An Enterprise Solution Security and Cloud Architect professional experienced in designing networks, endpoints, vulnerability management, data analysis, consulting on security architecture and controls, security governance, and incident monitoring and response. Exhibits strong technical and project management skills, relationship building and teamwork capabilities, along with excellent verbal and written communication skills. Dedicated technical designer with advanced abilities in enterprise and solution architecture. Well-versed in Agile and scrum methodologies. Strong organizer with a disciplined, thorough and hardworking approach. Results-driven Enterprise Architect knowledgeable about legacy modernization, platform design and application development. Good strategic and tactical planning, project management and team leadership skills. Ready to bring 30 years of related experience to a challenging new role. Background includes data mining, warehousing and analytics. Proficient in machine and deep learning. Quality-driven and hardworking with excellent communication and project management skills. Innovative Solution Architect with in-depth understanding of software deployment and system design illustrated over 30 years of experience in similar roles.
Overview
36
36
years of professional experience
1
1
Certification
Work History
Sr. Technical Virtualization Solution Architect
Simple Technologies LLC
09.2022 - Current
Strategized with the client on what the roadmap is or needs to be in order to make recommendations to create a requirement matrix.
Design, architect, and maintain enterprise-level cloud solutions based on IaaS, PaaS and SaaS capabilities using the best practices for cloud computing, reusability and cost optimizing techniques.
Analyze requirements, develop architecture, design artifacts, and execute application and data migrations from on-premises data centers to Azure
Deploy, provision, and manage multiple Azure infrastructure components, including but not limited to virtual networks and subnets, virtual machines, web applications, databases, containers, functions, storage, Azure AD, RBAC, Key Vault, VDI, policies, alerts, logging, and monitoring
Responsible for network VM security for cloud connections
Responsible for Nessus, Trillix and Defender deployment for RedHat, Windows 2019 and 2022
Implement modern data solutions with Azure SQL Database, PostgreSQL, MySQL, Managed Instance, Serverless, Elastic Pool, Data Factory, Data Lake, Data Bricks, Azure Synapse, Power BI, Application Gateway, and internal load-balancer
Monitor Azure cloud-based systems for availability, performance, reliability, and security using tools like Azure Monitor, Azure Log Analytics, App Insights and Microsoft Defender for Cloud
Establish a continuous improvement plan for Cloud Operations, including technology reviews, root cause analysis, action reports analysis, and cloud portfolio review to ensure adequate infrastructure
Ensure that the cloud design is adhering to required standards, backup, restore, high availability and DR requirements and organization-based compliance needs
Provide guidance to Engineers on multiple Azure Technologies including Networking, Compute, Data &AI, DevOps, Identity, Storage, App Services, Security, etc
Implemented multi-factor authentication (MFA) for PIV card using Azure Active Directory (AAD)
Implemented Azure firewall service which included the rules, restrictions, polices and logs
Design and implemented the Cisco Service Routers (CSR’s) configuration, BGP, HA and syslog’s
Design CIDR blocks, VNET, Routing Tables, and Conditional Access
Led technical design and execution of on-premises infrastructure, server workloads, data, and application migrations to cloud IaaS and PaaS platforms
Designed and implemented Azure solutions, covering various services such as Azure Active Directory, Azure Virtual Machines, Azure Storage, Azure SQL, and cloud networking, with a focus on security and scalability
End to end management of migration projects, providing expertise in network, compute, virtualization, storage, security, and identity domains
Designed Azure Landing Zones based on the Cloud Adoption Framework, enabling organizations to adopt cloud technologies effectively and efficiently
Provide training materials to frontline technical and sales operations teams, monitoring operations metrics and ensuring customer satisfaction
Co-ordinate with multiple sales teams to facilitate contractual agreements by providing technical and financial recommendations to prospective customers
Champion continuous process improvement initiatives, aimed at enhancing engineer productivity and improving customer experience
Department of Homeland Security Headquarters
Information Sharing and Service Office
Improved solution efficiency by designing and implementing scalable architectures for enterprise clients.
Reduced system downtime through proactive monitoring, maintenance, and optimization of IT infrastructure.
