|
Oct. 11 -
Present
CSC
Chantilly, VA
Cloud Engineer /
Architect (DHS EOD Cleared)
§ Served as lead cloud engineer on
AT&T Government Cloud project that built first ever ServiceMesh Agility
based multi-tenant IaaS cloud offering. Installed and configured
Agility 9.2.x. Designed Agility distributed architecture to meet HA
requirements across the two AT&T datacenters. Designed RBAC for
approver/requestor/administrator roles and Multi-tenancy (tenant isolation
requirements). Created templates/stacks for OS offerings and Agility
enabled them. Created Agility blueprints for IaaS offerings.
Deployed vSphere 5.1, vCloud 5.1, vShield 5.1, vCops 5.8, VMware Usage
Meter on the vBlock 340’s at each datacenter. Collaborated with
network and storage engineers to implement configuration requirements.
§ Served as cloud engineer on effort
to integrate ServiceMesh Agility with VMware, OpenStack and Amazon AWS to
showcase Cloud Brokering and Hybrid Cloud using Agility. Created
stacks and blueprints for JBoss/MySQL. Wrote scripts to install and
customize JBoss/mySQL using bash and Chef. Also worked on integrating
AppWorks with Agility and leverage CHEF for application deployment.
Demo the solution to various prospective government clients.
§ Setup Amazon EC2 account including
two VPCs with a various networks. Created security groups, routing
tables, ssh keys. Leveraged S3 for storage. Worked on numerous
Amazon calculators to estimate cost for clients to host in Amazon EC2.
§ Supported Solution Architects with
various ROMs and BOEs for client proposal when Cloud, Amazon EC2 or
ServiceMesh Agility expertise was required.
§ Served as a technical lead for the
CSC-DTaaS 2.0 Cloud offering. Collaborated with BMC, ColumnIT, CSC PM
and development team on how CLM would meet the requirements for DTaaS
2.0. Using 1.x secure multi-tenancy architecture as a model
architected the BMC CLM pod/network container design for secure
multi-tenancy including multi-tiered networks. Chaired the DTaaS 2.0
infrastructure meeting. Created high level design for custom VM
Remote Console solution, which developers used to build solution. Led the
effort to update the system design document. Installed and configured
BMC Cloud LifeCycle Management (CLM) 2.1 in lab, and upgraded CLM to 3.0.
Configured VMware, NetApp and CLM to meeting design requirements.
§ Member of the DHS Cloud team
responsible for the design, build and operations of secure multi-tenant
DTaaS/IaaS/EaaS/WPaaS trusted cloud services utilizing a FlexPod
infrastructure (Cisco/NetApp/VMware) and BMC CLM orchestration for the
Department of Homeland Security and the components within.
§ Participated in planning and
design sessions for IaaS DR roadmap, including utilizing NetApp SnapMirror
and VMware Site Recovery manager to meet DR level requirements.
Researched VMware SRM and NetApp integration requirements.
§ Worked with BMC to implement BMC
Cloud Lifecycle Management in lab in preparation for DTaaS 2.0 and future
releases of XaaS based on BMC CLM. Supported WPaaS integration with
BMC SRM and AO.
§ Re-designed networking in vCloud
Director from single to multi-ple tier. Tested and documented
procedures to migrating existing 1.x Portal vApps to appropriate
tiers. Migrated production customer workloads to appropriate
tiers. Communicated with system owner on progress of migration
effort.
§ Installed/Configured/Secured
VMware vSphere ESXi 4.1 on Cisco UCS B-series blades. Upgraded UCS
Manager from 1.4 to 2.0. Utilized host firmware packages to upgrade
blades and components. Created/modified Service Profiles / VMNic
Templates in UCS manager. Installed vCloud Director 1.x and
configured Organizations, networking and catalog items. Configured NetApp
MultiTenant vFilers with NFS/CIFS/ISCSI protocol support. Worked
alongside senior network engineers to configure Cisco Nexus 1k/5k switches.
§ In conjunction with two other
engineers, implemented entire IaaS cloud at DHS DC1 datacenter in less than
two weeks in time for ST&E. This was heralded as a major
accomplishment considering the time and other constraints.
§ Reviewed CSC EaaS proposal and
provided system diagrams and feedback for re-proposal. In collaboration
with vendor partners, proposed a storage and compute architecture that
maintained security multi-tenancy, while sharing as many components as
possible and being elastic to scale up/out as customer demand required.
