SUMMARY:

• Infrastructure - Operations, application development, development operations, web and content delivery; technology designs, setups, installation, implementation and maintenance.
• Security - Issues, crisis management, business continuity; and legal issues regarding technology; laws, regulations regarding security, data management & retention as applicable to our business, globally.
• Project Management - Software life cycle activities, performing trend analysis and project management frameworks; ability to lead multiple teams to work cohesively in order to meet commitments and balance competing priorities.
• Business Acumen - Planning, budgeting, risk and financial analysis.
• Office Automation Platforms - Implementing, optimizing and managing office automation platforms including Microsoft Office 365 and Skype for Business.
• Cloud-based Ultrastructure - Designing, implementing and managing cloud-based ultrastructure and operations platforms including AWS and Microsoft Azure.
• Communications & Influencing Skills - Exceptional written and verbal communications skills.
• Persuasive and compelling communication style with outstanding relationship management ability.
• Problem Solving - A solution-oriented, streamlined approach; ability to lead multiple teams that identify key issues, gather data to investigate those issues, and develop actionable recommendations.
• Organizational Skills - Detail orientation and a proven track record of meeting deadlines despite competing priorities
• CI/CD, DevOps, GitHub, Docker, Terraform, Jenkins, Chef Citrix XenApp (4.0, 4.5, 6.5 & 7.6 /LTSR 7.9 & 7.15 LTSR)Citrix XenDesktop (5, 6.5, 7.6, 7.11, 7.14.1 & 7.15 LTSR) Citrix StoreFront 2.x 3.x & Cloud Gateway Express Citrix Provisioning Services (6.x, 7.0, 7.1, and 7.5) Ivanti Endpoint & Workspace Management (Appsense) Microsoft Endpoint Manager (Intune/Configuration Manager) SharePoint Online/Office 365
• VM View Horizon Workspace Cloud
• Citrix Secure Gateway/AGEE/Netscaler (All) Quest Migration Move Manager 8.13
• AWS CloudFormation, Terraform 9.6, Puppet, Ansible Red Hat Enterprise Linux, SuSE Enterprise Linux, CentOS Microsoft Hyper-V & SCVMM 2016/2012
• VMware vSphere 6.5,6.7 w/ Site Recovery Manager VMware View Composer & Orchestrator
• VMware AirWatch 7.x,8.x EMM, Boxer & AirWatch Agent VMware WorkSpace One UEM 1902, 1811 & 9.3 (SaaS) VMware Identity Manager, Directory Service Server AirWatch Cloud Messaging (AWCM)
• AirWatch Cloud Connector (ACC) AirWatch Secure Email Gateway (SEG) VMware HA, DRS, Storage DRS, vMotion
• Skype for Business 2015, Lync 2010 with Edge & Director PowerShell, PowerCLI, Ansible, YAML, JSON, C#, Python Cisco UCS S3260 Storage Server/UCS 260 M2 Rack Svr Microsoft Windows Server - Current 2019, 2016 & Serverless Azure VPN/ExpressRoute, vNet, ARM, Kubernetes
• Azure Advanced Threat Protection (Azure ATP), WDATP Azure Security Center, Advanced Threat Analytics (ATA) Azure Stream Analytics (ASA), RBAC & Conditional Access SailPoint IdentityIQ, OneLogin, OKTA, PingFederate / Identity
• AWS Workspace, EC2, VPC, S3, Route53, AutoScaling Load Balancing / Clustering (F5, NetScaler, Windows NLB) Microsoft Active Directory Architecture and Design Microsoft RDSH, DLP, AD Connect, MFA, Federation Microsoft SMS 2.0, 2003, SCCM 2007, 2012, 2016, SCOM
• MobileIron 7x,8x Core, Sentry, VSP & Access Microsoft Forefront Identity Manager 2010 (FIM) Google Cloud Platform (GCP), Google Analytics EMC & NetApp storage designs & implementation AETD: Red Cloak, Carbon Black & Qualys
• BIG-IP v11: LTM, GTM, APM
• Microsoft AppV 5.0, Citrix Provisioning Services (PVS) Blackberry Enterprise Svr, Good for Ent., IBM MaaS, Intune VEEAM Backup & Replication 9.5 - VEEAM Availability Suite Antivirus (McAfee, Symantec Endpoint Protection, Trend) Nutanix AOS/Acropolis HV, Prism Element & Central Symantec (Veritas)Enterprise Vault 8.x, 9.x and Cloud (KVS) Microsoft OCS 2007, Lync 2010 & Lync 2013/Online NetScaler GSLB, CS, ICA Proxy, AGEE, UR, VIP, LB & SA
• Nutanix Acropolis HV, CVM, AFS, Prism Element & Central EMC SourceONE Archiving -- Nasuni Cloud NAS Filer Windows 10 Servicing Branches (CB, CBB, and LTSB), Semi- Annual Channel
• Microsoft ADFS, SSO, Azure File Storage /Sync, Azure AD Skype for Business PTSN Connectivity
• Skype for Business Cloud PBX
• Office 365 Advanced eDiscovery, Office (ATP) Office 365 Enterprise E5, E3 & ProPlus Microsoft 365 Managed Desktops/Business / M5
• Microsoft Exchange (5.5, 2003, 2007, 2010 & 2013/Online) Windows Azure Active Directory (WAAD)
• Microsoft Cloud App Security Broker (CASB)

