional)
MCSA (Windows server 2012 admin)
Microsoft Certified Information Technology Professional (MCITP) (windows server 2008 admin)
Cisco Certified Network Associate (CCNA)
vSphere 8.0 trained.
Contact this candidate