SUMMARY:

• Seasoned hands on Security Leader with 15+ years of industry experience in all facets of secure infrastructure development and technologies.
• I am trained in; Cloud, Network, Data and Web Application Security, SDLC, Pivotal Cloud Foundry, Kubernetes, Akamai, Docker, Windows, Active Directory, Linux, Solaris, AIX, P series, Z OS, Systems Security, Exchange Server, NetApp, Hitachi, EMC, Confidential, VMware ESX(i), NSX, Hyper - V, Xen, CloudStack, OpenStack and other Cloud Solutions.
• I have 10+ years of enterprise level Software and Infrastructure engineering, product development, architecture, and large scale datacenter experience.
• This vast array of consulting projects has been a profound synergistic influence on my technical career. In addition to my technical background, I am highly customer focused with over 15 years of highly visible customer facing projects.
• Having interfaced with every level of technical and executive management, I am extremely comfortable discussing high level strategy and implementations, in laymen’s terms when necessary.
• The ability to show the "value add" of products at a technical, financial and holistic level allows me influence direction.
• Liaison between developers and secured environments, allowing continued effective work process to occur in a secure environment.
• Created Design, Best Practice documents readable by technical and non-technical staff.
• Provided Technical Integration, Migration, Capacity and Performance Planning Strategy for large scale projects.
• Architected and Implementing Windows 2003 Active Directory Migration Prototype with both AD integrated DDNS and Centralized Unix DNS for 2000+ user site.
• Built and Separated Complex Enterprise Networks
• Managed and Completed Windows 2000 and 2003 Migrations
• Facilitated Data Center R&D, Layout, Design and Implementation from the ground up.
• Managed a Supported Nortel Phone Systems & Lucent Hybrid Phone Systems
• Security management, implementation and design.
• Implemented Secure Mail Infrastructure with Exchange Server 2003 and ISA Server 2004.

WORK EXPERIENCE:

Confidential

Enterprise Security Architect

Responsibilities:

• Cloud (Google Cloud Platform, Google Cloud Security. Google Cloud Router, GCS Services)
• Pivotal Cloud Foundry (PAAS, PAS, GoRouter, Spring Cloud Security, Concourse, Jenkins)
• Secure Pattern Development - Enterprise Security Patterns
• Secure Pipeline Development - Concourses, Jira, Jenkins, Archer.
• Data Protection Reviews (Vendor Security Assessments, GDPR, PII, PCI, SOX, Compliance)

Confidential

MTS TechOps Security Architect, San Francisco, CA

Responsibilities:

• Site Reliability, Architectural Governance, Risk and Compliance Alignment of all new Feature Development Projects.
• Site Security, Application Security, Site reliability, Site, Network, and Infrastructure Architecture.
• Product Technical Intake: LOE, Sizing, Design Review, Artifact Validation, Scoping.
• Project Release Security Validation and hand off to SRE team.
• Security Council Member and Liaison.
• InfoSec Team Champion and Liaison.
• GDPR Team Champion.
• Data Discovery Champion.
• Application Security.
• Vendor and Data Security Reviews
• Mobile Application Architecture Changes.
• Marketing Ops Liaison
• Aquia CMS deployment.
• AquaSec Docker Container Scanner Evaluation, Deployment and Management, CI/CD integration.
• Akamai CDN / CMS Customization and Configuration.
• Synopsis Seeker IAST OWASP Vulnerability Validation Suite.
• Bulk Extractor Deployment
• Kali Linux for Red Teaming
• OWASP ASVS, ZAP.
• Docker, Linux, F5 LTM, PCF, Kubernetes, Git.
• Windows Server 2012
• WebPage Test
• JSON,XML, Java, NodeJS
• Artifactory JROG / Xray
• Kafka, Hadoop, EDW, ETL, Docker, Splunk, F5, Distill, Akamai, Zoom CMS, Seeker, Bulk Extractor, VMware, Oracle, puppet, Jenkins, Concourse, Sonar. NodeJS, Java, Spring, Apache, Tomcat, NGINX, AWS. Salesforce. HashiCorpEvaluations: Black Duck, White Source, Sonar IQ, Quay Clair, Docker Hub, TwistLock, Web Page Test, Sauce Labs, Rain Forest QA Crowd Sourcing, Vault.