Assisted in designing the CSC EaaS Exchange 2010 two site topology
leveraging DAG for HA. Coordinated and helped implement EaaS in the
DHS Lab as a proof of concept.
§ Architected and implemented a secure
multi-tenant file transfer solution for DTaaS to allow developers to
transfer data from the OneNet to their sandboxed vApps.
§ Provided O&M support to DHS
DC1 Cloud Operations Team for DTaaS and IaaS clouds. Provided
technical guidance and support to a team who implemented DTaaS for GD IT.
2010 – Oct.
11
IT Consultant
Virginia
§ Studied the VMware Cloud
Architecture Toolkit (VCAT) 2.0. Setup an evaluation lab with vCloud
Director 1.5 connected to vSphere/ESXi 4.1 with SQL 2005 databases.
Created multiple provider and organizational vDCs, using reservation,
allocation and pay-as-you go allocation models. Created external,
organization and vApp networks. Used VLAN and port group backed
network pools. Deployed single and multi VM vApps. Setup LDAP
authentication.
§ Assessed needs, designed and
implemented new IT infrastructure for an Army contractor with 50 users
across 3 sites. Infrastructure included Cisco ASA’s for
router/firewall/DMZ and IPSEC VPN site to site tunnels, Symantec Backup
Exec 2010 R2 for disk and tape backup, Symantec EndPoint Protection 11 and
WSUS for antivirus, patching and removable media control, SharePoint
2007/SQL 2005 on Windows 2008 R2 64bit for document sharing and
collaboration, and various network services
(DNS/WINS/DHCP/File/Print). Implemented VMware vShpere 4 ESXi on 2
Dell R710 servers for virtualization of the Windows 2008 R2 64bit servers.
§ Implemented IBM Rational AppScan
system for USFS to perform web application security code scanning and
vulnerability assessment.
Nov. 08 – Oct.
11
Wyle Information Systems / NAVY
Arlington, VA Senior Systems Engineer (with Secret Clearance)
§ Implemented private clouds based
on vSphere 4.1 / ESXi in dev/test lab and production
environments. Used DISA STIG and VMware Security Hardening
guides to securely lock down the environment for DoD Security Certification
and Accreditation. Reconfigured ESXi hosts, NetApp NAS/SAN igroups to use
ALUA for multipath IO (MPIO) for non MSCS LUNS. Used ASIS and
thin-provisioning for de-duplication and space savings.
§ Fast tracked the migration of
1,000 user mailboxes from Exchange 2000 to Exchange 2007, in preparation
for the migration of email services to the Navy (NMCI) cloud. Assist
in the planning of upcoming migration unstructured user data from legacy
resources to the Navy (NMCI) cloud.
§ Assisted Web Team Lead with
preparing a near term SharePoint backup and recovery plan. Helped define
requirements, gathered and vetted input from engineers to ensure a workable
technical design. Next step is to implement, as well as work on the
long term BR plan and solution.
§ Played an instrumental role in the
deployment of the ONR Extranet based on SharePoint. Performed
performance analysis and tuned configuration / resources to improve the
response time of various components of the SharePoint application stack,
including AD, ISA, IIS and SQL servers.
§ Served as Interim Team Lead for a
3 month period. Major accomplishments include facilitating and
assisting in the implementation of SiteCore, ISA to CAC enable SharePoint
and Reporting Services and the team meeting the deadline for CAT 1
compliancy for the ONR C&A package.
§ Assessed needs and designed an
Exchange 2007 organization leveraging CAS, HUB and Continuous Cluster
Replication Mailbox roles. Total of 6 servers supporting 1000+ users
and 1TB+ of mailbox data. Implemented NetApp SnapDrive and
SnapManager for Exchange for BR.
§ Assisted in the assessment,
research and design of a DR solution to support the command BCP/COOP
requirements. Specifically researched VMware Site Recovery Manager
and NetApp to facilitate the replication and automated failover of entire
systems hosted on the VMware Datacenter.
§ Responsible for the maintenance of
a VMware Infrastructure 3.5.* data center running on 14 IBM LS41 blades and
connected to a NetApp FAS 6030 cluster. 3 clusters with approximately
115 VMs. Generated reports using PowerShell. Designed and implemented
DRS to support the computing requirements of various application workloads.
§ Storage administrator over NetApp
6030 cluster, 960 and 250 filers. Hosts are fiber attached via IBM
(Brocade) Total Storage fiber channel switch. Performed NDU from Data
OnTap 7.2 to 7.3.3. Used SnapMirror to replicate volumes between
NetApp controllers at various sites.
