Systems Engineer and Systems Reliability Engineer with 30 years exp

Summary

Experienced Systems Engineer and Systems Reliability Engineer

(30+ years) specializing in CyberSecurity. Expertise in collaborating with

cross-functional teams to deliver comprehensive security solutions. Analytical

and results-oriented problem solver with a strong work ethic and commitment

to process improvement and detailed documentation.

PROFESSIONAL EXPERIENCE

04/24 - 04/25

Disney Signature Experiences

Orlando, FL

Vulnerability Engineer / Sr. Linux SME

Worked with support teams across the Disney Cruise Line fleet helping manage support applications, guest and crew applications, apply patching and system updates when possible. Led risk management and compliance efforts across ISO 27001/27002, ensuring alignment with regulatory and organizational security objectives.

●Conducted enterprise risk assessments, implemented ISMS frameworks, and mapped controls to ISO 27001 Annex A and ISO 27002 best practices.

●Facilitated continuous monitoring through vulnerability management, log analysis, incident response coordination, and regular control reviews.

●Collaborated cross-functionally with engineering, IT, and compliance teams to embed security practices into technical and business operations.

●Collaborated with the DSE Engineering Team to build Linux System templates for deployments of basic Web service tasks (Apache server, QA node, Prod Testing, dev server with GitHub preconfigured.

●Attended weekly and quarterly Global Security briefings to keep abreast of emerging threats, vulnerabilities, and industry best practices to proactively enhance system security

0 4/22 - 01/24

Lands’ End

Dodgeville, WI (Remote)

Sr. Site Reliability Engineer / Sr. Linux SME

Supported Infrastructure as code website for Landsend.com processing $30M/day worth of business during peak running in East/West AWS configurations and using Terraform to break down/rebuild from East/West while load moved West as the day progressed.

●Executed enterprise risk assessments and deployed ISMS controls, mapping security requirements to ISO 27001 Annex A and implementing technical safeguards per ISO 27002 guidance for access control, cryptography, and system hardening.

●Designed and implemented an Infrastructure-as-Code (IaC) solution for a disaster recovery (DR) website hosted on Azure Virtual Machines in cold standby mode; successfully executed DR failover exercises by rerouting traffic from AWS to Azure, validating the environment's ability to handle full production load without issues.

●Performed all system/security patches for RHEL, Oracle Linux, and Centos using Ansible to 4,000 servers

●Designed and developed a project to migrate QA, development and production support applications to Alma & Rocky Linux 9 since RedHat’s abandonment of Centos support.

●Deployed new Rubrik appliance to 1200+ Linux production, QA, development servers ensuring system availability and uptime.

●Installed, configured and maintained a Nagios installation for Network Monitoring and uptime performance.

●Built Linux System templates for deployments of basic Web service tasks (Apache server, mail server, CUPS server, ansible, dev server w/ GitHub preconfigured.

●Designed and replaced an aging Win7 printing server for the warehouse / shipping department with nginx Kubernetes CUPS servers, increasing warehouse shipment loads by 800%.

●Migrated 480+ VMware Linux servers to Prism/Nutanix to get off VMware support that was ending.

01/18 - 04/22

M3 Accounting Services

Lawrenceville, GA

Site Reliability Engineer II

Worked predominantly on my own with little to no supervision, checking in with management during key moments and providing updates as needed / warranted. Migrated 1600 bare-metal servers across two data centers to a modern, hosted private cloud. Upgraded outdated XenServer 4.7 and Windows 2012R2 to XenServer 8.2 and Windows 2019. Performed P2V and V2V conversions to seamlessly integrate servers into the private cloud.

●Designed and deployed robust cloud infrastructure for enhanced scalability, security, and performance.

●Designed and built a new Office365 environment, improving collaboration and accessibility.

●Implemented 3,000 highly available Azure SQL instances, ensuring optimal uptime and redundancy for critical data.

●Established production and QA instances in Azure, achieving 99.999% uptime with minimal supervision.

●Designed and built an AWS environment, seamlessly migrating proprietary non-core applications.

●Successfully migrated and reconstructed the in-house accounting application in AWS, utilizing a Content Delivery Network (CDN) for broader reach and reduced latency.

●Upgraded XenServer, PVS environment and Citrix NetScaler from 4.7 to 7.1 LTSR, involved a rolling progression of migrating applications to Xen 6.5 and then Xen 7.1.

●Designed and Built Fortinet / Check Point BGP VPN for company wide WFH opportunity during Covid, authenticated with Azure AD, 250 users concurrently.

●Deployed a 6 node Splunk setup, two for Infrastructure to monitor Production trends, two for DevOps to load/stress test and get metrics, and two for QA/Testing to allow for better granularity in tracking down user, application, network or server issues.

06/12 - 11/17

Network Solutions

Atlanta, GA

Linux System Engineer

Worked on my own with no direct supervision, was the sole 3rd shift engineer for email, web (Apache & IIS), ftp and ssh hosting platforms supporting 4.8 million customers across 250,000 servers. Environment was 75% Linux/Unix and 25% Windows, equally skilled in both. Responded to server down alerts in a timely manner and brought them up via KVM / Dell iDRAC. Supported all of the upline Engineering groups in their daily functions, handling tickets through JIRA and updating/researching Confluence documents for solutions.

●Used kubectl command to control Kubernetes swarm running in Docker for public site / whois lookup module.

●Maintained the VMWare environment, upgrading it from 5.1 to 6.5, all running on Cisco UCS & NetApp Appliances.

●P2V’d 100,000+ servers from bare metal hardware to VM, relocated from 3 data centers down to 1.

