Served as the SME, technical advisor and liaison between the IT department, COTR and government executives. Managed 15 systems specialists, systems engineers, security engineers, network engineers and Linux and MAC engineers that provided support to approximately 3000 end-users in Tiers I, II, III and IV environments. Responsible for the technical design, oversight and direction of major IT systems and IT security projects that significantly impacted Bureau components. Analyzed the work process of the Bureau’s activities and recommend suitable systems. Took on primary role in the analysis, design, development, standing up, installation, configuration, implementation, deployment, maintenance, management and administration of complex IT projects throughout the Bureau. Formulated long and short-term planning for the Bureau's information systems and IT security needs, and prepared requirement analysis, cost benefits and other studies to determine feasibility and practicality of new IT concepts. Developed and interpreted policies, procedures, and strategies for planning and delivery of IT services and security. Managed Cisco IDS/IPS, firewall rules, patch management, anti-virus solution, incident response, forensic investigation, vulnerability scanning, risk assessment, threat analysis, incident and event monitoring, systems auditing, and controlled VLANs.

·   Major Achievements – Successfully designed, implemented, managed, administered and timely completed multi-tiered projects and earned BEP a 20% in budget reduction and 35% in improved work efficiency and productivity:

Ÿ         Weekly vulnerability and application scanning. Provide reports to CIO.

Ÿ         Migration of Exchange 2007 to 2010.

Ÿ         Disaster Recover failover design and implementation from DC/Fort Worth to Fort Worth/DC.

Ÿ         Email retention archiving and global design, configuration and implementation.

Ÿ         TIC migration from AT&T TNET security appliances.

Ÿ         Upgrade of Windows 2000/2003 Servers to Windows 2008 R2 Hyper-V.

Ÿ         Virtualization of Windows 2008 R2 Hyper-V.

Ÿ         Upgrade of secure Flowsys equipment for currency printing presses.

Ÿ         MAC secure Casper Suite for patch management and S/W distribution design and implementation.

Ÿ         MAC secure Centrify PIV card accounts design and implementation.

Ÿ         MAC secure Engraving network upgrade.

Ÿ         iSCSI SAN network design and implementation in DC and Fort Worth datacenters.

Ÿ         Upgrade of Cisco IOS on Core Switches.

Ÿ         Reconfiguration of Managed VLANs using Cisco’s best practices.

Ÿ         Redesign of secure Photoengraving and Engraving Networks with scalable and optimized switches.

Ÿ         Upgrade of IOS on primary Server Farm Switch with zero interruption to services.

Ÿ         Replacement of UPS systems in Datacenter that serve 450 Servers with minimal impact to production.

Ÿ         Active Directory Domain Services setup, configuration and maintenance.

Ÿ         Group Policies configuration, implementation and changes.

Ÿ         SCCM patch management setup, configuration and deployment.

Ÿ         WSUS upstream and downstream servers setup, configuration and dbase maintenance.

Ÿ         Active Directory Right Management Services configuration.

Ÿ         Active Directory Federation Services single sign-on access to systems and applications.

Ÿ         Windows Distributed File System DFS setup and configuration.

Ÿ         Systems Audit.

Ÿ         PKI design and implementation.

Ÿ         Linux Red Hat setup and configuration.

Ÿ         VMware ESXi and vSphere setup and configuration.

Senior Solutions Architect for NASA GODDARD, Greenbelt, MD               September 2007 to April 2009

