Active Directory Project

BRUCE PORTZ

SKILLS SUMMARY

• Technical Architecture, Systems Design and Engineering

• Providing senior level business and technical leadership at current and previous companies such as: IBM, HP / Electronic Data Systems (EDS), Kraft Foods, Eisai Pharmaceuticals, M&M Mars.

• Providing overall strategic planning, guidance and ITIL project methodology with best practices to clients and tactical guidelines/advice to system architects.

• Providing business and technical leadership to clients through strategic planning, tactical execution, business acumen, effective listening, astute observation, effective communication and solid subject matter expertise.

• Achieve results by building solid relationships, strong teams, mentoring junior staff and navigating the business channels.

• Influence technical and executive decisions makers by developing trust, accomplished by achieving results, asking thought provoking questions, demonstrate solid presentation skills, addressing problems with solutions, aligning expectations and advising of industry trends.

• Champion structure, processes and service level agreements, developed strong teams, managed conflict effectively, promoted processes and standards, align with best practices and follow proven methodologies. Further, develop and refine methodologies, standards and processes.

• Provide Enterprise level Security options, Risk assessment, Risk mitigation recommendations and solutions for critical technology areas

• Business Continuity Planning & Testing / Disaster Recovery Planning & Testing (BCP/DRP)

• Virus Protection

• Ongoing operational as well as Day Zero

• Patch Management

• Capacity Planning and Management

• Virtualization Technologies

• Consolidation Best Practices

• Directed regulatory compliance requirements such as Sarbanes Oxley, HIPAA, FDA and other mandates.

PROFESSIONAL EXPERIENCE

IBM 10/10 - Present

Directories Architect / Migration Engineer

• Provide advanced systems support and architecture for the IBM community supporting both the Amerisource Bergen, Campbell’s, State of Georgia Active Directory environments.

• Provide recommendations, best-practices and systems diagnostics to maintain and enhance environmental steady-state operations.

• Provide supplemental support for diagnostics and problem resolution across the Intel, Citrix and Groupware (messaging) teams.

• Provide automation utilities and scripting solutions to increase productivity and verify both security and systems functionality.

• Provide migration expertise for users, mailboxes and computers as they are migrated from the legacy Amerisource Bergen Active Directory environment into the new Active Directory environment.

• Perform audit of the Amerisource Bergen Active Directory environment security to ensure that least privileged access model is in place

• Perform a group policy review and optimization for the Citrix XenApp Environment for Amerisource Bergen and State of Georgia

• Provide ongoing security diagnostics within Active Directory as they relate to role based access configuration, Domain Heuristics and Security.

• Provide a design for an internal PKI solution for TLS encryption with messaging and single-sign on using user-issued certificates

HP / Electronic Data Systems 7/06 - 10/10

Chief Technical Architect / Systems Integration Engineer

• As the chief technical architect for the North American region, my primary responsibilities included providing senior level technical and functional solutions for operational support and administrative activities, developing project plans and activities, managing WBS elements across multiple projects, monitoring and aligning project milestones with both project and program objective timelines, identifying key performance indicators, generating information dashboards to provide executive level status updates, perform vendor management, team management as well as overall team leadership.

• Handle all aspects of planning strategic goals, developing tactical solutions and ensuring timely execution of project tasks and activities using ITIL methodologies. I also served as the key escalation point in coordination of the various groups involved in daily task execution as well as project-related activities that include Security, Networking, Messaging, Desktop, Mobility, Remote Access, etc.

• Led the directory services & messaging infrastructure integration of the Cadbury-Schweppes acquisition into the Global Kraft Foods infrastructure

• Unification of infrastructure components (directory services, messaging) for initial interoperability

• Developed security standards for organizational interoperability

• Addressed the networking challenges (TCP/IP address / subnet overlap)

• Support transition / swivel-chair interoperability

• Data center footprint reduction via virtualization

• Led the global architecture, design and development of the Windows 2008 R2 implementation strategy to leverage the following benefits:

• 64 Bit Technology

• Enhanced Directory Services management

• Windows 2008 Certificate Services w/ Roaming Credentials

• Data Center footprint reduction

• Direct Access / Always on network connectivity

• Designing and implementing cloud computing solutions leveraging Microsoft Hyper-V as the host

• Led the Active Directory Migrations from a Windows 2000 single forest, multi-domain environment with Exchange 5.5 into a Windows 2003 single forest, single domain environment with Exchange 2003, SMS 2003 which encompassed:

