SUMMARY:

• Translating technical information for non - technical clients.
• Providing IT support, planning, and ensuring collaboration.
• Developing and implementing best practices.
• Managing access control.
• Auditing and ensuring compliance with strict security policies on multiple platforms in the enterprise environment.

TECHNICAL SKILLS:

Technology: Microsoft DNS\DHCP Microsoft AD LDS (ADAM) Microsoft Windows Server 2000, 2008, 2012 Microsoft Windows: NT, 2000, XP, Vista, 7, 8 Microsoft Remote Assistance (MSRA) Dame - ware remote access Active Directory User and Computers Active Directory Sites and Services Active Directory Administrative Console Microsoft Office 2000, 2010, 2012 Quest Authentication Services to Active Directory Microsoft SQL Server Management Studio Novell (LDAP) E-directory Remedy break\fix support ITSM break\fix support Oracle user Provisioning RSA Envision reporting Oracle Virtual box VM s VM Ware Workstation VM s Infoblox DNS\DHCP support Power-shell, VB, and Batch Scripting Super\Putty for UNIX provisioning Quest tools for provisioning UNIX accounts WinSCP - file transfer from UNIX to windows

PROFESSIONAL EXPERIENCE:

Confidential, Eagan, Minnesota

Responsibilities:

• Venafi Management System (CMS)
• Microsoft Services (AD CS) with HSM administration
• Venafi integrated CCM Comodo s
• Database administration
• CA monthly security patching

Confidential, Eagan, Minnesota

Responsibilities:

• Venafi Management System (CMS)
• Microsoft Services (AD CS) with HSM administration
• Venafi integrated CCM Comodo s
• Database administration
• CA monthly security patching
• EFS Encryption

Confidential, Maplewood, Minnesota

Responsibilities:

• MFA Azure - VPN
• Office 365 licensing
• Domain Naming Service (DNS)
• Dynamic host configuration Protocol (DHCP)
• Remote Authentication Dial-In User Service (RADIUS)
• Active Directory Application Mode - Lightweight Directory Services (ADAM\LDS)
• Active Directory
• services (PKI)
• Server Administration (2000, 2003, 2008 r2, 2012)

Confidential, Richfield, Minnesota

Responsibilities:

• Created 2012r2 Baseline for Domain Controllers
• Created support Documents for project work
• Created PowerShell Scripts to gather account information for remediation
• Created s to support Server Authentication and code signing
• Designed custom Windows Server Update Services (WSUS) for Domain Controller Patching
• Built out six Windows 2012r2 Windows Server Update Service (WSUS) Servers
• Created Proof of concept for WSUS in lower Domains for patching Domain Controllers
• Created GPO’s to support WSUS client side targeting
• Migrated FSR to DFSR on all Domains
• Enabled SNMP on all Domain Controllers
• Updated Default Domain Policy GPO to include SMB signing on Domains
• Updated Default Domain Policy to allow LDAP signing

Confidential, Maplewood, Minnesota

Responsibilities:

• Provisioning with Infoblox and Microsoft console
• Set up (A) records, Reverse lookup zones, Alias (cname), DNS Forwarders
• Create and modify SPF records
• 24/7 support
• Provisioning with Infoblox and Microsoft console
• Create scopes, Reservations, exclusions
• 24/7 support
• Create REALMs for routers, switches, VPN, and Firewalls.
• Troubleshoot issues with logs and LDAP interfaces.
• 24/7 support
• Create roles\group
• Provision user accounts
• 24/7 support
• Create Organization units (OU)
• Set Group Policy Objects (GPO)
• Monitor account
• 24/7 support
• Reviewed with Microsoft SME Risk and Health Assessment Program for Active Directory (ADRAP)
• Data collection of key components in the active directory
• Analyze information to assess threads and vulnerabilities
• Create change task to update issues
• Centrify Unix authentication and authorization in Active Directory
• Triton DLP\Web-sense integration
• Multifactor Authentication (MFA) Quest Defender
• Vormetric encryption
• Single Sign ON (SSO) Ping Federate

Confidential, Richfield, Minnesota

Responsibilities:

• Enforce security policies.
• Create process documentation.
• Perform audits using Power-Shell, DS-commands, and Quest reporter.
• Provide support for break-fix issues.
• Modify BAU requests to conform to company policies and procedures.
• Edit groups, login scripts, and user objects using authorized tools.
• Set Delegation to Organization Units for decentralized Administration.
• Maintain user-profiles using Active Directory Administrate Center, VBS, and Power-shell.
• Create, publish, and sign s for SSL and EFS in Microsoft Services.
• Configure IIS application pools and websites.
• Maintain file shares and NTFS permissions remotely using FILEACL and Power-Shell.
• Configure Group Policy Objects with filters linked to Organization Units for controlling access.
• Set Services and Policies on Windows 2000, 2003, and 2008 servers locally and globally.
• Provision user accounts, groups, edit sudoers file on stand-alone servers.
• Create GPO’s in AD to support Quest authentication services for provisioning UNIX user and group accounts.
• Provision user accounts, groups, roles, set LDAP attributes.
• Build and remove servers.
• Create print queues.
• Perform eDirectory updates.
• Migrated NT 4.0 domains to 2000 Active Directory.
• Moved workstation from NT Domain to Active Directory Domain.
• Designed/implemented Active Directory OU structure.
• Converted data from NT domains AD using ADMT.
• Designed/implemented Power-Shell script to remove SID history.
• Completed post-migration of NT Domains.
• Implemented Active Directory decentralized administration to centralized management.
• Built/implemented servers to support PKI infrastructure using Windows services.
• Built/implemented High Availability Active-Active servers in multiple regional sites.
• Designed/implemented group policy object with filters to control distribution.
• Created and published in-house s for EFS and SSL.
• Intergraded UNIX server accounts to Active Directory using Quest Authenticated services.
• Designed/implemented new (OU) Organization objects structure to support policies for UNIX accounts.
• Designed/implemented UNIX-enabled user accounts.
• Designed/implemented rights, access, and primary UNIX enabled groups.
• Remediated UNIX servers to conform to corporate policy standards.
• Completed clean-up of groups and users.
• Application installs, join servers and computers to domain, reimage, trouble-shoot network issue, DHCP, DNS.
• Work remotely supporting multiple Branches though out the state.
• Support application software; MS Office, MS Project, MS Visio.
• Branch site relocating project.
• Rack routers and switches.
• Configure networking printers for Active Directory and Mainframe systems.
• Re-image desktop computers, build new servers, and test and certify systems.

Confidential, Forest Lake, Minnesota

Computer Technician

Responsibilities:

• Repair and build, windows desktops, servers.
• Onsite network, and application support.
• Provide customer service.

Confidential, Saint Paul, Minnesota

Production Manager

Responsibilities:

• Manage all aspect of Production, including schedules for daily work.
• Perform project planning.
• Interview candidates for hire.
• Establish performance goals.
• Conduct annual performance reviews.
• Perform quality control.