COLUMBUS TCHNOLOGIES, Greenbelt, MD  

Provided hands-on technical support and managed 15 systems, network and security engineers that provided back-end and front-end Windows, MAC and Linux platforms support to approximately 1000 end-users in 17 campus buildings in Tiers I, II, and III environments. Designed, developed, stood up, installed, configured, implemented, deployed, maintained, managed and administered the integration of all new technologies, network infrastructure and recovery systems to all supported buildings. Implemented file security and encryption systems. Conducted presentations and time management. Developed life-cycle analysis. Coached engineers and subcontractors. Provided capacity planning and acquisition. Served as the liaison between the IT department, upper management, vendors and contractors. Managed incident response team. Conducted forensic investigation, risk assessment, threat analysis and vulnerability assessment. Implemented intrusion detection and prevention systems. Managed IT security incident and event monitoring. Developed HW/SW lifecycle analysis. Managed Cisco PIX 515 firewall and 3750 Switches. Designed, implemented and managed Windows 2008 R2 servers and policies. Designed and implemented Windows and VMware virtualization. Deployed and upgraded client computers to Windows 7. Managed SLAs. Deployed GPOs to comply with NASA’s center-wide security Policies. Enforced NASA’s NPR, and NIST and FIPS Regulations. Conducted systems audit.

·   Major Achievements:

Ÿ         Designed and implemented Configuration Control Board and change management procedures.

Ÿ         Managed critical security patching to Servers, PCs and switches branch wide.

Ÿ         Designed, configured, implemented and administered Windows Servers 2008 R2 migration.

Ÿ         Supervised administrators supporting NX, GPM, SAMS, MMS, ASTRO, TIERS and LRO projects.

Ÿ         Provided technical support to scientific equipment and mobile devices.

Ÿ         Provided technical support and management for Windows Servers and PCs, and MAC and Linux PCs.

Ÿ         Designed and managed the deployment of desktop biometrics and migration to Windows 7.

Ÿ         Implemented the integration of backup ARRAYS and anti-virus solutions.

Ÿ         Designed, implemented and administered Servers failover and High Availability.

Ÿ         Designed and configured Windows Active Directory Domain Services and Group Policy Objects.

Senior Solutions Architect May 2003 to August 2007

IQUEST TECHNOLOGIES, Dulles, VA            

Provided hands-on technical support and managed a team of 5 IT systems, network and security engineers in Tiers I, II and III environments administering and supporting back-end and front-end operations to 100 end users using Windows 7/Vista/XP running on Windows 2008/2003 Servers, Exchange 2007/2003, SQL 2007/2005, SMS 2003, IIS 6.0, Cisco 3750 Catalyst Switches, PIX 506/515 FW and Servers virtualization.

·   Major Achievements:

Ÿ         Successfully designed, developed, stood up, installed, configured, implemented, deployed, maintained, managed and administered the migration of Windows 2000 Servers to 2003 Servers, 2000 Pro to XP Pro and Exchange 2000 to 2003, Active Directory Domain Services and Group Policy configuration.

Ÿ         Successfully designed, developed, stood up, installed, configured, implemented, deployed, maintained, managed and administered the transformation of 10 Severs and business-critical applications, i.e. Windows 2003, Exchange, SQL 2005, Linux Red Hat setup and VMware ESXi setup and configuration.

·   LAN/WAN Administration:

Ÿ         Designed, developed, stood up, installed, configured, deployed, maintained, managed and administered MS Windows 2003 Server, Vista Ultimate, Win XP Pro, Linux Red Hat, and MAC OSX clients running on Windows 2003 Enterprise Servers, Exchange 2003, SQL 2005, SMS 2003 and IIS 6.0.

Ÿ         Supervised administrators on the use of Symantec Exec 12.5, backup, DFS, servers clustering and DR.

Ÿ         Designed, built, installed, configured, deployed, maintained and administered enterprise network infrastructure.

Ÿ         Managed administrators for the support of software migration, Servers upgrades, patch management, testing, configuration, implementation, optimization, monitoring, troubleshooting, and maintenance.

Ÿ         Managed Cisco 3750 Catalyst Switches and 2006 ISA Firewall/VPN/NAT/IDS support.

Ÿ         Voice, Video and Data and VoIP telecommunication & messaging services installation & configuration.

·   Network Security:

Ÿ         Managed and administered Cisco IDS/Prevention, firewall rules, patch management, incident response, forensic investigation, vulnerability scanning, risk assessment, threat analysis, incident and event monitoring and systems audit.

