A senior Project Manager with over 19 years experience as a system engineer. Wrote twelve sealed patents for cyber-security, designed and built a new innovative method for Automated Two Factor Authentication 2^nd Channel via smart phone. I presented this innovative security solutions in two technology competitions and won in both competitions. In addition, I designed, built and successfully implemented enterprise level applications across thousands of servers simultaneously in more than 15 different time zones.

 

 

EXPERIENCE                                                            

 

Oct 2014 – Current

Bank of America, TI Database Engineering | Via Rose International, Boca Raton, FL.

Project Manager

 

TI Database Engineering is the bank’s authority for designing and building database software to be used across the enterprise. As a PM in the Engineering group I was responsible on receiving auditing and security requirements for the database team, translate the requirements into designed solution, get the designed solution approved by the LOB DBAs managers and get the auditing requirements approved by the auditors by providing evidence to the auditing team.

 

§ Reconciliation data control governance by designing the bank strategic method for automating SQL and Oracle DB accounts provisioning (Role & Permissions) across the enterprise while integrating with ARM. Presented the new automated strategic provisioning platform at the bank’s DSF (Data Security Form) and got it approved by the entire DSF audience and by the bank’s auditors.

 

§ Designed, built and successfully executed an automated process to lock SQL database accounts in cases of: dormancy, leave of absence or HR termination. In cases of dormant users and HR terminated the platform will automatically delete SQL accounts 30 days after locking the account. The process run across 9,000+ SQL servers in 15 different time zones and locked tens of thousands of accounts without having even one reported account that have been locked by mistake.  Executing the process required CRQs (Change Request) for the Production and Contingency systems. Successfully transitioned the automated process to BAU. The bank’s auditors reviewed the evidence I provided and the auditors approved the automated process as compliant with the bank’s auditing and security regulations.

 

 

 

Feb 2011 – Oct 2014

Bank of America, GMRT/Equity - Genesis 10, Manhattan, NY.

Design Team Lead

 

The DTL is responsible for the entire technical project, from gathering the project requirements to delivery of a working infrastructure. The design would include Clusters as well as standalone and their entire environment Dev, UAT, Prod and DR.

 

§    Working together with the business group and Capacity Planning in identifying the current servers CPU/Memory performance requirements and provisioning new servers to replace the old servers while exponentially increasing performance and reducing the server’s foot print.

§    Design Sunrise Stencils for servers being built. The Stencils would include all required installation executable to install the operating system, patches, Ops, monitoring, backup and the client’s software. Confirmation via the server’s log that the servers are successfully completed or working together with the operations/development teams in fixing any bugs. The Stencil is designed to work in three different environments: ASIA, EMEA and AMRS to automatically identify the environment it is working on and install the appropriate software in each environment. 

§    Migrating servers from an old OU structure to new user’s restricted OU by identifying permissions requirements in the new OU such as new elevated domain users, PowerBroker accounts and service accounts.

§    Storage multi-protocol requirements Cifs/NFS as well as NAS/SAN and any backup requirement.

§    Designing DLP – Data Loss Prevention and wide-ip, 3DNS and BigIP in required structure.

§    Preparing projects presentation to BofA CTO for high cost projects.

 

 

 

Aug 2007 – Feb 2011

SPRIV LLC, Manhattan, NY

Co-Founder, Product Manager

 

SPRIV is an online security company which developed worldwide unique technology that transforms the online client’s mobile phone into automatic hardware verification token.

 

§    Wrote 12 sealed patents and additional 8 patents are pending. Managed legal attorneys in three continents with different patent laws and procedures like USPTO, PCT, PPH and VGO.

§    Designed Spriv’s Linux (Red Hat V6) Production / POC application for securing internet transactions to online banks, ecommerce etc’. Major focus on: high availability, security, Load Balancing, backup, and redundancy. In addition, building proprietary software monitoring tools for heartbeat and sanity testing. 

§    Supervised the integration with all UK and US carriers while insuring user’s privacy and carriers guidelines.

§    Initiated and signed agreements with leading security companies and communication companies.

§    Presenting Spriv in 2010 NAVTEQ’s North America Global LBS Challenge(R) Developer Competition in which Spriv awarded Second Runner Up. The award was announced at the Where 2.0 conference held in downtown San Jose, California. Spriv was one of 12 finalists selected from a pool of over 1,100 mobile applications.

§    Troubleshoot IP Network Issues like throughput performance, security, routing and firewall.

§    Securing Spriv’s platform, Implementing Firewall, Antivirus, IDS – Intrusion detection and IPS – Intrusion Prevention and designing in-house dynamic DDOS protection.