• Migration of 130,000+ users and computers globally

• Quest Migration Management Software

• Migration of 6,000+ file and print servers, application servers and infrastructure servers

• Platespin Migrate Software

• Design and manage all aspects of Active Directory engineering activities

• Group Policy Management and Administration

• Site & Subnet Architecture

• Organizational Unit Architecture

• Security Rights Delegation and Roles based on “least privilege” model

• DNS management

• DHCP authorization and management

• Led the design and implementation of consolidated logon for non-Windows Operating Systems, leveraging Identity Lifecycle Management (ILM), Oracle Internet Directory (OID) and Sun One Directory Server

• Led the design and implementation of Production, Development and Test Citrix XenApp 5 environment

• Developed and built the Enterprise server monitoring and management initiative, leveraging

• Microsoft Operations Manager 2005 (MOM) and now implementing Systems Center Operations Manager (SCOM)

• Implement VMWare ESX 4.0 environment for server virtualization initiatives for:

• Standardized virtual server installations

• P2V server migrations to reduce asset overhead (footprint reduction)

• Implemented of VMWare High Availability Solutions

• Leveraging VMotion for seamless failover / failback

• Server Clustering

• Develop, scale up and out with Enterprise storage solutions

• EMC Centerra/Celerra

• EMC Clarion

• EMC Symmetrix

• NetApp Filers with iSCSI

• Design and implement a MAC Airbook integration solution into the Active Directory environment to accommodate:

• Certificate Services availability for MAC

• Group Policy Management for MAC

• Design and implement RADIUS authentication environment for:

• Remote networking for Sales department

• Wireless network accessibility

• Build out and testing of MAC, DAC and RBAC Administration Model for

• Directory Services

• SharePoint Services

• Developed, designed and implemented a three tier Certificate Services infrastructure for

• Secure Remote Network Access (VPN Security)

• Secured Wireless Networking (discretionary access using RADIUS authentication and Certificates)

• Application Single Sign on for SAP Portal applications

Information Services International 5/99 - 7/06

Technical Architect / Systems Engineer

• As the senior technical architect for the Americas, my primary responsibilities included developing project plans, assignment and management of actions and activities, meeting milestones and key deliverables for the Windows Server group, provide status updates up to and including the senior executive level, perform vendor management and day to day Windows Server team management. I also participated in all the key phases of the projects and activities including design, execution and post implementation support.

• Managed various aspects of the tactical execution of the project and support activities

• Served as the key escalation point in coordinating the different infrastructure teams throughout the organization including Networking, Security, Messaging, Desktop Support, Managed Mobility Services, etc.

• Manage and mentor the mid-level and junior level staff and provide them with tasks and activities commensurate with their capabilities in order to develop their skills and expand their knowledge.

Server Consolidation Assessment Project –VMware and EMC Clarion

• Developed the projects plans and risk analysis of a formal technology review to evaluate strategies such as server consolidation and virtualization to lower the total cost of ownership by reducing datacenter footprint, consolidating hardware and software functions, more efficiently utilizing server functions, rack space and power consumption.

• The scope of technologies assessed and reviewed included VMWare ESX Server, Blade Servers, Oracle 10g Grid Computing, Microsoft Virtual Server 2005, Citrix Thin Client Technologies and San Storage.

• Assessment findings included low server utilization on applications servers such as E-time, Government Pricing Systems, etc. Over 200 servers were assessed as potential consolidation candidates. Server farm growth and projected projects indicated a 6 to 1 consolidation ratio.

• Key recommendations included leveraging virtualization to reduce datacenter footprint and achieving a higher return on investment. Additional recommendations included, qualifying Microsoft Virtual Server and VMWare ESX Server as “qualified platforms” as recommended standards. Microsoft Virtual Server provided a low cost entry into virtualization while ESX provided the platform for growth, scalability and redundancy.

• Recommend and install Robotic Tape Library and near line disk storage devices for efficient backup and recovery

• Install and configure Veritas (Symantec) Backup Exec enterprise software

Server Collocation Project

• Developed the projects plans, risk analysis and execution strategy for server collocation of both GxP and non-GxP systems. The primary objective being to lower the total cost of ownership by reducing datacenter footprint and more efficiently utilizing on-site vs. collocated rack space and power consumption.

