Summary
Overview
Work History
Education
Skills
Websites
Certification
References
Timeline
Generic

KELVIN EGOH

Arlington,TX

Summary

Highly motivated and skilled Network and identity Access Management Engineer with years of experience in designing, developing, and deploying highly scalable and available enterprise network solutions. I have years of experience working as a Network and Cloud Security Engineer. I am an energetic, ambitious, self-motivated, and dynamic person with good communication skills and teamwork.

Overview

13
13
years of professional experience
1
1
Certification

Work History

Cloud Architect

Vertexone
01.2022 - 02.2024
  • Create and manage Azure AD users and RBAC permissions
  • Architect, recommend solutions, support, maintain and develop the security infrastructure to support an Azure Identity Access management (IAM) system
  • Maintain M365 environment to include Azure AD, Intune, Exchange Online, SharePoint Online, Teams, and OneDrive
  • Working with other administrators and engineers of Exchange, Network, and Security to perform system changes and troubleshooting
  • Manage Exchange Online users, manage recipients - create, modify, delete, shared mailbox, recover deleted emails
  • Guide customers in onboarding their organizations to office 365 services such as azure, exchange online, SharePoint to Office 365 Identity various Office 365 issues including connectivity and mobility and fix them
  • Develop IAM strategies and architectures tailored to meet clients' specific requirements
  • Manage identity and access on-premises with Active Directory with window server 2016 and 2019
  • Configure and manage Group Policy Objects (GPOs), ensuring that only authorized users have access to the appropriate resources
  • Automated the cloud migration process, reducing manual labor by 40% and increasing accuracy by 80%
  • Generating AD report through PowerShell
  • Implement and maintain Active Directory Federation Services (AD FS)
  • Creating and managing application integrations for identity and access management with high experience in conditional access policies, Multifactor Authentication (MFA), Resetting MFA and resolving the MFA issues
  • Designed and implemented OKTA suit from scratch
  • Have Integrated OKTA Internal and customer application with OKTA B2E and B2B tenants
  • Installed and implemented OKTA Access gateway for securing access to on-prem apps and protecting organizations hybrid
  • Cloud infrastructure integrated OKTA SSO for more than 40 applications with MFA enabled at OKTA AND app-level
  • Defined OKTA rules for segregation of duties and birthright provisioning of users into downstream applications
  • Utilized Terraform to create custom machine images, and Ansible was used to install the software dependencies once the infrastructure was provisioned
  • Conducting multiple penetration tests on system
  • Identifying and recording security flaws and breaches on our network
  • Creating suggestions for security upgrades.

Network Security Engineer

JPMorgan Chase
04.2020 - 01.2021
  • Create and manage Azure AD users and RBAC permissions
  • Manage identity and access on-premises with Active Directory with window server 2016 and 2019
  • Configure and manage Group Policy Objects (GPOs), ensuring that only authorized users have access to the appropriate resources
  • Utilized Terraform to create custom machine images
  • Maintain M365 environment to include Azure AD, Intune, Exchange Online, Teams, and OneDrive
  • Ensure network infrastructure up-to-date and secured
  • Implement Network security policies to prevent unauthorized access and to secure network-accessible resources and compliance
  • Installation, configuration, testing, and tuning of Cisco ASA and Palo Alto firewalls
  • Creating zones and security polices in Palo Alto and Cisco ASA Firewalls
  • Installing Symantec Endpoint Protection Manager and installing antivirus clients
  • Scheduling scanning for endpoints
  • Identifies and solve vulnerabilities issues on Network.

Cloud Network Engineer

Anisoft solution
04.2019 - 03.2020
  • Worked in coordination with the IT, networking, security, app and database team to develop and support cloud, windows or Linux infrastructure
  • Planned and implemented company azure network architecture such as creating and managing resources group, virtual networks, subnets, VPN application gateway, route tables and network security group
  • Implementation and provisioning of cloud IaaS and PaaS resources and technology within company cloud environment
  • Designed and automated infrastructure as a Service (IaaS) and Platform as a Service (PaaS), SaaS capabilities which includes virtual machine, container services, virtual network, and cloud services
  • Used Azure DevOps services such as Azure Repos, Azure Boards, and Azure Test Plans to plan work and collaborate on code development, built and deployed application
  • Utilized Terraform along with Packer to create custom machine images, and Ansible was used to install the software dependencies once the infrastructure was provisioned
  • Employed Azure Monitoring tools such as Azure Log Analytics, Azure Network Watcher, and Azure Service Health to diagnose and minimize service degradation
  • Deployed AWS resources using Cloud Formation and Terraform
  • Managed Continuous Integration (CI) using Jenkins
  • Created private virtual cloud VPC on AWS that supports DEV, TEST, and PROD environments
  • Architected and implemented cloud solution for data migration from On-Premises Infrastructure to AWS Cloud
  • Provided expert level design and engineering support towards the successful delivery of IT cloud project portfolio
  • Configured and managed various AWS Services including EC2, RDS, VPC, S3, Glacier, CloudFront, and Route 53
  • Basic understanding of Serverless and Lambda; SQS, SWF, SNS, API Gateway, Kinesis and Cognito Applications
  • Added elasticity and scalability in AWS architecture to cope with demand; deploy AWS Route 53 for High-Availability
  • Created and maintained Account Policies & Roles on IAM, Security Groups, and Access Control Lists
  • Installed & configured IGW, Route Tables for public facing subnets and NAT for private-facing subnets on AWS VPCs
  • Adopted Agile development team to deliver an end-to-end continuous integration, continuous delivery product in an open-source environment using tools like JIRA and GIT
  • Used Amazon Container Services with Kubernetes for Orchestrating the servers.