Enhanced customer satisfaction by collaborating closely with stakeholders to define business requirements and translate them into technical solutions.
Ensured data security and compliance by establishing robust information governance policies and procedures.
Maximized system performance by conducting thorough testing and troubleshooting to identify areas for improvement.
Spearheaded the migration of legacy systems to modernized architecture, reducing operational expenses while increasing overall functionality.
Championed innovation by staying abreast of emerging technologies and incorporating relevant advancements into architectural designs.
Developed comprehensive documentation for solution design specifications, ensuring clear communication between stakeholders at all stages of project lifecycle.
Facilitated seamless communication between technical teams and non-technical stakeholders by effectively translating complex concepts into understandable terms for all parties involved in projects.
Mitigated risks associated with solution implementations by conducting thorough assessments of potential vulnerabilities prior to deployment.
Collaborated with developers on creating user-friendly interfaces that simplified complex workflows within custom-built solutions.
Delivered high-quality solutions on time and within budget through diligent adherence to project scope, timelines, and resource constraints.
Supervised deployments and provided troubleshooting and user support.
Presented roadmap and technology infrastructure to customers, demonstrating deep familiarity with APIs, platform infrastructure, security and integration capabilities.
Created and implemented innovative business solutions to support corporate objectives.
Conducted research to evaluate systems design and process efficiency.
Sr. Technical Virtualization Solution Architect
Simple Technologies LLC
11.2021 - 09.2022
Collaborated the VPC design and aligning the CIDR block allocation for the on boarding of different tenants
Collaborated the onboarding requirements for each tenant that needed to migrate into AWS environment
Worked on the integration of micro-services to enhance the authentication and security of the AWS environment
Worked on the tenant diagrams for the applications workflow for all VPC’s
Worked on the integration of the active directory authentication for the internal and external AWS environment
Worked on the active directory group policies for the integration of Windows 2012/2016/2019/2022 R2 and red hat EC2 instances
Worked on the custom dynamic DNS integration for Linux and windows EC2 instances
Worked on the integration of the security operation center (SOC) tools and the retention of the logs
Worked on the transit gateways, direct connect, ASR and CSR design
Worked on the redundant trusted internet connection (RTIC) for the integration of DHS components to the AWS environment
Worked on the deployments, installations, and configurations of the CloudWatch, Config, and SSM agents
Worked on the application load balancer (ALB) and forward listeners for URL redirects
Worked on the build plans for the different types of EC2 instances, security groups (SG) and architecture for various environments
(Non-Prod, Production, and Disaster Recovery (DR)
Worked with the network team on the new design for the Equinix cloud broker facility
Worked on the CA-PAM integration to the jump servers for access to the virtual windows 2012/2016/2019 R2 and Red hat 6, 7, 8 environments
Worked on the procedures and documentation on the failover to DR which included the coordination of all micro-services from other departments
Worked on the security technical resource model (TRM) for approved application in the AWS environment
Worked on the NetScaler integration for tenants and customers access to separate VPC’s
Worked on the authorized to proceed (ATP) supporting security documentations.
Improved solution efficiency by designing and implementing scalable architectures for enterprise clients.
Reduced system downtime through proactive monitoring, maintenance, and optimization of IT infrastructure.
Enhanced customer satisfaction by collaborating closely with stakeholders to define business requirements and translate them into technical solutions.
Streamlined business processes through the development and implementation of customized software applications tailored to client needs.
Ensured data security and compliance by establishing robust information governance policies and procedures.
Maximized system performance by conducting thorough testing and troubleshooting to identify areas for improvement.
Accelerated project delivery with effective management of cross-functional teams, adhering to agile methodologies and best practices.
Leveraged cloud technologies to optimize costs, improve scalability, and facilitate seamless integration across platforms.
Spearheaded the migration of legacy systems to modernized architecture, reducing operational expenses while increasing overall functionality.
Championed innovation by staying abreast of emerging technologies and incorporating relevant advancements into architectural designs.
Developed comprehensive documentation for solution design specifications, ensuring clear communication between stakeholders at all stages of project lifecycle.