●Migrated VMs across hosts within a HA cluster to perform maintenance tasks and system patching on ESXi hosts with 99.998% uptime utilizing F5 appliances.

●Maintained/updated existing Juniper configuration for client base to connect to remote shell accounts

●Deployed patches to Unix (ansible) and Windows (SCCM/ Powershell) platforms when available. Sometimes as many as 2,000 per night depending on the environment and vulnerability.

04/10 - 05/12

Center For Disease Control

Doraville, GA

Linux System Engineer

Contractor for ITSO DSS Support, Center for Disease Control and Prevention, handling support issues through a ticketing system. Built out 80k virtual machines in VMware for scientists/researchers to run test scenarios in a project that took almost 8 months to complete. Projects ran weekly/monthly/quarterly/annual reports and results were automatically posted to the central Apache site. Utilized Redhat Kickstart and Ansible scripts to deploy bare metal servers.

●Led risk management and compliance efforts across ISO 27001/27002, HITRUST CSF, and FedRAMP, ensuring alignment with regulatory and organizational security objectives.

●Supported full FedRAMP ATO lifecycle, including development of SSPs, SAPs, SARs, and POA&Ms; coordinated with 3PAOs and federal stakeholders to achieve and maintain authorization.

●Conducted enterprise risk assessments, implemented ISMS frameworks, and mapped controls to ISO 27001 Annex A and ISO 27002 best practices.

●Directed HITRUST CSF readiness and remediation activities, aligning cybersecurity controls with HIPAA and other healthcare regulatory requirements.

●Coordinated with various stakeholders to plan and execute software upgrades across the development life cycle, delivering enhanced functionality and value to both internal and external customers.

●Safeguarded a live database containing sensitive Medicaid/Medicare data for 150 active users, utilizing technical expertise and adherence to regulatory compliance to ensure data integrity and accessibility.

06/05 - 12/09

Equifax

Alpharetta, GA

Linux Engineer

Responsible for all Windows, RedHat, CentOS, Solaris issues and any issues related to troubleshooting MySQL, Oracle issues. Also served as the department technical representative in corporate change control meetings. Freed developer time significantly by acting as the first point of contact for support issues, resolving problems and filtering and prioritizing issues.

●Performed enterprise-wide risk assessments and implemented ISMS frameworks, aligning security controls with ISO 27001 Annex A, ISO 27002 standards, and SOX compliance requirements for IT general controls and data integrity.

●Increased new product sales by 10% by using perl to script and automate a turn-key CSS/XML package of the commercial site that business partners could use with their logos.

06/02 - 06/05

IBM WebSphere Support

Atlanta GA

Senior Systems Engineer

Evening shift technical engineer responsible for taking high priority calls from top companies in the US and screening calls for L2 engineers. Serving as a technical resource for the department in terms of troubleshooting customer care issues for AIX, Solaris, HP-UX, Linux (RedHat, Slackware, Debian, CentOS), and Windows environments and connecting to various versions of SQL, MySQL, Oracle, DB2. Responsible for all crucial issues for Apache (also known as IBM HTTPS Server).

●Increased productivity by +80% by establishing new standardized procedures and formats for escalating issues from L1 - L2 support.

●Trained L1 engineers with 100% pass rate for WebSphere 4 and 5 CNE exam.

03/01 - 06/02

Silverpop Systems

Atlanta, GA

Linux Engineer

05/1995 - 03/2001

MindSpring

Atlanta GA

Linux Administrator

Independently responsible for 600+ node Linux, FreeBSD, Cisco, Extreme, Checkpoint, F5 and Radware systems distributed worldwide running combinations of Apache, qmail, DNS, and Checkpoint FireWall-1. Was also the only administrator responsible for all Apache changes/configurations for each of the 300 bare metal web servers.

●Maintained over 99.93% up-time of production environments, 99.97% up-time network availability.

●Successfully passed ISS pen test with no operations issues.

●Successfully consolidated seventeen production sites into three sites (worldwide) in less than two months.

Was employee #37 at MindSpring (merged with Earthlink in 2001), wore many hats from answering support calls in Tech Support & Web Hosting and running downstairs to work on the DEC Alphas when possible. Built DNS systems, FTP sites, ClosedBSD firewalls, shell access for dialup customers. Worked on whatever needed the most help because there were only 2 dozen of us with technical skills when we started.

TECHNICAL SUMMARY

•AWS

•Route 53

•Lambda

•Terraform

•Dynatrace

•Grafana

•ELK

•Azure

•Redhat Linux (RHEL)

•Microsoft Windows

•CentOS, FreeBSD,

Unix, AIX, HP-UX, Open/VMS

•VmWare

•Citrix XenServer

•Citrix Xen / PVS / NetScaler

•Apache

•Apache Tomcat

•Apache Kafka

•Kubernetes

•nginx

•IIS

•Rubrik

•Netapp

•Bash

•Ansible

•Python

•Powershell

•Jenkins

•Git/Github

•Atlassian Suite

•Nagios

•Cacti

•WUG

•Fortinet

•SQL / MySQL / MongoDB

AWARDS / RECOGNITION

1st Quarter 2007 One Equifax Award for documentation solution.

3rd Quarter 2008 One Equifax Award for turn-key CSS/XML package.

2nd Quarter 2015 Web.com Blue Dot recognition program for HA of ESXi Cluster

2018 M3 Ignite Award for Scheduled Reports package

2020 M3 Ignite Award for Migrating All Servers to Virtual.

Education

Stone Mountain High School - Diploma

Contact this candidate