Summary

An Innovative solutions-driven leader of technology operations with over 12 years of extensive experience. Expertise in IT Security, IT management, implementing and supporting, products such as Cisco, VMware, Citrix, Linux, Windows, Exchange, and Blackberry Enterprise servers. Utilize a resourceful, proactive approach with the ability to analyze options and lead projects through to completion. Outstanding interpersonal communication skills, which ensure clients/vendors, receive excellent customer service.

Technical Skills:

• Security: Designed/Managed IT polices, including access management, IDS/IPS infrastructure, CheckPoint SmartCenter, CheckPoint firewalls, Cisco Secure Access Control System for user identification, performed SAS70, Type II reviews and SOX/HIPAA, Alert Logic Threat Manager with ActiveWatch services, and Penetration testing.
• Microsoft: Windows Server 2000, 2003, 2008, Windows NT 4.0, and Exchange 2003-2010, with 10 years configuring and supporting Active Directory, Exchange, SQL, Clusters, DNS, DHCP, WINS and VPN. Manage over 2000 Windows servers.
• Cisco: Routers 2800, 1600 Series, 3600 Series, 7600 Series , Cisco Switches 1900, 2900, 3500 Series with 6 years configuring and supporting routers and switches with VLAN, VPN, NAT and BGP.
• Linux/Cloud: AWS and Rackspace Hosing management, Red Hat, CentOS servers with 6 years configuring and supporting Apache1.3-2.x, MySQL, SVN, Tomcat 5/6, IP Tables, and Asterisk VoIP/OpenSIP providing cloud base phone systems. Implemented and Support SAAS Software as a service in multifaceted environment for Hedge Funds Corporations.
• VMware: ESXi and ESX Ver. 2, 3, 4, and 5, with 3 years configuring and supporting VMware ESXi Server more than 100 ESXi servers and around 6000 VM machines.
• Citrix: Implementation supported 25 Citrix XenApp 6 and Xen Desktop 5 and 6, consisting of 1000 published VMs.
• SAN/Storage: EMC VNX, Dell Equallogic, HP StorageWorks P2000, P4300, P4500 and HP StorageWorks SAN director B-series, with 6 years configuring and supporting StorageWorks.

EMPLOYMENT

Confidential

• Build out production Data Center, migrate/replicated 95 virtual servers from Rackspace, saving the corporation 25,734 per month, a five year saving of 1,544,040.
• Lead for information security strategy and penetration risk management for the infrastructure, I have Implement/Maintain physical and virtual infrastructure including monitoring for events and outages, installing security updates and patches and executing requested maintenance.
• Fascet is a financial MSP that serves primarily hedge funds.
• Manage network access, data loss prevention, encryption, access control, web proxies, domain names, corporate mobility, remote access, virus/device control, multi-factor authentication, password management and messaging security

Day to Day Responsibility

• Networking Routing and Protocols: WAN, LAN, MPLS, BGP, VRF, OSPF, EIGRP, VPN/Dynamic Multipoint VPN , NAT, PAT, VRRP, IP-SEC, STP, VLANS, DHCP, HSRP, and NSSA.
• Hardware support: Cisco ASA 5525X, Cisco Cisco SG 300, Dell EqualLogic PS6210X, and Elfiq LB2500E Load Balancers.
• Windows Linux Systems Administration, Automation, Monitoring
• Manage and maintain our Private Cloud VMware vSphere 5.5, vCenter 5.5, CITRIX, SRM, DAS/SAN and VDP with I have replaced with Veeam.
• Build out DR data plan with multiple replication points, and secure communication between Prod and DR.
• Implementation of Websense, Symantec Endpoint, Syslog's using Loggly, configure managed and support 82 site to site VPNs, between 82 vendors ensure that there security policies are in compliance with our procedures.
• Penetration and risk assessment test, including assessing equipment, software, eDiscovery, Malware Analysis, Data Forensics, Risk Mitigation, Threat management, Incident Management, and processes of our entire IT system.
• Designed/Management IT polices, including access management, IDS/IPS, Alert Logic Threat Manager with ActiveWatch services, Cisco Secure Access Control System for user Identification, and Sox compliance, risk management audits and Sox compliance, risk management audits.
• Network access prevention, encryption, access control, web proxies, DNS, mobility, remote access, Endpoint protection, password policy and management.
• Create security policies base on SOX, PCI and ISO, implement and support RSA Secure ID for multi-factor authentication, also implemented cloudFlare to prevent DOS attack at ISP level,
• Protocols: TCP, UDP, P2P, SMTP/POP/IMAP, HTTP/S, proxies, SNMP .