Facilitated seamless communication between technical teams and non-technical stakeholders by effectively translating complex concepts into understandable terms for all parties involved in projects.
Mitigated risks associated with solution implementations by conducting thorough assessments of potential vulnerabilities prior to deployment.
Optimized resource allocation across multiple projects by utilizing advanced project management tools and techniques for more efficient scheduling and task prioritization.
Collaborated with developers on creating user-friendly interfaces that simplified complex workflows within custom-built solutions.
Managed end-to-end software development life-cycle, from initial requirements gathering to post-implementation support and maintenance.
Provided technical leadership and mentoring for junior team members, fostering a supportive learning environment that promoted skill development and career growth.
Supervised deployments and provided troubleshooting and user support.
Delivered high-quality solutions on time and within budget through diligent adherence to project scope, timelines, and resource constraints.
Presented roadmap and technology infrastructure to customers, demonstrating deep familiarity with APIs, platform infrastructure, security and integration capabilities.
Created and implemented innovative business solutions to support corporate objectives.
Managed project planning, resource allocation, scope, schedule, status and documentation.
Provided support during customer implementations and applied industry best practices.
Worked closely with product teams to define and prioritize partner feature requests
Conducted research to evaluate systems design and process efficiency.
Worked with clients post-implementation on user testing, debugging, support and maintenance.
Worked with customers or prospective customers to develop integrated solutions and lead detailed architectural dialogues to facilitate delivery of comprehensive solution.
Guided and influenced existing partners on recommended upgrades and enhancements to integrated solutions.
Communicated with partners and clients to update product and implementation status at technical or functional level.
Developed and delivered technical training designed to enable and educate [Type] software implementation partners.
Monitored and tested application performance to identify potential bottlenecks, develop solutions and collaborate with developers on solution implementation.
Provided 2nd and 3rd level technical support and troubleshooting to internal and external clients.
Managed and monitored installed systems for highest level of availability.
Participated in system development life cycle from requirements analysis through system implementation.
Designed and implemented system security and data assurance.
Elizabeth Campus security workflow for three enclaves
Working on resource domain security boundaries and the connection to the campus
Working on the Nessus Security Center scans on three enclaves
Working on the Windows 2012\2016 R2 virtual machines configuration for Continuous Diagnostics & Mitigation (CDM)
Working on the ArcSight configuration with Windows connectors for logs
Working on the security operation center (SOC) correlation feeds from the ArcSight solution
Working on the Voice over IP (VOIP) appliance solution for accreditation
Working on the physical security network (PSN) environment for accreditation
Working on jump server access to the campus and isolation environment
Working on jump server access to the campus and isolation environment
Working on the two-factor authentication of the PIV cards from a resource domain
Working on the backup schedule and retention of data stored on the EMC SAN
Working on Role Base Access Control (RBAC) for access to internal documents
Working on security technical implementation guide (STIG) for Windows and Red Hat 6/7
Working on Security Assessment Report (SAR) for St
Elizabeth Campus services
Working on Plan of Actions & Milestones (POA&M) for St
Elizabeth Campus services
Working on strategic planning for the consolidation of systems to one VMware virtual environment as a service
Working on XACTS 360 to update boundary description, common controls, and security plans
Working on enterprise architecture for the current services and Office 0365 cloud OneDrive
Working on the Azure Security Center and its capabilities to replace the Tenable Security Centers role
Working on virtual sandbox applications testing in Azure for legacy and customized applications
Working on Viper phone testing to comply with FIPS 140-2 requirements.
Improved system efficiency by designing and implementing scalable technical solutions to meet business requirements.
Developed customized software applications for clients, resulting in increased customer satisfaction and retention.
Analyzed Windows server business to identify spending trends, whitespace and growth opportunities, compliance issues and assisted account teams in target account development.
Managed multiple projects concurrently, consistently delivering results within specified deadlines without compromising quality standards.
Established best practices for code quality and architectural design patterns, promoting consistency across development teams.
Evaluated vendor offerings, negotiating favorable terms for hardware and software purchases while maintaining cost-efficiency goals.
Developed strong professional relationships with colleagues and clients, fostering a collaborative working environment conducive to project success.
