Post Job Free
Sign in

Senior IT Infrastructure & Cybersecurity Engineer with 25+ Years of

Location:
Houston, TX
Salary:
120000
Posted:
March 23, 2026

Contact this candidate

Resume:

Bryan Vela

Senior IT Infrastructure and Cybersecurity Engineer

**** ****** **. *******, ***** 77018

Phone: 713-***-**** LinkedIn: https://www.linkedin.com/in/bryan-vela-1323782a/ Email: ******@*****.*** X: @bdvela

Senior IT Infrastructure and Cybersecurity Engineer with 25+ years of experience designing and supporting enterprise environments. Expertise in Microsoft technologies, VMware, and cloud platforms (Azure/M365), with a strong focus on high availability and security. Proven leader in Identity and Access Management (IAM), including SSO, MFA, and privileged access controls across hybrid environments.

Senior IT Infrastructure and Cybersecurity Engineer with over 25 years of experience designing, implementing, and supporting enterprise environments. Deep expertise in Microsoft technologies, cloud platforms, and high-availability systems, with a strong focus on security, scalability, and operational efficiency.

Infrastructure Planning & Architecture:

Proven ability to architect and deliver end-to-end infrastructure solutions from strategy through implementation, including Windows Server, VMware, and Microsoft Cloud (Azure/M365) environments. Experienced in building high-availability, low-latency systems that support mission-critical operations.

Identity & Access Management (IAM) / Security:

Hands-on experience implementing IAM solutions, including RBAC, privileged access management (PAM), SSO, and MFA across hybrid environments using Active Directory, Azure AD

(Entra), Okta, and Netwrix. Skilled in securing enterprise systems through identity governance, access controls, and compliance-driven auditing.

Production & Infrastructure Support:

Extensive experience supporting national and international organizations with 24x7 operational requirements, ensuring uptime, performance, and rapid incident resolution for critical data and communications systems.

Experience Kempner Capital Management IT Director 2002-2004 and 2025–2026 SEC-regulated trading firm with strict compliance and high-availability requirements

• Designed, procured, and deployed a hybrid Office 365 and Azure environment, including Active Directory, DNS, certificate services, and IIS.

• Administered and maintained Exchange Server environments (2002–2004), ensuring secure and reliable messaging systems.

• Built and maintained the firm’s offsite disaster recovery solution, ensuring compliance with SEC regulations for data availability, retention, and documentation.

• Managed and secured a SQL-based trading application server in Azure, with full enterprise backup and recovery processes using Veeam and Intermedia Hosted Exchange.

• Served as firewall and security administrator, architecting Cisco ASA and WatchGuard solutions, implementing site-to-site VPNs, and automating secure data transfers.

• Oversaw business-critical trade application (AXYS), including procurement, installation, backup, and remote access capabilities as part of the business continuity plan.

• Administered a broad range of infrastructure technologies including Azure AD, MPLS, Citrix, SonicWALL, Dell, HP, and Cisco networking.

Sunnova International 2022 to 2025

Senior Infrastructure and Cyber Security engineer for energy company. 2500+ user community.

• Serve as primary architect and administrator for Meraki SD-WAN, including wireless (MR), switching (MS), and firewall (MX) solutions.

• Lead engineer for Proofpoint email security (PPPS, CASB, TAP, DLP, ITM), maintaining compliance and ensuring email resilience.

• Architect and administer Identity and Access Management (IAM) solutions, including RBAC, privileged access management (PAM), and least-privilege enforcement across enterprise systems.

• Manage identity lifecycle processes (provisioning, deprovisioning, access reviews) using Active Directory, Azure AD (Entra), and Okta.

• Implement and maintain SSO and MFA integrations across cloud and on-prem platforms to strengthen authentication security.

• Administer Netwrix NPS (PAM) and Netwrix Auditor for identity governance, access auditing, and sensitive data monitoring.

• Manage hybrid cloud platforms: administer AWS (Route 53, S3, EC2) and support Azure services

(Intune, Entra, OneDrive, SharePoint, Defender).

• Act as Microsoft Exchange Online administrator, overseeing mail flow, security, and compliance.

• Support additional enterprise platforms including Okta, KnowBe4, Carbon Black, Printer Logic, Egnyte, Atlassian (JIRA/Confluence), Slack, and Keeper.

• Function as an escalation point for complex infrastructure issues across Windows Server, VMware, Exchange, and endpoint management.