§ Served as project lead for Active
Directory upgrade from 2000 to 2003. CAC/PKI enabled the domain. Took
over and fast tracked long over due project from beginning to end in two
months time.
§ Set example for other engineers on
configuration and document management of IT resources. Created
various server configuration documentation and network security plans
(NSP).
§ Patched Windows and VMware ESX servers
so they are compliant with Netwarcom IAVAs.
Feb 07 – Nov
08 IT Operations,
Primus Telecommunications McLean,
VA Senior
Systems
Administrator
§
Served as technical lead for the implementation of a NetApp FAS
2050HA (cluster) in which 4 legacy storage platforms were migrated
to. Protocols used include ISCSI, NFS and CFS. Features used
include Snapshot for SQL and Exchange. Data migrated to FAS 2050HA
included VMWARE/VMFS (Virtual Machines) and SQL databases. Leveraged
ASIS to increase data storage utilization and Snap Mirror for vol/qtree
replication.
§
Sr. Administrator responsible for the operations and availability
of a 250 servers data center which supports back office business services, B2B
and B2C services related to long distance, toll free, VOIP (Lingo) and
related telecommunications services.
§
Provided leadership and guidance to three SAs (2 US, 1 India) and a
desktop support technician. Specifically worked with them to find
ways to increase their productivity on the job. Performed SOX audits
on SOX/Financial Systems. Worked with backup team to support backup
and test restore processes. Worked with DBAs to support databases and
performance tuning of backends.
§
Sr SA for all Windows based systems such as AD (Group Policy, DNS,
WINS), Exchange, WSUS, SQL, IIS and as well as Telco specific apps, NetApp
F840 and Dell/EMC CX300 SAN, Sun based LDAP directory servers. Implemented
and monitored storage/servers/services using Dell IT Assistant and Host
Monitor.
§
Served as technical lead for the relocation of 150 servers from a
remote data center to the primary data center. As part of a data
center relocation, consolidated 75 Windows servers to a 5 host VMWare 3
Infrastructure farm with VMotion/DRS. Utilized Dell/EMC SAN for
storage. Prior to this consolidation, simulated a 25 server real world
environment in a VMWare 3 single node environment to test a phased upgrade
plan from AD 2000 to 2003, and Exchange 5.5/2000 to 2003. Used VMWare
converter to P2V production systems.
§
Served as technical lead and project manager for a 3 node Citrix
4.5 CPS farm with over 20 current and legacy applications to support users
in remote location securely accessing corporate applications in low
bandwidth environments. Managed implementation by consultants,
support required by internal IT developers to integrate/modify in house
applications, and the user testing and acceptance processes.
Aug. 05 – Feb 07 Enterprise
Network Services, ITS, UVI St. Thomas,
VI Network
/ Infrastructure
Manager
§ Managed a network infrastructure
that supports 600 employees, 2400 students and 800 computers, within 50
buildings within 2 campuses / islands. Services provided include
internet access, wireless, file space, email, telephone, voicemail, video
conferencing, ERP and other applications served from over 40 servers of
various operating systems.
§ Actively participated in the
integration of ITS (IT and Library) and the transformation of ITS to a customer
service / user advocacy focused department. Participated in UVI
VISION 2012 strategic planning and ITS Strategic Plan development.
§ Supervise two full time staff and
two student workers. Responsible for hiring, time sheets, task
assignment, professional development, performance objectives and
evaluations, conflict resolution. Managed contracts, vendor negotiations,
assisted 1st and 2nd level tier technicians; Assisted
in and made s/w, h/w policy and purchase decisions, and developed security
policies.
§ Worked with consulting firm in
Disaster Recovery, Security, and Network assessments and
recommendations. With assistance of consultants, designed a new
University network which consists of a gigabit backbone via single mode
fiber, 4 node OSPF area, and dual homing of each building to
backbone. Utilized HP 2500-5300 series switches and HP ProCurve
manager Plus for network management.
§ Project manager for implementation
of Outlook / Exchange 2003 for email and groupware within organization per
strategic plan. Planned, organized and controlled migrations
and training for 600 users. Designed and implemented 2 FE / 2 BE
(replicated) Exchange 2003 system for 600 mailboxes, this included backup
to Tivoli Tape Backup system and F5 LTM load balancing, fail over and SSL
acceleration. Implemented separate Linux / Squirrelmail system for
3000 students.
§ Key member in project to upgrade
Banner MIS from version 6 (client/server) to version 7 (web based).