Confidential

Cloud Architect, Mountain View, CA

Responsibilities:

• Single handedly built from Scratch a Secured Public Facing Private Cloud to host a WebService on UCS, Nexus, PAN, Juniper, VMware, F5 LTM, and Quali CloudShell Stack. (demolab.purestorage.com)
• Designed, Deployed, and Maintained the PureTech DemoLab Cloud “DemoLab.purestorage.com” a web service for demoing high performance solutions on Confidential . Including. Also used for Training Delivery, ISV Lab and Customer Virtual POC’s.
• Architected, and maintained CSG LAB, Customer Solutions Group Solutions Lab.
• Architected Automation Workflow for Systems and Applications Deployment of on demand infrastructure.
• Managed developer code review, delivery, and contributed to rollout to production cloud.
• Designed enhancements and new feature development for cloud automation portal and training modules.
• Created Bulk UPN based User Creation Script in PowerShell.
• Linux Systems Deployment Administration
• Significant Deployment Automation WorkFlow Design.
• Deployed User Self Service Registration and Password Reset Tool.
• Designed and Deployed Mulit Vendor N-Tier Architecture
• Designed Deployed and Managed:
• Highly Available Active Directory supporting 1000’s of users
• Resilient High Performance VMware Hypervisor Clusters, FC and ISCSI
• Palo Alto FW;s for Micro Segmentation and VPN Clients Access of 1000’s of concurrent users.
• F5 LTM / GTM Load Balancer Clusters for Layer 7, Layer 3 LB and URL/ URI Parsing.
• Split Horizon DNS Design, Internal and External DNS with MS DNS and 3Rd Party. (AWS Route53 in process. )
• Internal and External Monitoring Solution with Nagios, AccelOps and multiple Third-party Solutions for Low Cost SMS and Email Based Alerting.
• Automated Workflow and Provisioning Service
• Container Based Isolated Application Environments
• RDP / SSH to HTML Proxy
• Critical Services, DNS, DHCP, PXE.
• Arista, Cisco, Juniper, PAN, Networking Equipment and Config.
• Automated Backups for Network Switches.

Technologies Used: VMware; vSphere 5.5, vCenter 6.0, vCSA 5.5&6.0, Cisco UCS, Cisco Nexus 5K, Cisco ACE, Palo Alto Networks FW, Confidential, Windows 2K12, Arista, Cisco MDS. Quali Systems, ELK, Docker.

Confidential

Cloud and Storage Services SDDC Architect, San Francisco, CA

Responsibilities:

• SDDC - Software Defined Datacenter POC and Vendor Selection of Next Gen SDN Vendors micro-segmentation Solutions: NSX, Midokura, Open V-switch, ACI, etc.
• SDS Software Defined Storage POC and Vendor Selection of Next Gen All Flash Storage Technology.
• Delivered VMware vDS Design for vSwitch Migration and ISCSI Storage Adoption.
• Delivered SDDC Design, Deployment and Strategic Principles
• Delivered SDN Guiding Principles
• Delivered Storage Domain Guiding Principles
• Solutions Design for Holistic Storage Solutions and DC Remediation.
• Evangelized new technology trends and directions with data from Gartner Network.
• Delivered North / South Bound API Requirements, Principles and vendor evaluation Checklist
• Developed enterprise architectures and end-to-end business solutions in the areas of Monitoring, Network, Telecom, Security, Storage, Data Center, Virtual and Physical Computing Resources, Enterprise Identity Systems, Mobile & Desktop Endpoint Computing, Messaging & Collaboration and Windows / *nix platforms. unified and complimented IT core services in order to provide engineering end users with a high level of service and value; simplicity, scalability and cost effectiveness.
• Developed and implement the strategy for aligning data center services and processes with business goals, regulatory requirements, technology roadmaps, and industry best practices for all central IT controlled environments.
• Managed business relationships with key stakeholders (product, business and IT), understanding their business problems, business risk appetite and guide them on IT strategy and direction.
• Performed infrastructure security system research, planning and design.
• Develop engineered solutions including design(s), specifications, documents, diagrams and configurations applicable to data center services.
• Provide expertise, input and troubleshooting support as the most senior level of technical escalation for IT infrastructure engineering.
• Reverse Engineered Login VSI Install Scripts to enable Manual Install, (GPO, User and Scurity Groups in SOX Controlled PROD AD Infrastructure)
• Virtualization: Guided the Engineering teams in developing virtualization services including, but not limited to, VSI,VDI, Private Cloud capabilities and virtualized data management services.
• Standards: Established, fully document and evangelize domain standards, best practices and architecture patterns.
• Reference Architecture: Developed service reference architectures and artifacts which ensure and enforce architectural consistency across solutions implementation.
• Leadership: Evangelized services throughout the business. Revised the data center services strategy based on emerging trends.