Managed project planning, resource allocation, scope, schedule, status and documentation.
Provided support during customer implementations and applied industry best practices.
Managed project scope, schedule, status and documentation.
Worked with customers or prospective customers to develop integrated solutions and lead detailed architectural dialogues to facilitate delivery of comprehensive solution.
Created and implemented innovative business solutions to support corporate objectives.
Conducted technical workshops and education sessions for customers and [Type] teams.
Guided and influenced existing partners on recommended upgrades and enhancements to integrated solutions.
Managed and delivered advanced customization and configuration for [Type] solutions.
Conducted research to evaluate systems design and process efficiency.
Conducted post-sale requirements gathering, analysis and documentation.
Installed, integrated and deployed [Software] product in client environments.
Developed and delivered technical training designed to enable and educate [Type] software implementation partners.
Executed application database upgrades, backups and restore duties.
Managed and monitored installed systems for highest level of availability.
Created strong relationships with key decision makers as trusted consultant of [Type] product line.
Monitored and tested application performance to identify potential bottlenecks, develop solutions and collaborate with developers on solution implementation.
Managed installation, upgrade and deployment projects and provided on-site direction for network engineers.
Resolved issues related to operational components for LAN, WAN and voice systems.
Designed and implemented system security and data assurance.
Defined enterprise processes and best practices and tailored enterprise processes for applications.
Leveraged strong communication skills to effectively present complex technical concepts to non-technical stakeholders.
Contributed to the successful execution of high-visibility projects, earning recognition for outstanding technical expertise and commitment to excellence.
Championed continuous improvement initiatives, identifying opportunities for process enhancements through thorough analysis of current workflows.
Oversaw change management efforts during system upgrades or migrations to minimize disruption to end-users'' daily operations.
Streamlined internal processes with the development of automation tools, increasing overall productivity.
Assisted in developing comprehensive disaster recovery plans, ensuring business continuity in the event of unforeseen circumstances or emergencies.
Provided expert guidance on technology trends, ensuring that the company remained at the forefront of industry advancements.
Earned a reputation as a trusted advisor to clients by providing strategic direction on technology investments aligned with business objectives.
Enhanced security measures by implementing robust data protection strategies, reducing the risk of cyber threats.
Optimized existing infrastructure by conducting regular performance assessments and recommending appropriate upgrades.
Resolved critical production issues quickly with root cause analysis, minimizing downtime and potential revenue loss.
Presented roadmap and technology infrastructure to customers, demonstrating deep familiarity with APIs, platform infrastructure, security and integration capabilities.
Worked closely with product teams to define and prioritize partner feature requests
Communicated with partners and clients to update product and implementation status at technical or functional level.
Supervised deployments and provided troubleshooting and user support.
Participated in system development life cycle from requirements analysis through system implementation.
Sr. Technical Virtualization Solution Architect
INTERAPTECH LLC
03.2019 - 03.2020
Collborated Worked on and implementing the new Federal Air Marshall virtual network using VMware 6.7
Worked on the STIGS level iii hardening standards for the new Federal Air Marshall network
Worked on the firewall ports and the source and destination of the virtual servers
Worked on the ESXI 6.7 hosts hardening guidelines based on the Nessus scans
Worked on the ESXI 6.7 firmware updates on each of the high availability hosts
Worked on windows 2012 R2 virtual machine snapshots in production and staging environment
Worked on creating the windows 2012 R2 templates for production and staging environment
Worked on the virtual machine priority bootup sequence for key applications in production and staging environment
Worked on ESXI 6.7 host templates for capacity increase when additional hardware is purchased
Worked on updating the virtual windows template with the current Microsoft patches
Worked on high availability (HA), Vmotion, DRS\SDRS, vCSA, PSC
Worked on the VMware ESXI network port groups design and virtual Vlan architecture
Worked on isolation of the virtual environment via port groups and vSphere firewall
Worked on the DHS CA 4 certificates for all the FAM’s new virtual environment
Worked on network isolation for AJOC and CSOC data centers
Worked on End Point Protection (ENS) deployment to the newly delegated FAM’s network
Worked on the ATO documentation for the new MSNS network
Worked with the ICCB documentation for the acceptance of the new environment
Worked on the mitigation of the security scans of the ESXI 6.7 and validating the finding with screenshots
Worked on IDRAC remote access to the ESXI 6.7 host for troubleshooting.