Upgraded AIX and Oracle to support new system. Implemented 2 web
application servers and F5 LTM for load balancing, failover and SSL
acceleration. Supported project manager, programmers and consultant
with various migration tasks and issues.
§ Infrastructure project manager for
3 story, 150 user executive and administration building whose IT
infrastructure consisted of Avaya S8500 PBX, HP layer 2/3 switches, HP
wireless, over 400 CAT6 terminations as well a multimode gigabit
backbones.
§ Increased Internet resiliency and
capacity from 1 to 9mb via 3 ISPs, Cisco 2821, BGP and traffic shaped via
Packet Shaper 6500. Implemented Cisco 7206vxr routers to double
inter-campus connectivity from 4 to 8 T1s via analog Harris microwave and
provided QOS to video conference traffic.
§ Managed upgrade of two campus
telephone systems from Lucent G25 to Avaya S8500 by PBX vendor.
Aug. 03 – Aug.
05
Network Operations, IT, UVI
St. Thomas, VI Systems/Network Administrator (and acting Manager Dec. 04 to
Aug. 05)
§
Administrator of the university network. Responsible for
assessing network needs, designing infrastructure changes and
implementation. Maintained a four site 16 T1 channel licensed Harris
Microwave. Instrumental in the implementation of the Blackboard
online course management system, network wide F-Secure Anti-Virus for 600
nodes, Mcafee anti-virus for 20 Wintel servers, and two thin-client labs in
the Libraries. Duties also include those from the previous Systems
Administrator position.
§
Completed upgrade of Windows NT domain to Window 2000 Active
Directory. Subsequently successfully upgraded domain to Windows 2003
Native Mode. Created Perl and Batch scripts to generate LDAP/AD
accounts from data retrieved from Oracle based ERP system.
§
Completed network upgrade to 100megabit HP L2 switches in over 50
buildings in two campuses. Implemented SNMP monitoring via MRTG and Big
Brother. Implemented VLANs for wireless subnets secured by open
sources captive portals using Radius/LDAP for authentication.
§
Designed/planned an Avaya VOIP, HP gigabit LAN and 802.11a/b/c WLAN
deployment in a new 3 story, 150 users, executive and administration
building.
Sept. 01 – Aug. 03 Center for Administrative
Computing, IT, UVI St. Thomas, VI Systems
Administrator
§ Administrator of a 3 DC mixed
2000/NT Domain w/ multiple member servers / workstations that span the
Universities two island campuses. This domain provides secure Banner
2000 (MIS) access, Financial Aid database access, and many advanced NOS functions
such as file/print sharing, Group Policy, DNS/WINS, Terminal Services, SUS
etc.
§ Performed upgrades, patching,
performance tuning, user and print queue maintenance, backup, recovery
testing, security hardening, log monitoring.
§ Administrator of 4 IBM RS/6000s
computers running AIX 4.3 & 5L (5.2) that run the Universities primary
MIS applications, which consist of SCT Banner and Nebraska Bookstore’s
Prism POS/ICS. Tivoli Storage Manager w/ a 7 tape IBM LTO Ultrium Tape
Autoloader is used for DR. Setup two identical p650s in production
and cold spare state with nightly application/data mirroring for disaster
recovery. Utilized SYSBACK for system cloning.
§ Administrator of Oracle 8i and 9i
RDBMS, Application Server 4.0.8 and 9i on AIX and Windows NT/2000
platforms.
§ Managed contracts, vendor
negotiations, student workers; assisted 1st and 2nd level tier helpdesk technicians.
June 97 – Sept. 01 Center for Administrative
Computing, IT, UVI St. Thomas, VI Information
Technology Specialist I,
III
§ Administrator of a 4 DC NT Domain
w/ multiple member servers / workstations that span the Universities two
island campuses. This domain provides secure Banner form access,
Financial Aid database access, and many advanced NOS functions.
§
Asst. Administrator of 3 IBM RS/6000 running AIX 4.3 computers that
run the Universities primary MIS applications, which consist of SCT Banner,
Nebraska Bookstore’s Prism POS/ICS, and IBM’s EDMS (Electronic Document
Management System).
§
Assisted DBA and primary Systems Administrator with the upgrade of
Banner 5 to version 6. Deployed Oracle forms runtime and startup
scripts to the client base through Windows domain. Maintained the
Banner for Web self-service Oracle based web system. Assisted in
programming of C, SQL and Korn Shell scripts/programs.
|