PROFESSIONAL EXPERIENCE:

Confidential, New York

Office 365/Azure SME Engineer & Info Security Consultant

Responsibilities:

• Served as a high-level information security engineer managing Azure Cloud Security, MFA, CASB, SSO solutions including SAML, SCIM and OAuth authentication options, automation with Ansible & YAML
• Led IDaaS/IAM project in onboarding SaaS applications into IdP, (Identity Providers) such OneLogin, Okta & SailPoint IIQ from SiteMinder.
• Led IDaaS/IAM project to integrate SaaS applications with IdP, (Identity Providers) such as OneLogin, Okta & SailPoint IIQ
• Worked with SP (Service Providers) such as CornerStoneIT, SalesForce & ServiceNow.
• Designed & deployed multiple technology verticals such as WorkSpaceONE (UEM & VDI), SailPoint, OneLogin, SecureCTA utilizing the Azure stack including ExpressRoute & SRM.
• Managed RBAC, conditional access, ADFS, ARM VM resources, Azure Federated methods such as hybrid identity, password hash sync (SSO), pass through synchronization & MFA.
• Deployed Azure IaaS VMs, Cloud, Autopilot, Intune, services (PaaS role instances) into secure VNets, availability zones and subnets.
• Deployment & management of Exchange Online, Teams, Skype 4 Business & SharePoint Online.
• Microsoft365 Integration, ARM, vNets, WAAD, Security & tenant/subscription management.
• Configured, and managed entire Office 365 stack and Microsoft Azure, including SSO/MFA, service extensions, Azure Virtual Network management, managed services, storage, backup, DR, monitoring, and identity and access management, authentication and directory services to ensure the security of the network and confidential data.
• Identify emergent vulnerabilities, evaluate associated risks and threats, and design network vulnerability scans to identify security vulnerabilities and provides remediation alternatives
• Lead security risk assessments to ensure compliance with corporate security policies and adherence to best practices, configuration and tuning cloud hosted solutions and platforms.
• Lead the evaluation of vendor proposals, new and existing security designs, and emerging security technologies and systems
• Develop, design and support automation modules using Ansible, Terraform, and CloudFormation.

Confidential, New York

Sr Cloud Azure Engineer/Consultant

Responsibilities:

• Plan, configure & integrate Skype for Business Cloud PBX with on-prem PTSN gateway CUCM.
• Developed scripts, templates, Infrastructure-As-Code to automate the provisioning, maintenance and configuration management
• Automated service deployments with AWS CloudFormation, Ansible and Terraform.
• Performed systems AWS development and design work including logical system design; cloud architecture analysis and design; and systems engineering.
• Implementation & management of NetSkope & Microsoft Cloud App Security Broker (CASB) for cloud-based security policy enforcement point between on-prem & cloud computing while securing traffic/data stored in OneDrive fB, Skype fBO, SharePoint Online and SendMail server.
• Configured, and managed entire Office 365 stack and Microsoft Azure, including SSO/MFA, service extensions, Azure Virtual Network management, managed services, storage, backup, DR, monitoring, and identity and access management.
• Migrated On Premise Exchange 2010 email services to Microsoft Office 365 hosted EOL cloud tenant with Office Pro Plus subscription. (6000 mailboxes)

Confidential, New York

Sr. Cloud Solution Engineer

Responsibilities:

• Project involved decoupling of legacy 2012 R2 Active directory, domain users, workstations, services & servers into 2016 Active Directory forest.
• Migrated 11k+ users, 10k+ workstations, 150+ servers using Quest ActiveRoles & Migration Manager- QMM 8.13.
• Create and manage VDI pools, document results and operating methodologies and processes
• Ability to create parent images and to provision VDI's, test, deploy and support created parents
• Advanced troubleshooting VDI issues (i.e. can't connect, slow response, etc.)
• Migrating VDI's (Physical to VDI, legacy VDI environment to new environment, Windows 7 VDI's to Windows 10, etc.)
• Overall administration and maintenance of VDI environment (i.e. decommissioning unused VDI's, monitoring capacity and performance.
• Design, build, support and manage engineering activities related to cloud initiatives.
• Design, build, support and manage SAML, SCIM, OpenID and OAuth.
• Deployed Nutanix hardware, firmware, AOS, NCC and Foundation updates
• Deployed Nutanix CVM Prism Element, Central & AOS/Acropolis hypervisor configuration.
• Configure and deployed IDaaS such as SailPoint IdentityIQ, OneLogin, OKTA, PingFederate,
• VMware vSphere 6.5 to 6.7 upgrade, vCenter Server appliance to 6.7.
• Configured Microsoft Cloud App Security Broker (CASB) to manage & secure Microsoft 365 components as well as a mixture of Cloud & on-Prem Endpoint Security solutions
• Deployed Workspace One Enterprise Edition with VDI supporting (Horizon View) Windows 10 desktop OS, BYOD and Thin Clients.
• Create application deployment pipelines with GitLab CI, Jenkins, and Ansible
• Remote architectural design and support of Lync on Prem, Skype for Business Online/Office 365, and MS Exchange Online/Office 365.
• Office365 migration - create and deploy successful mobility migration plan from legacy domains to Greenfield Prem & Cloud.
• Deployed Jenkins for build, integration and orchestration of blue and green deployments.
• Configuration of Reverse Proxy for Skype for Business Edge Servers including SAN certificate.
• Exchange CAS HA configuration on NetScaler VPX, ADFS Proxy and Content Switching configuration on NetScaler VPX for SSO sites such as SailPoint, Okta, Citrix ShareFile, OneLogin and CornerStoneIT
• Perform Linux shell scripting to automate tasks, system post builds and repetitive tasks.
• Support various technology groups and be a thought leader in the adoption of Cloud Architectures for the existing and new applications
• Implementation and automation of IaaS and PaaS services in AWS including EC2, Lambda, RDS, RedShift EBS and S3 as well as Azure Storage Blob/FileSync.
• Automation and scripted deployment using CLI, REST APIs, CloudFormation and Terraform.
• Work with various App and Infrastructure teams to enhance their internal processes
• Participate & lead meetings with internal stakeholders across IT
• Act as an ambassador for the team and technology spreading the knowledge to others
• Design and implementation of hybrid cloud solutions including AWS, Azure, and vSphere
• Deployed core components of VMware Identity Manager such as Federation, Multi-Factor Auth(MFA) Mobile App, Mobile Single-Sign-On(SSO), Conditional Access, APIs, Third Party IdP (Okta, SailPoint, PingFederate, OneLogin)/Office 365 Integration and Documentation.
• Deployed Exchange CAS array Load Balancing for both Local & Global Traffic mgt. (NetScaler)
• Setup Microsoft 365 tenant, customize portal, configure conditional access & federated accounts
• Integrated Okta with Office 365 tenant synchronizing data from on-prem AD to Office 365.

Confidential,, New York

Office 365, AWS and Azure Engineer, Consultant

Responsibilities:

• Served as a top-level technical consultant in the infrastructure analysis, design, implementation, and maintenance of Citrix XenApp, XenDesktop, Vsphere, PVS/MCS, NetScaler, ADFS (SSO), ShareFile & AirWatch WorkSpace One UEM, BES, & MobileIron with WorX mobile apps.
• Lead migrations from AirWatch MDM Solution and BES 5 to BES 10 Environment.
• Deployed Exchange CAS array Load Balancing for both Local & Global Traffic mgt. (NetScaler)
• Setup Microsoft 365 tenant, customize portal, configure conditional access & federated accounts
• Integrated Okta with Office 365 tenant synchronizing data from on-prem AD to Office 365 as well as delegating authentication back to on-prem AD as part of a federated single sign-on.
• Deployed Edge Server with reverse proxy for hybrid Lync and Skype for Business Online
• Configured Terraform on AWS for builds, updates, versioning & continuous integration.
• Experience in designing and developing infrastructure using Terraform, AWS Cloud Formation for automated end to end transit hub connectivity resource deployment in AWS.
• Horizon View - Design, Build and Implementation Services for all moving parts of Horizon View., Active/Active & Active/Passive Datacenter Geo-Load Balancing. Persistent and Non- Persistent Desktop Disaster Recovery. Agnostic and In-Depth Performance Assessments and Health Checks. Backup and Restore Techniques.
• Workspace One - Design, Build and Implementation Services for all sections of Workspace One. vIDM Setup and Configuration. Horizon View / Workspace One Federation. Office 365/WS-FED & SAML Integration. RDSH Application Presentation from Horizon View or Citrix. IDP Identity Security. Access Point Proxy / vIDM External Access.
• Microsoft - Active Directory Design Specializing in Group Policy, Sites and Services, and Security Logon Performance/Storm Management DNS Configuration DHCP Install, configure and Manage
• Configured Microsoft Cloud App Security Broker (CASB) to manage & secure Microsoft 365 components as well as a mixture of Cloud & on-Prem Endpoint Security solutions
• Deployed & installed Microsoft Cloud App Security Broker (CASB) for cloud-based security policy enforcement point between on-prem & cloud computing while securing traffic and data stored in OneDrive for Business, Skype for Business Online, SharePoint Online as well other assets.
• Provided infrastructure analysis, design, implementation, and maintenance of Citrix VirtualApp/XenApp, Virtual Desktop/XenDesktop, XenServer, PVS/MCS, NetScaler, ADFS (SSO), AirWatch WorkSpace One UEM, InTune & MobileIron with WorX mobile apps.
• Exchange CAS HA configuration on NetScaler VPX, ADFS Proxy and Content Switching configuration.
• Develop and maintain highly available services including Linux clustering and redundant web services.
• Deployment of SailPoint, Okta, Citrix ShareFile, OneLogin and CornerStoneIT IDP.
• Configure existing NetScaler and Storefront (GSLB and HA) to support Citrix XenApp 7.15 ICA proxy & SmartAccess.
• Designed & deployed (pilot to production) newly built Citrix XenApp/XenDesktop 7.15 core infrastructure from the current Citrix XenApp 6.5 and XenDesktop 7.x (7.5, 7.9, etc.) environments to 7.15 LTSR and platform.
• Designed and deployed multiple technology verticals such as Nasuni Cloud, WorkSpaceONE (UEM & VDI), Citrix XenApp with NetScaler VPX, vIDM, SailPoint, OneLogin, ServiceNOW & Okta utilizing the AWS stack (Including EC2, Route53, S3,EBS, VPC, Elastic Load Balancer, DNS, RDS, Dynamo DB, SNS, SQS, IAM) high-availability, fault tolerance, and auto-scaling.
• Developed an Azure based high performance compute environment to support the massive computational requirements of client congressional redistricting Azure application.

Confidential, New York

Senior Cloud Solutions Architect, Consultant

Responsibilities:

• Lead engineer implementing AWS Cloud Formation and AutoScaling for the XenApp 7.6 POC deployment. Azure infrastructure management (Azure Web Roles, Worker Roles, SQL Azure, Azure Storage, Azure AD Licenses, Office365 and Azure Site Recovery).
• Architect Auto-Scaling AWS Cloud Infrastructure (ING Cloud Stock Transaction Servers) Automation Provisioning Server Pipelines and developed (server image templating for AWS Fargate and AWS EKS Kubernetes clusters using Packer and Docker, server image provisioning using CloudFormation and Terraform.
• Created Clusters using Kubernetes and worked on creating many pods, replication controllers, services, deployments, labels, health checks and ingress by writing Yaml files.
• Wrote Python, Perl and Shell scripts to monitor installed enterprise applications and managed configurations of multiple servers using Chef.
• Configured Amazon CloudWatch to monitor network packet, server asset, CPU utilization and load balancer.
• Automated applications and MySQL container deployment in Docker using Python and monitor them using Nagios and Splunk
• Managed and monitored the server and network infrastructure using Splunk.
• Continuous Integration (CI)/Continuous Delivery (CD) pipeline for Azure Cloud Services using CHEF.
• Working on Inbound and Outbound services with automation CHEF. Configured Azure Backup Service for Azure VM and data of on premise to Azure.
• Deployed multiple resources simultaneously, using Cloud Formation templates in AWS.
• Designed and deployed multiple technology verticals such as WorkSpaceONE (UEM & VDI), Citrix XenDesktop with NetScaler, vIDM, SailPoint, OneLogin, PingFederate & Okta utilizing the AWS stack (Including EC2, Route53, S3,EBS, VPC, Elastic Load Balancer, DNS, RDS, Dynamo DB, SNS, SQS, IAM) focusing on high-availability, fault tolerance, and auto-scaling.
• Deployed Azure IaaS virtual machines (VMs) and Cloud services (PaaS role instances) into secure VNets and subnets.
• Architect and developed (server image templating for AWS EKS clusters using Packer and CoreOS rkt, server image provisioning using Terraform, federated AWS EKS clusters, cluster storage, cluster security, cluster CI/CD pipelines at scale)
• Lead integration & deployment of Identity Access Management (IAM) platform such as OneLogin, PingFederate & SailPoint including import configuration of their respective virtual appliances with YAML hosted on vSphere to AWS Cloud connecter.
• Azure Cloud management (Azure Web Roles, ExpressRoute, Worker Roles, SQL Azure, Azure Storage, Azure AD Licenses, Office365).
• Configured Role Based Access Control managed policies for Azure Resources and SailPoint IAM downstream administration.
• Architect and developed (server image templating for GKE clusters using Packer and Docker, server image provisioning using Terraform, federated GKE clusters, cluster storage, cluster security, cluster CI/CD pipelines at scale), developed product SOWs, developed product scope GCP cloud capacity planning,
• Citrix XenDesktop - Installed and configured Citrix XenDesktop5.x/7.x for 1000+ users and streamed 1000 Windows 7 desktops in using PVS 6.1/7.x.
• DevOps Tools: AWS (EC2, ECS, S3, ASG, VPC, ELB, CW, Route53, IAM), Jenkins, Chef, Terraform, CloudFormation, Docker, Ansible, Git, Visual Code, Puppet, (AKS) Azure Kubernetes, Confluence, JIRA

Confidential

Messaging & Application Delivery, Consultant

Responsibilities:

• Lead consultant for Citrix products including but not limited to EdgeSite, CAG, XenApp, XenDesktop, NetScaler, and core Citrix services including but not limited to, Zones, License, Desktop Delivery Controller, Application Profiler, Provisioning Services, & web interface. User profile personalization, customization & Personal VDisk configuration
• Served as a top-level technical expert in the infrastructure analysis, design, implementation, and maintenance of Citrix XenApp, XenDesktop, XenServer, PVS/MCS, NetScaler, & AirWatch.

Confidential, New York, New York

Lead Infrastructure Engineer

Responsibilities:

• Managed a team of 4 Senior Messaging & Remote Access Engineers and 6 Level 2 Technicians to provide 24x7 support of the MDM, Citrix and Messaging Systems.
• Served as Senior Infrastructure Engineer with concentration in the Citrix and Exchange Infrastructure for a large multi-zone Citrix farm with +12,000 concurrent users in multiple countries (USA, Canada, UK and Australia) - 20+ Exchange 2013/2010/03, OCS\Lync 2010 & 200+ Citrix Servers in 3 datacenters.
• Lead design & configuration subject matter expert on Exchange 2003/2007/2010 and Office 365. MessageLab, Good Enterprise, XenMobile, MDM, MobileIron & BES 4.1 & 5 Engineering.
• Provided third level support and engineering of global Exchange Messaging environment consisting of 350 MS Exchange 2010/2003/5.5 Servers, BES, Good, MobileIron, CAS, DAG,
• Build, configure, deploy & support of Citrix NetScaler 10.1, 9.3, x - GSLB, Content filtering & Application Firewall. Managed CAG 5.0.4.x, Web Interface/Storefront support/configuration.
• Third level support of Citrix Presentation Server 4.0 and XenApp 6.5/4.5 farms, Single Sign-on/Password Manager 4.x, Web Interface, Provisioning Server, XenServer, Installation Manager, CAG, CSG, NetScaler, Branch Repeater (WanScaler), XenDesktop 7/5.6/4, DataStore and W2K3/W2K8 Terminal Services running on VMware ESX.
• Lead project engineer for deployment and 3rd level support for OCS 2007 R2 and Lync 2010 & Lync 2013.