Confidential

Principle Infrastructure Architect

Responsibilities:

• Designed, Implemented and Managed Secure webOS Cloud Infrastructure and Services, IAAS, PAAS, SAAS.
• Built new Features and ensured stability, created high quality production ready infrastructure and services to be used by millions of users of cloud platform, resolved complex issues, drove innovation, and mentored others.
• Designed, Coded (Ruby, TMOS CLI) Deployed F5 LTM Load Balancer Automation for Micro Services Deployment and Operation.
• Leveraged Existing AMQ Service and Puppet Infrastructure to Automation Provisioning.
• Conducted Design Reviews for net services, sequence diagrams for new features and functions of cloud platform and applications.
• Created Cabinet Design for at Scale Datacenter Build Out, 10 - 100 Racks per DC for 10 DC Deployment.
• Designed Rack Design to Accommodate Services such as Hadoop, Mult-iMaster DB Replication, Mobile Clients over XMPP, and Enterprise accounts
• Coordinated with HP Manufacturing to build and deploy racks to Global
• Implemented SAML Based Authentication with Layer 7.
• Acted as Tier 3 Support for DevOps Team.
• POD Architecture redesign.
• Services Architecture Evaluations.
• Designed 2nd generation Private Cloud Infrastructure to server 35 million SAAS customers via mobile and Web Services for PALM / WebOs.
• Designed Modular ”Plug and Play” Cabinet / Rack Design for 10 Datacenters globally for Rapid Drop Ship Deployment.
• Design and implementation of webOS Cloud Infrastructure and Services (IaaS, PaaS, and SaaS)
• Conducted Design Review of Sequence Diagrams New Services and Pod Deployments.
• Developed high-quality, production ready code that can be used by millions of users of our cloud platform.
• Resolved complex technical issues and drive innovation through our products.
• Lead by example and build consensus across technology and products.
• Architected highly trafficked and highly scalable web applications.
• Designed Systems, Puppet, Networking, Virtualization at Cloud Scale.
• Designed complex ecommerce applications
• Built highly scalable SOA systems.
• DevOps Tier 3 Support Rotation.

Confidential

Solutions Architect

Responsibilities:

• Evaluated, and designed solutions, for application deployments, high speed trading, legacy applications, DC migrations, security remediation, storage solutions and networking optimizations.

Confidential

VMware Solutions Architect

Responsibilities:

• Developed and delivered test plans, lab reports, technical presentations, analyst briefings, and white papers to address various areas of HDS storage solutions. Planed, designed, implemented and executed complex enterprise level storage solutions from configuration and testing to support the developed solution.
• Responsible for ongoing recommendations and best practices for storage solutions around business continuity, high availability, backup, recovery and archiving.
• Responsible for ongoing management of configuration and layout of platform and storage infrastructure.
• Delivered proof - of-concept configurations and analysis demonstrated and presented to customers and Hitachi Data Systems internal personnel.
• Supported, assisted, and consulted with all levels of HDS, including Account Executives, Product Management, Product Marketing, Product Support, VP, etc, through delivery of technical presentations and reports.
• Technical Skills Applied:
• Enterprise virtualization solutions using VMware vSphere and Deep understanding of ESX hypervisor.
• Focus in Data Center, Disaster Recovery, Back Up, High Availability, Storage, Server Administration and Management.
• Hands-on experience designing, installing, administering, and maintaining end-to-end solutions based on VMware
• Hands on experience with HDS storage at an expert level with storage in block and file services.
• Worked with RAID, disk-subsystem, file system, snapshot, replication, and DeDup.
• Worked with networking and storage protocols: NFS, CIFS, TCP/IP, Fibre Channel, Storage Area Network.
• Managed Windows and Linux OS.
• Automation with Python, and UNIX shell scripting.
• Performance tuning and analysis.
• Communication with the senior technical and executive levels including consultants, SE, DSM, PM, VP, etc.
• Worked on solving extremely complex problems where analysis of situations or conditions required an evaluation of intangible variance factors with solutions in the $100K to $20M spectrum.
• Exercised independent judgment in developing methods, techniques, and evaluation criterion for obtaining results and formatting these results in such a way as to benefit the corporation s customers, partners, SALES, REVENUE, and overall PROFIT.
• Demonstrated the Ability to justify and quantify findings and analysis where decisions would impact customers, partners, SALES, REVENUE, and PROFIT, as well as, HDS reputation.