§    Designing Spriv’s automated two factor authentication platforms for iPhone, Android and Windows Phone as well as API/SDK for servers. The designed platform supports automated 2FA as well as TOTP, SMS and Allow/Deny authentications.

§    Utilizing location and Wi-Fi data (SSID, BSSID) in order to substantially improve location data received from Google and Skyhook.

§    Designed Spriv’s Sanity platform in order to automate checkups to OS, Hardware and Application functionality.

 

 

 

May 2006 – Aug 2007

VicomStaffing – OSI Pharmaceuticals, Melville, NY

Storage and servers engineer

 

OSI develops and commercializes high-quality and novel pharmaceutical products designed to extend life and/or improve the quality of life for patients with cancer, eye diseases and diabetes.

Main responsibilities included installing and maintaining the company servers, data storage and backup devices.

§    Improved performance of the company’s Linux (Red Hat V5) Grid for medical research [18 Servers] in 600% using sniffers, HP OpenView, traffic analyzers and GigE Switch with VLAN for enhanced throughput

§    Maintained two node cluster HP blade Exchange 2003. Installed and configured “Quest” – Exchange Emulation for mailboxes restore defrag and migration of the old Exchange information store.

§    Installed and configured a new backup environment for ~400 Servers in mix environment of Linux, Solaris, Oracle, SQL and Exchange using Legato Networker V7.3 while improving the throughput performance in 36% in comparison to the previous backup system.

§    Tailored new hardware maintenance insurance contract for the company data center and saving 43% in comparison to the previous contract.

§    Troubleshoot IP based Network Issues like throughput performance, LDAP, AD, security, routing and firewall.

§    Provided Racking, Stacking, Cabling and Mounting for 400 HP Blade servers and Dell Servers.

 

 

October 2001 – May 2006

EXANET, INC., New York, NY

System Engineer

 

Exanet develops network attached storage (NAS) solutions based on server clustering targeted at Fortune 2000 corporations.  Main responsibilities included managing multiple projects for the company’s east coast client-base, including AGT, Newsweek, Time Inc, Mercury and Kodak, during and following the product’s beta phase, leading to secure over $500,000 in new sales.. Supporting R&D efforts and defining new product features and installing Exanet’s products at client site and acting as the main client liaison.  Worked under set deadlines, providing quick and efficient solutions to unforeseen product flaws and installation problems. 

 

§    Beta phase project manager.  Provided field feedback and design new features for products. 

§    Solved client Network performance bottle necks using protocol performance tools and deep understanding of RAID I/O performance. tuning of the Cluster hardware components CPU, RAM and Network cards

§    Integrated NAS in different network environment – Windows AD, UNIX / Linux / Solaris and MAC all integrated via IP network.

§    Spearheaded test installation of Exanet’s first client, securing over $500,000 in sales orders. 

§    Troubleshot Network Issues like throughput performance, security, routing and firewall.

§    Wrote project features requirements and developed installation guides and application notes.

§    Served as main client point of contact.  Established strong client relations and assisted in securing additional sales orders while in beta phase.  Constantly met project deadlines. 

§    System Administrator level 3 supports for the company’s Network NAS at the client site.

§    Enabled product features including: synchronization over IP; secure remote access and support; protocol design for AFP, NFS and CIFS; heartbeat monitoring and support; Disaster Recovery; offsite Data Synchronization.

§    Trained sales and application engineers at Kodak on the product’s clustering functionalities.

§    Provided Racking, Stacking, Cabling and Mounting for NAS at the client site.

§    Represented Exanet at industry tradeshows and conferences. 

§    Managed over $600,000 in client projects.

§    Designed and implemented:

o   NAS backup solution for Linux cluster.

o   NAS sites monitoring tool.

 

October 2000 – October 2001

Send2Post.com, New York, NY

Senior IT Manager

 

Send2Post developed software-based applications for personalized mass mailing solutions.  Main responsibilities included installing client-side servers and applications and monitoring and upgrading the company’s enterprise level network. 

 

§    Installed, configured and administered enterprise-wide network in an NT and Win 2000 IP based network environment.  Optimized network performance via sniffers, HP OpenView, traffic analyzers and GigE Switch with VLAN for enhanced throuput. 

§    Installed and supervised the company’s web servers, Linux load balancing and Exchange mail servers, utilizing Linux Sendmail for relay server.

§    Protected the Exchange server using Antivirus (Norton) / Antispam / CBL and RBL.  

§    Troubleshot Network Issues like throughput performance, security and firewall.

§    Designed a scalable client website and download center. 

§    Upgraded company network from NT4 to Win 2000. 

§    Managed website security for company and client websites utilizing firewalls, anti backdoors, MS security tools and logs.