Improved solution efficiency by designing and implementing scalable architectures for enterprise clients.
Reduced system downtime through proactive monitoring, maintenance, and optimization of IT infrastructure.
Enhanced customer satisfaction by collaborating closely with stakeholders to define business requirements and translate them into technical solutions.
Maximized system performance by conducting thorough testing and troubleshooting to identify areas for improvement.
Accelerated project delivery with effective management of cross-functional teams, adhering to agile methodologies and best practices.
Spearheaded the migration of legacy systems to modernized architecture, reducing operational expenses while increasing overall functionality.
Championed innovation by staying abreast of emerging technologies and incorporating relevant advancements into architectural designs.
Developed comprehensive documentation for solution design specifications, ensuring clear communication between stakeholders at all stages of project lifecycle.
Facilitated seamless communication between technical teams and non-technical stakeholders by effectively translating complex concepts into understandable terms for all parties involved in projects.
Mitigated risks associated with solution implementations by conducting thorough assessments of potential vulnerabilities prior to deployment.
Established strong relationships with vendors to secure favorable pricing structures on hardware/software acquisitions, resulting in significant cost savings for clients.
Optimized resource allocation across multiple projects by utilizing advanced project management tools and techniques for more efficient scheduling and task prioritization.
Presented roadmap and technology infrastructure to customers, demonstrating deep familiarity with APIs, platform infrastructure, security and integration capabilities.
Conducted research to evaluate systems design and process efficiency.
Worked with clients post-implementation on user testing, debugging, support and maintenance.
Guided and influenced existing partners on recommended upgrades and enhancements to integrated solutions.
Communicated with partners and clients to update product and implementation status at technical or functional level.
Set up and installed software on both [Type] and [Type] platforms.
Installed, integrated and deployed [Software] product in client environments.
Participated in system development life cycle from requirements analysis through system implementation.
Provided 2nd and 3rd level technical support and troubleshooting to internal and external clients.
Managed and monitored installed systems for highest level of availability.
Designed and implemented system security and data assurance.
Established the cloud virtualization strategy to get the DHS core data centers to the Azure and AWS
Worked on the storage capacity specification to maintain the virtual hybrid environment on premise and in the cloud
Worked on the cloud security policies and governance
Worked on the Software Defined Network (SDN) strategy for the Hybrid cloud solution
Worked on application compatibility with software defined network
Delivered the CAPEX and OPEX model for cloud solutioning
Worked on validation of system architectural blueprints and designs for quality, performance, security, redundancy and integration
Worked on application compatibility with software defined network
Worked on a DHS roadmap for the migration to the Azure, AWS and GPS cloud
Worked on a support desk model strategy using service now to handle the automation on the request for cloud services
Worked on a tagging strategy to ensure that the clients do not have over charges for cloud services
Worked with vendors on products and capabilities to match the lines of business of the department
Worked on the CDM delivery to the DC1 data center
Worked on the DHS OneNet network automation and virtualization design for the cloud
Worked on the Splunk and Continues Monitor solution for an enterprise security operation center (SOC) consolidation
Worked on the Azure virtual Network (VTAP) to integrate with the Splunk solution
Access and communicate the impacts, trade-offs, risks, costs, and benefits of moving to the cloud providers
(AWS, Azure, Google)