Cloud Engineer

Chevron
08.2015 - 03.2018
  • Designed and managed public/private cloud infrastructures on AWS using VPC, EC2, S3, CloudFront, Elastic File System, RDS, Direct Connect, Route53, CloudWatch, CloudTrail, Cloud Formation
  • Utilized Amazon IAM console to create custom users and groups
  • Setup Life Cycle Policies for creation of new snapshots, deletion of old snapshots in S3 using S3 CLI tools and backing data from S3 to Glacier and Deep Glacier
  • Configured security groups, set up Elastic IP’s and auto-scaling Configuration
  • Utilized CloudWatch logs to move application logs to S3 and created Alarms based on application’s exceptions
  • Deployed AWS resources using Cloud Formation and Terraform
  • Managed Continuous Integration (CI) using Jenkins
  • Administered and maintained Jenkins slaves on Linux (Debian/Ubuntu)
  • Designed and implemented Security best practices at Instance, Subnet and VPC levels to fortifying Cloud infrastructure
  • Adopted Agile development team to deliver an end-to-end continuous integration, continuous delivery product in an open-source environment using tools like JIRA and GIT
  • Designed and deployed highly scalable, highly available, Secured and fault tolerant systems on AWS.

Network Engineer

SmartLink
01.2011 - 03.2014
  • Provided hands on support for Window 2012 / Redhat Linux Servers Installation and troubleshooting of network infrastructure issues within the enterprise environment
  • Configure and install various network devices and services (e.g., routers, switches, firewalls, load balancers, VPN, QoS)
  • Perform network maintenance and system upgrades including service packs, patches, hot fixes, and security configurations
  • Monitor performance and ensure system availability and reliability
  • Monitor system resource utilization, trending, and capacity planning
  • Provide Level-2/3 support and troubleshooting to resolve issues
  • Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure
  • Select and implement security tools, policies, and procedures in conjunction with the company’s security team
  • Liaise with vendors and other IT personnel for problem resolution
  • Installing, configuring, Managing and Troubleshooting Windows active directory services.

Education

Master of Science in Web Design Technologies -

Lynn University
Boca Raton, Florida
08.2021

Master of Science in Computer Network Security -

Anglia Ruskin University
Chelmsford, United Kingdom
09.2016

Postgraduate Diploma in Telecommunications Science -

Queen Mary University of London
London, United Kingdom
09.2013

Bachelor of Science in Computer Science -

Delta State University
07.2009

Skills

  • Azure Active directory
  • Privilege Identity Management (PIM)
  • Single Sign-On (SSO)
  • Azure DNS
  • Microsoft Office 365 exchange
  • Load Balancer
  • Application Gateway
  • Azure Board
  • Role based Access control (RBAC)
  • Active directory audit reporting
  • Active directory automation
  • Governance and compliance
  • Azure Web Apps
  • Knowledge of SAML, OpenID Connect and OAuth
  • MS SharePoint
  • MS Intune
  • OS: Windows, Linux RedHat, Ubuntu
  • Networking: CCNA, CCNP, Palo Alto Firewalls, Cisco ASA Firewalls
  • Virtualization/Cloud: Oracle VirtualBox
  • Build Tools: Maven, NPM build
  • SSO: OKTA
  • Network Monitoring: Splunk
  • CI/CD: Jenkins, Azure Pipeline
  • Automation: Azure Resource Manager, Ansible, Terraform, CloudFormation
  • Version Control: GIT, GitHub
  • Web Servers: IIS, Apache Tomcat, HTTPD, NGINX
  • Scripting: Shell Bash, PowerShell
  • Database Systems: MySQL and PostgreSQL
  • Containerization: Docker and Kubernetes (AKS and EKS)
  • Programming (Front end Web design): JavaScript, Html, CSS, jQuery, React JS, Node JS

Certification

  • AWS Certified DevOps Engineer – Professional
  • Microsoft Azure Security Engineer Associate(AZ-500)

References

available on request

Timeline

Cloud Architect

Vertexone
01.2022 - 02.2024

Network Security Engineer

JPMorgan Chase
04.2020 - 01.2021

Cloud Network Engineer

Anisoft solution
04.2019 - 03.2020

Cloud Engineer

Chevron
08.2015 - 03.2018

Network Engineer

SmartLink
01.2011 - 03.2014

Master of Science in Web Design Technologies -

Lynn University

Master of Science in Computer Network Security -

Anglia Ruskin University

Postgraduate Diploma in Telecommunications Science -

Queen Mary University of London

Bachelor of Science in Computer Science -

Delta State University

Similar Profiles

  • Mumin Farooq

    Mumin FarooqMumin Farooq

    Software Engineer at VertexOneSoftware Engineer at VertexOne

    View Profile
  • Kocharla Mohan Nikitha

    Kocharla Mohan NikithaKocharla Mohan Nikitha

    Consultant Business Analyst at VertexoneConsultant Business Analyst at Vertexone

    View Profile
  • Maitree Shah

    Maitree ShahMaitree Shah

    Senior Analyst at VertexOneSenior Analyst at VertexOne

    View Profile
KELVIN EGOH