Firewall / System Administrator Specialist
Search for your next candidate
Ready to contact a candidate? Purchase a subscription today!
Updated: 1-Oct-2020
Firewall / System Administrator Specialist
Ajax, ON
Highly qualified information technology professional with experience as Network Security Analyst, and key competencies of Server and Storage, structures and topologies; extensive knowledge in security. Detailed oriented and thoughtful individual prepared to excel in a dynamic organization and contribute to company objectives. Finely tuned analytical and troubleshooting skills with dedication to clear interpersonal communication and technical support. Proven ability to provide creative and effective issue resolution through the application of highly developed problem-solving skills. Team player with a reputation for providing excellent user service and the tenacity to work with demanding clientele. Known for professionalism, integrity, ethics and resourcefulness. Qualifications include:
Work Experience
Firewall / System Administrator Specialist
IBM Canada
-
Markham, ON
2019 to Present
Setup/Manage VPC subnets; make connection between different zones; block suspicious IP via ACL.
❒ Setup/Manage Linux servers on Amazon (EC2, SSL, Security groups, RDS and IAM).
❒ Create manage AMI snapshot volumes, upgrade/downgrade AWS resources (CPU, Memory, EBS)
❒ Create Load Balancers (ELB), use Route53 with failover and latency options for HA.
❒ Apply server security patches through Red Hat Satellite.
❒ Email client management: install, configure, postfix and Sendmail; implement and monitoring
❒ Server clustering: setup high availability cluster for web, email, database servers using LVS.
❒ Server service management: install, configure httpd, vsftpd, bind, nfs, autofs samba, NTP, SSH etc.
❒ Collaborate and support other departments to identify security risks, within their respective operational areas, make recommendations for remediation.
❒ Design and update firewalls, networks and network scanning.
❒ Create firewall policies and update to maintain network security.
❒ Update firmware and OS on network appliances for installations and follow through on post validation.
❒ Reviewed system logs to determine usage levels, bandwidth, performance, and system security to target inefficiencies and implement appropriate solutions.
❒ Secured network systems by establishing and enforcing access control policies.
❒ Ran security scans on servers and worked with teams to rectify security vulnerability.
❒ Optimized, improved, expanded and upgraded network capabilities and connectivity through network monitoring.
❒ Documented as-built for network architectures according to established processes and suggested for work-flow improvements.
❒ Develop, manage and update, as required, information security policies and procedures.
❒ Setup/Manage Linux servers on Amazon (EC2, SSL, Security groups, RDS and IAM).
❒ Create manage AMI snapshot volumes, upgrade/downgrade AWS resources (CPU, Memory, EBS)
❒ Create Load Balancers (ELB), use Route53 with failover and latency options for HA.
❒ Apply server security patches through Red Hat Satellite.
❒ Email client management: install, configure, postfix and Sendmail; implement and monitoring
❒ Server clustering: setup high availability cluster for web, email, database servers using LVS.
❒ Server service management: install, configure httpd, vsftpd, bind, nfs, autofs samba, NTP, SSH etc.
❒ Collaborate and support other departments to identify security risks, within their respective operational areas, make recommendations for remediation.
❒ Design and update firewalls, networks and network scanning.
❒ Create firewall policies and update to maintain network security.
❒ Update firmware and OS on network appliances for installations and follow through on post validation.
❒ Reviewed system logs to determine usage levels, bandwidth, performance, and system security to target inefficiencies and implement appropriate solutions.
❒ Secured network systems by establishing and enforcing access control policies.
❒ Ran security scans on servers and worked with teams to rectify security vulnerability.
❒ Optimized, improved, expanded and upgraded network capabilities and connectivity through network monitoring.
❒ Documented as-built for network architectures according to established processes and suggested for work-flow improvements.
❒ Develop, manage and update, as required, information security policies and procedures.
Sr. Linux / Storage Administrator
Express Scripts Canada
-
Toronto, ON
2015 to 2019
Administering and troubleshooting HBA related issues WWN SAN Zoning, creating.
❒ Documenting the SAN and Storage environment, capacity and performance reporting, and issues and resolution tracking documentation.
❒ Linux server management: OS installation; manage servers remotely using VPN or ssh; reboot or shutdown server as needed; reset password; IP and routing configuration; server performance monitoring and tuning; server trouble shooting; setup firewall; harden server security etc.
❒ KVM/ESX Hypervisors management: create, import/export, convert virtual machines; adjust VM resources; install OS on virtual machines etc.
❒ Email client management: install, configure, postfix and Sendmail; implement for monitoring.
❒ Data disaster recovery: create data disaster recovery plan; implement server data migration.
❒ Setup daily incremental and weekly full backup of Linux servers.
❒ Built Red Hat Virtualization environment and Oracle Virtualization environment.
❒ Setup synchronization between Production environment and Disaster Recovery environment.
❒ Configure Kdump to troubleshoot server evictions and crashes.
❒ Apply firmware updates to hypervisors.
❒ Applied scripts to monitor and send emails regarding disk, cpu and memory utilization.
❒ Push configurations using Ansible to ensure consistency of configuration files.
❒ Documenting the SAN and Storage environment, capacity and performance reporting, and issues and resolution tracking documentation.
❒ Linux server management: OS installation; manage servers remotely using VPN or ssh; reboot or shutdown server as needed; reset password; IP and routing configuration; server performance monitoring and tuning; server trouble shooting; setup firewall; harden server security etc.
❒ KVM/ESX Hypervisors management: create, import/export, convert virtual machines; adjust VM resources; install OS on virtual machines etc.