Liaise with technology infrastructure and operations as part of enterprise architecture and data flows
Provide technical IT input requirements for RFP/RFI/RFQ
Worked on technical roadmaps, system architectures and enterprise designs across components
Work with vendors on new engineering products for potential network improvement for customers
Sr. Technical Solution Architect\ Sr. Security Lead
CSRA & INSIGNIA
02.2017 - 10.2018
In the Enterprise & Engineering Services (OIT)
Worked on Enterprise Architecture modeling for all VA applications and services
Worked with Office of Information Security (OIS) for cloud migration to Azure and AWS
Worked on cloud security policies and governance for ITOPS efforts
Worked on Risk Vision migration strategy
Evaluated the Security Information Event management (SIEM) solution for cloud applications
Evaluated the Joint Legacy Viewer (JLV) data services for migration to the cloud through the Business Partner Extranet
Worked on the Enterprise Cloud Services (ECS) discovery for the consolidation of circuit through AT&T, Verizon and Century Link
Worked on the circuit size inventory for all VHA, VBA, and VSIN regions
Developed Concept of Operations (CONOPS) for Multi-Protocol Layer Switching (MPLS) to transition from a hierarchical network
Worked on Concept of Operations for LAN services on Microsoft Active Directory, SCCM, Exchange
Developed strategic plan for Managed Trusted Internet Protocol Services (MTIPS) implementation to support the Trusted Internet Connection Access Point (TICAP)
Worked on Trusted Internet Connection (TIC) 2.0 and 3.0 draft requirements from Department of Homeland Security to enhance the VA network architecture
Worked on Analysis of Alternatives (AoA) document for the Enterprise Infrastructure Solution (EIS)
Security Enterprise Architect lead which includes data modeling the VA network
Evaluator of the Equinix cloud broker services for migration to AWS and Azure
Evaluated the VMware 6.5 ESXi environment for upgrade to 6.7
Experience in AWS best practices and cloud reference architectures
Experience in compute and storage management and cost control mechanisms
Experience in migration of document storage to AWS S3
Experience in network integration and Cloud connectivity of public and private environments
Experience in AWS databases (RDS, Aurora and PostgreSQL)
Experience in the designing of AWS services like API Gateway/ Elastic Beanstalk
Experience in lift and shift of an existing on-premises application to AWS
Experience of progressive design patterns in event modeling, dynamics scaling and cost optimizations and platform services
Worked on Amazon Web Services (AWS) solutioning documents
Worked on Office 365 solutioning documents
Worked on Equinix solutioning documents for cloud services to AWS, AZURE Office 0365
Worked on VA Network documentation for unified communication, Active Directory, Exchange2013, Skype for Business, COOP and Disaster Recovery for cloud migration to Azure and AWS
Work on security enterprise architecture modeling for Authority to operate (ATO) automation
Work on security standardization for servers, desktops and routers for On-premises and Cloud
Work on encryption at rest and in-flight requirements
Work on VA enterprise (VEAR) planning for Risk Management Framework (RMF)
Work with Tableau on the enterprise architecture design and architecture strategy methodologies
Work on security domain mapping to Network and Infrastructure domains
SR. TECHNICAL SOLUTION ARCHITECT
HEADQUARTERS, INTERAPTECH LLC
01.2007 - 02.2017
Design, Implement and manage the enterprise VDI solution for sandboxing remote users that do not have a government computer
This solution allowed for special projects to move forward and continue to allow the security controls to enforce data access
Technical lead for integration of cloud solutions using on premise domain controller’s authentication
Information System Security Officer (ISSO) for the original enterprise virtual environment
Technical lead for creating a technology road map to match the lines of business for DHS HQ executives and chief technology officer (CTO)
Technical lead for virtualization platform VMware vSphere 6 and ESXi 5.5 and 6
Technical lead for enterprise resource domain which supports 350,000 users to critical architecture to run the department