Bishop Lifting products 2020 to 2022

Senior Network engineer and infrastructure Engineer for 500 user community. I support 16 companies over 21 locations nationally.

• Built and maintained a hybrid VMware/Hyper-V/Azure environment maintenance and upgrades, including VSAN and True NAS storage.

• Administered Active Directory, Group Policy, and scripting for secure identity management.

• Managed Office 365, groups and users, MFA, and Exchange.

• Created, administered and supported Azure tenant including Azure AD Connect synchronization and troubleshooting, Microsoft security, Virtual Servers, and AAD.

• Oversaw Exchange Online administration (shared mailboxes, groups, archiving, journaling).

• Developed and maintained the company’s Disaster Recovery and Business Continuity plans.

• Implemented and maintained Aruba switches, Mobility Controllers and Airwave.

• Secured perimeter and VPN access via Fortinet firewall with MFA-based VPN authentication.

• Managed Meraki SD-WAN and Velocloud routers through Meraki Cloud portal.

• Coordinated with vendors/MSPs to manage service contracts and subscription-based technologies.

• Administered On-prem Fortinet Firewall to protect endpoints and data.

• Administered Sophos Cloud Native Data Security to protect endpoints and servers.

• Mentored and trained junior staff during projects such as VM migrations to Azure and Fortinet upgrades

Crowley Maritime 2009 to 2020

Sr Administrator in charge of enterprise technology for 5th largest ocean-going ship companies in the world.

Designed, procured, and installed enterprise Microsoft networks, including Office 365 and on-prem AD and Exchange deployments.

• Administered Exchange Server (2007–2016) and Office 365 hybrid environments.

• Deployed and maintained enterprise backup and retention systems using Veeam.

• Led and trained junior staff on migrations from aging infrastructure to new hardware platforms (Lenovo, HP, Dell) with minimal user downtime

• Implemented satellite communications and email systems (Inmarsat, Telaurus, Blue Tide VSAT, Iridium Open Port).

• Designed and secured on-board wireless networks and multi-ISP failover solutions for maritime operations.

• Installed and configured Cisco VPN, POE managed switches, and CradlePoint dual- band routers.

• Collaborated with engineering teams on shipboard systems integration (Rolls Royce, Siemens, Kongsberg).

• Leveraged TWIC card clearance to perform secure IT work at U.S. docks. Fulcrum Power 2004 to 2009

Systems Architect for energy provider and brokerage firm.

• Led procurement, design, installation, and maintenance of the company’s enterprise IT environment from the ground up.

• Designed and deployed the core network infrastructure, including servers, workstations, wireless networking, and backup solutions.

• Consulted on PBX phone system design and supported the Williams Tower office build-out, including data and voice cabling layout and availability.

• Administered daily IT operations, including Active Directory, user/group management, and Exchange mail accounts.

• Implemented enterprise security by configuring and maintaining the Cisco ASA firewall.

• Developed and managed the company’s backup and disaster recovery strategy, using an automated Verbatim tape library for business-critical data protection.

• Supported enterprise technologies including: Windows Server 2003, Exchange Server, Cisco ASA, Veritas backup, Windows NT/XP.

• Trained and led junior staff on platform design and administration. Software and

Hardware Meraki SD-WAN, Proofpoint, Netwrix NPS, Netwrix Auditor, AWS, KnowB4, Carbon Black, Printer Logic, Brandsight, Room Alert, Egnyte, Slack, Keeper, Note Shred and Atlassian Cloud products, VMWare, Fortinet, Sophos, Quest Rapid recovery, Meraki, Velocould, Office365, Azure AD, Azure, OneDrive, Dropbox, SharePoint, ServiceNow, Microsoft Server OS, 2012, 2016, 2019, Windows 10, WatchGuard Firewall, Lenovo, Dell, HP, SonicWall, Intermedia, AppRiver, Cisco routers and switches, EnGenius WIFI routers, Hawkin WIFI routers, Barracuda firewall and email retention, Iridium Open Port, Veeam, Veritas, Microsoft Exchange server, Skype for business, TWIC Education ITT Tech Aug-1991 to May-1993 Bachelors in Business Administration Austin Community Collège Aug-1989 to May-1991

University of Houston Aug-1987 to May-1989

Certifications CompTIA Cloud+ KN7QM2-PATH-810200 Sept 2025

CompTIA Network+, KN7QM2-PATH-810200 July 2025

CompTIA Security+ LM296-PATH-90121 Jan 2026

Windows 10, 2019,

MCP, 2004,

MSCE, 2000



Contact this candidate