• Carried out the execution strategy for the collocation, including review and completion of all requisite system procedures as well as all FDA related documentation for the completion of this move

Citrix MetaFrame Presentation Server Project

• Architect, Design and implement a scalable, highly available Presentation Server 4.0 Thin Client computing environment globally

• Implement the thin client computing infrastructure to provide a robust, global environment consisting of:

• 1,700 + Applications

• 350 + Terminal Servers

• 28,000 users

• 6 Load Balanced Citrix Web Interface Servers

• 250 Wyse Terminals

• Architect, Design and install SQL Server 2000 Active / Active Cluster to provide multiple subscriber replication for the Citrix Data Store

Active Directory Consolidation for Manufacturing Project

• Architected, designed and implemented a robust, scalable Active Directory Infrastructure that met and exceeded the high availability requirements of the 24 X 7 manufacturing environment

• Performed an in-depth Discovery

• Architected the end to end Infrastructure

• Performed a detailed Proof of Concept and Pilot

• Implemented the global solutions:

• Global Active Directory Implementation

• Migration of 34 Windows NT 4.0 and Windows 2000 Domains into one AD Forest consisting of 4 domains

• Global Manufacturing Anti-Virus Solution

• Symantec Anti-Virus (Corporate Edition) implementation for servers, workstations

• Global Manufacturing Security Patching Solution

• Implement PatchLink Patch Management for servers, workstations

• Environment consisted of:

• 42 locations globally

• 40 Windows 2003 Server Domain Controllers

• 600 Member Servers

• 12,000 Clients

Global Certificate Services Project

• Architect, Design and Implement a global solution for PKI and Certificate Services Infrastructure

• Pilot and Test Certificate Services Solution

• Implemented a three-tier Certificate Services infrastructure for:

• Secure LDAP (LDAPS)

• Secure Wireless

• Secure Email Messaging

Active Directory for DMZ Project

• Architect, Design and Implement a highly secure Active Directory Environment for a business partner and internal corporate user DMZ environment

• Perform in-depth security analysis and auditing to ensure the integrity of the DMZ AD environment

• Perform in-depth penetration testing to validate the integrity and security of the DMZ AD environment

Global Data Processing Consolidation Initiative

• Perform Application Auditing and Assessment

• Determine the requirements and criteria for:

• Application co-location

• Application relocation

• Application consolidation

• Determine Application High Availability requirements such as:

• Failover Requirements

• Hardware / Software Clustering Requirements

• Load Sharing / Load Balancing Requirements

• Perform Server Consolidation / Relocation

• Migration of standard server installations to HP Blade Servers backed by EMC Symmetrix and Clarion SAN Storage

• Windows 2000 / 2003 Server Blade Installation

• SuSe Linux Enterprise Server v9.0 Blade Installation

• Perform Server Virtualization

• Architect and Implement VMWare ESX Virtual Server 2.5.2 solutions

• Installation and Buildout of Stand Alone Virtual Servers

• Installation and Buildout of Clustered Virtual Servers

• Installation and Buildout of Blade Servers leveraging High Availability configurations

Global Corporate NT 4.0 to Active Directory migration Project

• Migrated 2000+ member servers

• Migrated 37,0000 clients

• Built out 45 Active Directory Domain Controllers making up

• 2 Windows 2003 Active Directory Forests

• 6 Active Directory Domains

• 2 Windows 2003 Domains

• 4 Windows 2000 Domains

Microsoft Exchange 2003 Implementation Project (subsidiary of Information Services International)

• Architected, Designed and installed a Microsoft Exchange 2003 environment for 5000 users

• Install and configure 5 Microsoft Exchange 2003 servers

• Technical deployment of MS Outlook to clients

• Installation and configuration of Outlook Web Access

Global Windows Domain Consolidation Project

• As a precursor to the Active Directory initiatives, this project consisted of the consolidation of 45 Windows NT 4 domains into 3 regional domains consisting of:

• 1,800 member servers

• 37,000 clients

NDS to NT Migration

• Architected, Designed and Implemented the final migration solution to associate Novell user objects to Windows NT domain accounts

• Successfully migrated 13,000 user objects, files, shares, home directories and maintained user rights throughout the migration from NDS environment to Windows NT

CERTIFICATIONS & CLEARANCES

• MCSE Windows NT 4.0

• MCSE Windows 2000

• MCSE Windows 2003

• MCITP Windows 2008 Enterprise Administrator

• Citrix Certified Administrator (CCA) Metaframe XP

• Citrix Certified Administrator (CCA) Metaframe PS 3.0

• Active Secret Security Clearance (valid until 03/2013)

• Basic conversational Spanish

Contact this candidate