Technical lead to the technical project and program managers which consists of business analysts of the enterprise services
Technical lead to the DHS HQ Deputy CIO for all collaboration with software and hardware vendors
Technical lead for the government and vendors to ensure that the solution will work in the DHS environment
Technical lead for all cross-domain authentication between new and legacy applications
Technical lead for active directory two factor authentication using certificates
Technical lead for active directory group policy modeling to ensure that changes do not impede the end user’s devices and servers
Technical lead for active directory sites and services to ensure authentication is handled by the correct domain controllers
Technical lead for SCCM 2012 r2 deployment and data center placement
Technical architect for resource domain delegation and component integration for attribute base access control (ABAC)
Technical lead for the Microsoft environment with ADLDS, FIM’s, MIM’s, ADFS 2.0 and 3.0
Worked on the hybrid cloud solution migration to Azure and Office 0365
Worked with the infrastructure as a service (IAAS), Workplace as a service (WPAAS), Email as a Service (EAAS), and Skype for Business service provider teams to ensure that the correct configuration is being used
Technical lead for the redesign of the active directory DNS structure to support the enterprise resource forest
Worked with the security teams on evaluating products to support the enterprise mission
Technical lead for enterprise VDI solution in the data centers
Technical architect for the coast guard St
Elizabeth campus VDI and cisco VOIP solution
Technical lead for exchange 2010 and 2013 integration with the cisco VOIP solution
Technical lead on enterprise strategies for the cloud computing directive
Technical project manager for teleworked using the Citrix virtual environment
Technical lead for security hardening guidelines for servers, appliances, and end devices
Technical lead of the NetScaler design for high availability (HA) in dual data centers
Technical on writing system design documentation and functional requirement documents
Technical lead on technical Worked group (TWG) to validate all review plans
Technical lead in developing best practice procedures based on industry standards
Technical lead on Cop/DR for data centers enterprise services
Developed and architected four (4) IA SharePoint portals for dissemination of guidelines, process, role-based security awareness, and policies to appropriate personnel based on the need-to-know to comply with FISMA requirements
Developed project C&A templates (SSP, ST&E, SAR, RA, FIPS 199, PTA, and PIA) and documented the C&A process
Technical lead for NSA blue and red team security vulnerabilities assessments
Technical lead for identity management project for the implementation of PIV cards
SUMMARY: BASED ON THE NETWORK DISCOVERY ANALYSTS, APPLICATION WORKFLOW, ACTIVE DIRECTORY STRUCTURE, AND DATABASE REPLICATION
DHS HQ WAS ABLE TO MIGRATION DATA CENTERS TO A MORE CENTRALIZED MODEL.
Network Engineer
Kenda Systems
01.1998 - 11.2016
Implement, build, and configure wide area networks throughout the United States
Implemented several Windows NT domain model configurations
Implemented SMS 1.2 Network Wan design
Designed, implemented, 30 Microsoft Exchange 5.5 Server based messaging system
Implemented Exchange E-mail migration for NT Workstation, Windows 95, 98
Managed DHCP based local and wide-area network across 30 locations
Installed and configured Cisco Pix Firewalls 520, 10001
Installed and configured Cisco Catalyst 1924, 2924
Installed and configured Cisco ACS server for authorization, authentication utilizing Tacacs +
Connected 30 sites throughout the US via ISDN, T1, and Frame Relay
Traveled to remote sites for system installation maintenance and troubleshooting
Implemented, WAN software deployment for Archive Serve, Seagate Backup Exec 727, APC Powerchute 5.1, Symantec PCAnywhere 8.02
Installed and Configured Xylan virtual switches in 20 client’s sites
Configured Compaq 850R, 1500R with NT 4.0 National Rollout.
Sr. Technical Solution Architect
INTERAPTECH LLC
12.2011 - 01.2012
Technical lead for the discovery of the Microsoft environment which consisted of Active Directory 2003, 2008 R2, Blackberry 4.1, Exchange 2003/2007, COOP and Disaster Recovery.