Confidential

• tmg-emedia is a leading provider of Technology and Strategy Consulting services to major corporations, institutions, and not-for-profit organizations.
• Responsibility: Acting CTO for Vance Publishing Corporation, Manage and mentor a team of 1 IT Director, 2 Network Administrators, and 2 Software Engineers, I report directly to President and CFO of Vance Publishing Corporation.
• Create and manage a budget of 900K
• Support 3 offices, with a total of 213 end-users
• Create and enforce IT Policies and Security policy
• Preformed Infrastructure change and updates
• Develop and maintain procedures for all team/shift responsibilities
• Proposed infrastructure with a 5 year savings of 425,868, and a ROI of 318

Confidential

• GFI Capital is a financial services company.
• Responsibilities: Managing 1 System Admin, and 3 desktop engineers, I report directly to CTO, and other business heads in the organization, for various infrastructure technology needed.

Day to day Windows responsibility

• Report directly to CTO, and other executives
• Implementation of IDS/IPS, Symantec Endpoint, Websense, and Kaspersky Endpoint Security for Business.
• Team of 4 Support 745 End-users, using Windows XP/7/8
• Implemented, and managed Web Sense, implemented WSUS for patch management
• Large Financial SQL database maintenances
• Setup multiple remote offices with Wan VPN connecting back to HQ
• Implement and managed Riverbed WAN acceleration, SAN technologies EMC, and NetApp
• Cisco environment L2/3 switching, routing, security, wireless, Trunking, QOS, and VoIP
• Worked with Cisco ASA 5510 -5585, Cisco Catalyst 2960- 3560, and CheckPoint SmartCenter, CheckPoint firewalls.
• Implementation and support of Microsoft Windows Server 2003/2008/2012 R2
• Implemented and Managing Active Directory FSMO Roles
• Implemented GFI first ESX servers, taking the company form 19 servers to 7
• Implemented Spice Works ticketing/monitoring system in the first month saving the corporation 22,000
• Management of team and ticketing system
• Monitored SLAs with IT vendors and contractors, and ensure compliance from all involved
• Implemented and supported SAAS Software as a service for Hedge Fund corporations
• Implementing and troubleshooting of security protocols RADIUS, LDAP, and 802.1x
• Penetration testing utilizing Acunetix, Nessus, and Wireshark
• Designed/Management IT polices, including access management, IDS/IPS infrastructure, Websense, and Cisco Secure Access Control System for user identification
• Built workflows and procedures for the team based on ITIL
• Rework Damage Recovery plans, from five days recovery to an instant failover, using VMware Vmotion
• Monitored documentation and compliance of processes and protocols for applications development, support and integration
• Managed a Budget of 2 Million
• Managed 1 System Admin and 3 Desktop Engineers
• Networking Routing and Protocols: WAN, LAN, MPLS, BGP, VRF, OSPF, EIGRP, VPN/Dynamic Multipoint VPN , NAT, PAT, VRRP, IP-SEC, STP, VLANS, DHCP, HSRP, and NSSA.
• Protocols: TCP, UDP, P2P, SMTP/POP/IMAP, HTTP/S, proxies, SNMP
• VOIP Systems: Cisco UCS Open, SIP, Asterisk, RTP and RTPS
• Forensic tools: EnCase Enterprise, Encase Imager, Access Data, FTK Toolkit, and EMC SourceOne.
• AWS and Rackspace Hosting management

Confidential

TSI is an MSP that serves hedge funds, healthcare, and SMBs.

Day to day Windows responsibility

• Implementation and support of Microsoft Windows 2003/2008, Linux and VMware servers
• Create and managed GPO, Implementation and migration of Exchange and Active Directory to virtual environments, such as Vmware and Citrix.
• Administration of Microsoft SharePoint, Microsoft Dynamics and Microsoft SQL.
• Updating servers with latest service packs and hot fixes, distribute packages via Kaseya server across all the desktops and servers.
• Implementation and administration of Exchange 2003-2010 with High Availability for Disaster Recovery and Production, include DNS, DHCP, IIS and WINS
• Review and remediate software distribution failures and to eliminate the problems that cause those failures.
• Design and implement a mechanism for handing on-off technical issues to other technical teams for resolution creating standard Net-backup policies and taking back-up of the servers.
• Implemented, and support cluster and San storage for VM and Microsoft SQL redundancy.
• Implement, update and support for Blackberry Enterprise
• Implemented, and Support Adobe Creative Suites
• AWS and Rackspace Hosing management
• Managed and support EMC SourceOne, EMC Networker, and EMC Data Domain.
• ESXi and ESX Ver. 2, 3, and 4, with 3 years configuring and supporting 100 ESXi servers/6000 VM
• Implemented and supported 25 Citrix Xen server 6 and Xen Desktop 5 and 6, consisting of 1000 VMs.