❒ Email client management: install, configure, postfix and Sendmail; implement for monitoring.
❒ Data disaster recovery: create data disaster recovery plan; implement server data migration.
❒ Setup daily incremental and weekly full backup of Linux servers.
❒ Built Red Hat Virtualization environment and Oracle Virtualization environment.
❒ Setup synchronization between Production environment and Disaster Recovery environment.
❒ Configure Kdump to troubleshoot server evictions and crashes.
❒ Apply firmware updates to hypervisors.
❒ Applied scripts to monitor and send emails regarding disk, cpu and memory utilization.
❒ Push configurations using Ansible to ensure consistency of configuration files.
Sr. Server and Network Analyst
Compucom Canada
-
Scarborough, ON
2011 to 2015
Migrated one AWS account to another AWS account.
❒ Created users and groups using IAM and assigned individual policies to each group.
❒ Configured Security group EC2 Window and Linux instances and also for Puppet master and agent.
❒ Built DEV, QA, UAT and Production environment with auto scaling.
❒ Prepare documentation for all aspects of client networks for implementing communication systems.
❒ Tracked network and telephony devices for performance and load threshold metering.
❒ Document troubleshooting steps for Network Operations team.
❒ Coordinate trunk testing with phone vendors to troubleshoot latency problems.
❒ Updating hardware, software, OS and applications to network servers.
❒ Identifying opportunities for improvement by sharing best practices and guidelines with internal teams.
❒ Built good relationship with customers by understanding the needs and develop the required plans to meet expectation and deliver best Customer Experience.
❒ Performing both network and web application vulnerability assessments and rectify them.
❒ Monitor, review and respond on security events received from client's and track through resolution.
❒ Part of small team maintaining over 500 Linux, Windows servers.
❒ Documenting the SAN and Storage environment, capacity and performance reporting
❒ Create and manage alias, Zone for new server in Brocade SAN switch
❒ Linux server management: OS installation; manage servers remotely using VPN or ssh; reboot or shutdown server as needed; reset password using RHEL IDM (LDAP) server; IP and routing configuration; server performance monitoring and tuning; server trouble shooting; setup firewall; harden server security etc.
❒ Disk storage management: create, add, resize storage for servers; setup disk mirroring; setup storage data backup.
❒ Perform implementation and 1st level support of production critical applications on Linux server infrastructure.
❒ Single-Sign-On: Integrated Windows Active Directory with Red Hat Identity Management.
❒ Ensure high availability of the Linux servers through keeping the patches up-to-date.
❒ Created users and groups using IAM and assigned individual policies to each group.
❒ Configured Security group EC2 Window and Linux instances and also for Puppet master and agent.
❒ Built DEV, QA, UAT and Production environment with auto scaling.
❒ Prepare documentation for all aspects of client networks for implementing communication systems.
❒ Tracked network and telephony devices for performance and load threshold metering.
❒ Document troubleshooting steps for Network Operations team.
❒ Coordinate trunk testing with phone vendors to troubleshoot latency problems.
❒ Updating hardware, software, OS and applications to network servers.
❒ Identifying opportunities for improvement by sharing best practices and guidelines with internal teams.
❒ Built good relationship with customers by understanding the needs and develop the required plans to meet expectation and deliver best Customer Experience.
❒ Performing both network and web application vulnerability assessments and rectify them.
❒ Monitor, review and respond on security events received from client's and track through resolution.
❒ Part of small team maintaining over 500 Linux, Windows servers.
❒ Documenting the SAN and Storage environment, capacity and performance reporting
❒ Create and manage alias, Zone for new server in Brocade SAN switch
❒ Linux server management: OS installation; manage servers remotely using VPN or ssh; reboot or shutdown server as needed; reset password using RHEL IDM (LDAP) server; IP and routing configuration; server performance monitoring and tuning; server trouble shooting; setup firewall; harden server security etc.
❒ Disk storage management: create, add, resize storage for servers; setup disk mirroring; setup storage data backup.
❒ Perform implementation and 1st level support of production critical applications on Linux server infrastructure.
❒ Single-Sign-On: Integrated Windows Active Directory with Red Hat Identity Management.
❒ Ensure high availability of the Linux servers through keeping the patches up-to-date.
Education
Bachelors Degree in Information Technology in Information Technology
York University
-
Toronto, ON
2007
Diploma in Computer Engineering Technology
Seneca College
-
Toronto, ON
2003
Skills
• Experience with EC2, IAM, CloudWatch, CloudFront, Route53, S3, VPC (Less than 1 year) • Support and implement F5 Load Balances, Cisco ASA and Checkpoint firewalls (3 years) • Advanced knowledge in network security technology including IPSEC, SSL, NAT/PAT, VPN and SDN • Advanced knowledge in technologies: EIGRP, BGP, OSPF, MPLS Routing (3 years) • Excellent understanding of the elements and concepts of network security, Firewall, IDS/IPS (3 years) • Advanced knowledge of physical and virtual servers as well as ESXi, RHEV and OVM Manager • Advanced knowledge in NetAPP and 3PAR Storage • Linux and Windows server security and performance hardening (5 years) • Update Enclosure, ILO and physical server firmware upgrades (3 years) • Advanced knowledge of Cisco technologies • Monitoring tools such as WhatsUpGold, Zabbix, Nagios and Solarwinds (10+ years) • Linux (5 years) • Linux Administrator (5 years) • Redhat (5 years) • System Administrator • Red Hat • System Admin (7 years) • Vmware (6 years) • Oracle Virtualization Manager (3 years) • Active Directory • Active Directory