Sr. Technical Solution Architect
Federal Concept
12.2005 - 10.2007
Office of Comptroller of the Currency
Engineered, tested Exchange 2007 design
Validated capacity planning documentation, configuration for 4500 users
Engineered, tested Forefront 2007 security
Validated exclusion documentation
Worked on security vulnerabilities assessment for Exchange 2007
Worked on Risk mitigation documentation
Worked on Lotus Notes migration to Exchange 2007
Design Disaster Recovery documentation for Exchange 2007
Dept
Of Transportation
Managed a staff of 15 Tier II and Three III support and Engineering
Technical lead for forensic discovery and investigation for Federal Railroad Administration (Tools FTK and Encase)
Technical lead and project manager for Federal Railroad Administration server consolidations and COOP and Disaster recovery plans
Technical Lead for testing Vista, Exchange 2007, SharePoint 2007, Forefront Beta, Longhorn Beta 3
Technical Lead for group policies consolidation, Desktop imaging with standardization, and SDLC for computer hardware
Project lead for Safeboot integration into Federal Railroad Administration Laptop Images
Technical Lead on the integration of Vista and compatibilities with Federal Railroad Administration custom application and security applications
Technical lead for penetration testing and vulnerabilities mitigation
Technical lead for Line of Business application and securing the necessary ports in the firewall
Technical lead on DMZ design, implementation, and functionality
This includes the methodology of a access point into the DMZ from a particular jump server
Technical lead on implementing IDS solution to cover both DMZ design
Design and Implemented Disaster Recovery site for Federal Railroad Administration
Technical lead for the Migration and consolidation of 12 domains into one forest empty root architecture
Technical lead for the consolidation of servers both (windows 2000, 2003)
Technical lead of the desktop consolidation for 15,000 users
Technical lead for the design and implementation of the DOT Siprnet Exchange server and domain controllers
Technical lead for the Active directory permission delegation and group policy placement
Technical engineer on new building SIPRNet site design
Technical engineer on reviewing active directory security policies
Summary: Based on Network discovery analysts of the infrastructure, Active Directory, and SAN
Federal Railroad Administration (FRA) was able to failover all services to the remote COOP site and move the new office location in Washington DC.
Sr. Technical Solution Architect, •Lead Engineer
Internosis, Microsoft
03.2004 - 12.2005
On Designing Active Directory\Exchange 2003 Infrastructure for 4500 users with 20 sites for Defense Information System Agency
(DISA).
Manager and Sr. Lead LAN\WAN Infrastructure Engineer
Unisys, Homeland Security
11.2002 - 03.2004
Managed 44 Engineers on TSA and DHS Project
Designed and Implemented Active Directory Infrastructure for 130,000 users
Designed migration package for using NETIQ and DMA, DRA design tools
Migrated user accounts from one Exchange 2000 in one Forest to another 2000 Forest
Implemented Terminal service to all W2K servers with high security
Architect and Implement Security matrix and Group Policy Objects
Implemented Active Directory Integrated DNS for Dynamic updates
Implemented DHCP/File server clustering for 500 sites and scaled for 100,000 users
Implemented site server’s replication and bridgehead configuration
Bridgehead replication scheduler was used to handle replication at nonpeak hours of utilization
Implemented Distributed File service (DFS) for all users in 500 sites
Tested and implemented all firewall port discovery configurations for all Microsoft services such as AD replication, LDAP SSL, DFS replication, directory service, Global Catalogue
Implemented HP printer appliance 4200 to handle print redirection from active directory print queue
Tested and Implemented Switch configuration using HSRP and port security
Designed and Implemented 42U rack security using NetBotz 310 and 400 series equipment
Configured all alert information to be sent to a NetBotz Central for storage of photo images and alerts
Architected, designed and Implemented Exchange 2000
Configured Active directory for forest prep and domain prep for installation of 2000
Defragged online and offline EDB database using Eseutil Utility
Designed backup strategies for brick yard backups and restores via Veritas 8.6 & 9.0.
Sr. LAN Infrastructure Engineer
Mind Bank Inc
06.2002 - 11.2002
Test application for compatibility on Windows 2000 using Readiness Analyzer and Application Compatibility Toolkit
Documented Designed and Implemented Active Directory Infrastructure
Planned migrations from NT 4.0 to Windows 2000 Advance Server
Planned and Designed migration from Windows 98 to windows XP
Active directory was part of the XP migration
Migrated user accounts from NT 4.0 to Active directory using NET IQ
Also, Tested in LAB Active Directory Migration Tools and Clone principal scripting
Configured Novell 5.1 NDS and planned migration to Active Directory
Architected SMS 2.0 infrastructure and software deployment using SMS installer and third-party Veritas Wininstall LE repackaging
Configure Active Directory Software installation for deployment of application and upgrades
Implemented Terminal service to all W2K servers and secure Net meeting to all NT 4.0 Servers
Choptank Elementary School, Assistant Principal at Dorchester County Public SchoolsChoptank Elementary School, Assistant Principal at Dorchester County Public Schools