Ÿ         Project Management:

Ÿ         Provided strategic planning, life-cycle development, benefits analysis, task scheduling, scope of work development, constraints identification, quality assurance, productivity improvement, training, performance evaluation and emerging technology research.

Senior Systems/Network Engineer for U.S. NAVSEA, Washington, DC       September 1999 to April 2003

BAE SYSTEMS, Washington, DC

Designed, developed, stood up, installed, configured, implemented, deployed, maintained, managed and administered Windows infrastructure and platform, and Cisco network switches and routers in Tier I, II, and III environments that provided support to 675 end- users in three sites. Provided and Systems Audit, Certification and Accreditation.

·   Major Achievements:

Ÿ         Successfully designed developed, stood up, installed, configured, implemented, deployed, maintained, managed and administered the migration of Windows NT 4.0 to AD 2000 Servers, NT 4.0 to 2000 Pro, Exchange 5.0 to 2000, SMS 1.0 to 2.0, and Sybase to SQL 7.0.

·   LAN/WAN Administration:

Ÿ         Designed, developed, installed, configured, implemented, deployed, maintained, managed and administered Windows 2000 Pro, Win NT 4.0 and Win 95/98 clients running on Windows 2000 Servers, Exchange 2000, IIS 5.0, SMS 2.0 and SQL 7.0, Active Directory Domain Services and Group Policies configuration.

Ÿ         Administered and supervised the performance of backup using VERITAS Exec 9.1.

Ÿ         Designed, developed, installed, configured, implemented, deployed, maintained, managed and administered Cisco network infrastructure.

Ÿ         Provided technical support for software migration, patch management, testing, implementation, configuration, optimization, monitoring, troubleshooting and maintenance of systems.

Ÿ         Configured and administered Cisco 4000 Routers, 3000 Catalyst Switches and PIX 500 Firewall.

·   Network Security:

Ÿ         Administered and managed Cisco IDS/Prevention, firewall rules, patch management, incident response, forensic investigation, vulnerability scanning, risk assessment, threat analysis, incident and event monitoring, and systems audit.

Ÿ         Project Management:

Ÿ         Provided strategic planning, project life-cycle development, ISO 9000 processes and procedures fulfillment, agency compliance, quality assurance, performance evaluation, patch management and DR.

Systems/Network Engineer           January 1995 to August 1999

MCI TELECOMMUNICATIONS CORPORATION, Arlington, VA

Administered and managed all aspects of information technology. Trained IT technicians on the installation and maintenance of network infrastructure. Installed and supported monitoring tools, virus software, scanning solutions, voice, data, telecommunications, and messaging services. Restructured network infrastructure.

·   Major Achievements:

Ÿ         Increased work efficiency by 35% in Arlington International Center.

Ÿ         Earned the President Club Power Award.

Ÿ         Was 200% achiever for 1^st and 2^nd quarters of 1995.

Ÿ         Won the 1Q94 Spotlight Ovation Award for high achievements for 1^st Quarter of 1994.

Ÿ         Received the Summer Gold Medalist Top Manager Performer Award for 1994.

·   Administration:

Ÿ         Trained end users on the use of MCI Telelink, STATS, DEC, TASQ, OCIS, DG, TeleTalk, SystemOne and PowerDial.

Ÿ         Conducted focus group meetings and provided needs assessment and conflicts resolution.

Ÿ         Worked as a liaison between internal operations and external partners and vendors contacts.

EDUCATION

The Johns Hopkins University, Baltimore, MD, Master of Science in Information Technology, 1994, GPA 3.75.

PROFESSIONAL CERTIFICATIONS AND TRAINING

AWS Solutions Architect – Associate (IN PROGRESS.)

AWS DevOps Engineer – Associate (IN PROGRESS.)

MCITP: Microsoft Windows 2008 Official Certification Achievement.

MCSE Microsoft Windows 2003 Official Certification Achievement.