Confidential

IT Infrastructure Solutions Consultant

Responsibilities:

Responsibilities:

• Acted as a highly experienced, senior level, Infrastructure Design Specialist for Solution Design Team.
• Utilized enterprise class technologies such as IBM pSeries/AIX, HP BL/DL, IBM xSeries, VMware, Linux, Windows Server, MSCS, MS SQL Server, Oracle RAC and EMC NAS/SAN Storage to architect Infrastructure Solutions in support of mission critical, highly available systems delivering critical IT services to care providers and patients.
• Designed solutions for the entire application technology stack including hardware and software platforms for server, storage, clustering, data replication, disaster recovery, healthcare applications, database, and messaging platforms.
• Lead infrastructure optimization initiatives, and contributed to the development of systems/platforms/applications and security roadmaps and standards.
• I demonstrated considerable expertise with both breadth and depth in the areas of hardware and software infrastructure design and engineering.
• Demonstrated Senior level hands on expertise with pSeries, AIX, HP DL/BL hardware, xSeries, Microsoft Server OS, Microsoft Cluster Server, EMC Storage, and Microsoft SQL Server. VMWare ESX Server/Hypervisor. (ESX 3.5 and 4.0), Virtual Center. Site Recovery, and recovery strategies in a VMware environment, Redhat Linux, HACMP, VIO, SRDF System-P, Z192, Z9,Z10, ZoS, Data center migration and server consolidation. Evaluating, analyzing, planning, and executing P2V Migrations. Software Development, Systems Integration, SOA, Web Services, and Middleware, Unix, TOGAF, articulate solution alternatives, develop sound recommendations for end-to-end solutions. network technologies - switch, router, firewall, load-balancers, etc.
• Handling multiple concurrent project demands, Leading project teams, Designing and Documenting Logical System Design/Physical System Design

Confidential

Lead IT Infrastructure Architect - IT Lead

Responsibilities:

• Designed a Bleeding Edge SOA Solution for: On Premises, Public Cloud, Private Cloud and Hybrid Cloud, leveraging these technologies. (PAAS, IAAS, SAAS, Azure, and Rack Space Hosted Infrastructure) EMC, Cisco, VMware, TFS Lab Manager, TFS 2010, Hyper-V, Win7, ASP.NET, Forefront Identity Management, FIM, Forefront Security Manager, Forefront threat Management, Active Directory, SAML, Claims Based Security, Federated Security, MS SQL Server 2008 R2, SSIS, SSRS, SSAS, Windows 2008 R2, SharePoint, NLB, F5, DNS, SSL, PKI, SCVMM, SCOM, SCCM.
• Designed and Deployed Web Services Scale Secured Infrastructure for N-Tier Application Stack and to Support Hybrid Cloud Capability. Utilizing Azure Service Bus, VMware,
• Conduct Code Reviews, WorkFlow Analysis, Strategy Sessions, and Business Analysis for Executive Staff.
• Lead 5 teams of Engineers as Lead Infrastructure Architect, focusing on Customer Acceptance and Customer Requirements Champion.
• Built and Maintained, Isolated Private Cloud Infrastructure for DevOps Team and Internal Dev Build,Test and QA Teams, aligning with core Software Design Methods, TDD, CI and CD Pattern and Practices.
• The Project is Under NDA: Project is a Global Building Management System for Governments, Health Care, K-12 Education, Colleges, Manufacturing and Corporations of all Sizes, there’s more than meets the eye.