Day to day Networking responsibility

• Provide high level technical support, including identifying and resolving problems on Cisco supported products for many industry infrastructures. This included external routing and internal/intranet routing for DMZ servers.
• Implement and support Cisco Call Manager and Cisco Unity Connections over MPLS, with QOS for Video and SIP traffic.
• Review all changes to network configuration for technical accuracy and impact and provide Multi-Protocol Network problem resolutions.
• Routing related tasks included providing Cisco router configuration and change management, providing technical support for Cisco Router configurations and installation for Customer. Configuring IP RIP, EIGRP, OSPF and BGP. Configuring routing policy for BGP Configuring bridging technologies i.e. transparent, SR, SRT and DLSW
• Switching related tasks included implementing of Networking Routing and Protocols: WAN, LAN, MPLS, BGP, VRF, OSPF, EIGRP, VPN/Dynamic Multipoint VPN , NAT, PAT, VRRP, IP-SEC, STP, VLANS, DHCP, configuring ISL trunk on Fast-Ethernet channel between switches, Configuring CGMP, IGMP and PIM.
• Configuring access servers to perform reverse telnet and configuring AAA
• Configuring custom and priority queuing for frame relay.
• CheckPoint SmartCenter, CheckPoint firewalls
• Worked with Cisco ASA 5510 -5585, Cisco Catalyst 6503-6530, Cisco PIX 501-525 series, WatchGuard, Sonicwall, Palo Alto PA-3050 threat management.

Day to day Virtualization responsibility

• Implementation of over 17 Citrix Zen/VMware project
• Configuration and Administration of VMware vCenter/ESXi and ESX Ver. 2, 3, and 4
• Managed and implement VM Windows Server 2000-2008 and Windows Desktops OSs.
• Installation and administration of VMware/ Citrix Xen servers
• Configuration and administration of Windows clusters/ EMC San and Data Domain.
• Migration of Virtual Servers from one data center to other data center.
• Physical machine to virtual machine conversion, and managed virtual servers using VCENTER.

Day to day Linux responsibility

Operating systems

• Linux Unix Red Hat/Centos 6 /5 , Suse/OpenSuse 9-11 , Debian/Ubuntu and Gentoo 2007.-10.0, Slackware 12.0, some AIX 5/6, FreeBSD 6/7, OSX 10.5 .
• Networking, daemons and utilities, Package and configuration management using rpm, yum, dpkg, File Sharing on Linux/Windows hosts with SMB/CIFS via Linux/Windows servers - Utilizing ZFS and NFS3/4, iSCSI initiator/targets setups on Linux hosts, Version control with Subversion.
• Network security/monitoring tools iptables firewall, tcpdump, Nagios/Uptime/OpenNMS monitoring, Nessus vulnerability scanning, nmap host discovery, Ossec HIDS, denyhosts .
• Team of 10 support 5100 End-user Multiple Environments within the following industries
• Type of Client Supported: Investment /Financial Firms, Law Firms, Schools, Graphics and Video Production, Staffing / Recruiting agencies, Restaurant, Limo and Taxi services, Marketing Agencies, Not-for profits, Construction Companies, Spa.

Confidential

Responsibilities: Provided Systems Analyst Support Report, System installation, Troubleshoots, Repair, Upgrading, Create Images, and Setup install and configure Servers. Hospital and Healthcare environment

Day to Day Responsibility

• Implementation and support of Microsoft Windows, Novel and Linux servers,
• Creating standard process for AD group policies, organization groups and sites,
• Backup and Restore of production servers using Backup Exec backup,
• Troubleshoot and migrate Novel Servers, Configure Nortel, Cisco firewall and switches,
• End user support, image and repair HP systems.
• HIPPA compliance, risk management audit
• Windows 2003 Server, Windows NT, Novel Server, Nortel Firewall, and Switches
• Over 3000 End-user environment