MCSE: Microsoft Windows 2000 Official Certification, Early Achiever.

MCSE: Microsoft Windows NT 4.0 + Internet Official Certification Achievement.

CCNA: Cisco Certified Network Associate Official Certification Achievement.

ICND: Cisco Interconnecting Network Devices Official Certification Achievement.

A+: CompTIA Hardware and Software Official Certification Achievement.

IDS and Systems Audit: Global Knowledge.

TCP/IP, VPN and Network Security: Global Knowledge.

TECHNICAL SKILLS

Cloud Architecture: Amazon AWS East/West design: VPC, EC2 Instances, S3 Buckets, Glacier archival, Route 53 DNS, AMIs, Elastic Beanstalk, RDS, Redshift, DynamoDB, CodeCommit, CodeDeploy, Internet of Things, Cognito, OpsWorks, CloudWatch, CloudTrail, Kinesis, SNS, API Gateway, SES, SQS, SWF, WorkDocs, WorkMail, Security Groups, Internet Gateways, Subnetting, Route Tables, Elastic IPs, Net ACLs & VPN, AutoScaling and IAM. Amazon Workspaces. Microsoft Azure for content management.

Hardware: Network cabling installation, Cisco Routers and Catalyst Switches, Cisco ASA, Checkpoint and Fortigate Firewalls configuration, Windows Servers, Instances and Workstations setup, installation, configuration and maintenance, NLB, clustering, and Network Monitoring and optimization. Data Center support.

Software: Cloud instances design. Cisco IOS 12.4, Windows Servers 2012 R2, 2008 R2 and 2003, Microsoft System Center 2012 R2, VMware vSphere and vCenter, RedHat and Ubuntu Linux, Citrix XenDesktop and XenApp, MySQL, NoSQL, Shell, Batch, JavaScript, VBScript, Perl, PHP and Drupal 6 and 7.

Network Tools: CiscoWorks, Cisco IDS, Cisco NetScanner and Secure Policy Manager, HP OpenView, Insight Manager, Backup Exec, anti-virus, anti-spyware, EtherReal, Net Sniffer, MS Operation Manager, MS Migration Tools, MS Performance Monitor, and Network Monitor and Optimization.

Network Security Skills: 3PAO Collaboration, ATO Plan, Security Assessment Report (SAR), Systems and Network audit, Incident response, risk assessment, threat analysis, vulnerability assessment, vulnerability scanning, forensic investigation, firewall administration, IDS/IPS, endpoint, incident report, and systems audit. FISMA, DISA, FIPS, NIST, ITAR and NPR regulations, and NIST CIS Benchmarking, USGCB and STIGs security policies, MFA, PIV and PKI.

Network Security Tools: MBSA, NESSUS scanner, AVG, Ad-Aware, Ethereal, NetStumbler, MailWasher, SNORT, MetaSploit, WireShark, Aircrack, NMAP, John The Ripper, Acunetix, Maltego, IronWasp, HconSTF, Ettercap, Nikto, Kismet, Cain and Abel, BackTrack, Netcat, tcpdump, OpenSSH/PUTTY/SSH,  Hping, Sysinternals, w3af, OpenVAS, Scapy, Ping/telnet/dig/traceroute/whois/netstat, THC Hydra, Perl/PHP, Paros proxy, TrueCrypt, TripWire, Splunk, BurpSuite, Chef, Puppet, Shavlik, Symantec Protection Suite Enterprise, and WSUS.

Project Management Skills: Strategic planning, executive briefing, project summary, life-cycle development, cost estimating, budget development, scope of work, progress report, risk assessment, negotiation skills, task scheduling, new market analysis, training, WBS, MoSCoW, Pareto, PEST and SWOT analysis, and SMART goals.

Project Management Tools: Quick Base, GanttProject: Task hierarchy and dependencies, Gantt chart, Resource load chart, PERT chart, PDF and HTML reports, MS Visio, and MS Project and spreadsheet.