System Administrator


Profile

Detail-oriented self-directed IT professional with a history of planning and implementing low-cost high-quality solutions – done right the first time. Solid analyst with ability to triage, diagnose, and resolve complex system/application issues. Sharp administrator that chooses the right tool for the job. Special focus placed on Information Security and Open Source Software.


Technical Expertise

Linux and Unix Administration, Configuration Management, Cloud Infrastructure Design and Administration, Storage and Backup Administration, Web and Database Server Administration, Network Administration, Server Hardening, HIPAA Compliance


Languages

Intermediate: Bash, Puppet

Basic: C, C++, CFEngine, HTML, Java, Liquid, Markdown, Perl, Python, R, Ruby, SQL


Core Strengths

Performing investigative research, implementing best practices, writing reliable documentation, and communicating effectively.


Experience

System Administrator: Seda Systems, Raleigh, NC (2012 – Present)

  • Customers included a large university and a small Health IT vendor [with thousands of customers and stakeholders] based in California and New York.
  • Administered Ubuntu, Debian, CentOS, Red Hat Enterprise Linux (RHEL), Amazon Linux, and Microsoft Windows servers.
  • Migrated from physical to Cloud infrastructure, which heavily utilized Amazon Web Services (AWS) Virtual Private Cloud (VPC), Elastic Compute Cloud (EC2), Simple Storage Service (S3), Relational Database Service (RDS), Identity and Access Management (IAM), Route 53.
  • Implemented Disk-To-Disk (D2D) backup solution based on Bareos [Bacula fork].
  • Implemented Disaster Recovery (DR) solution for production AWS S3 buckets involving automated nightly replication of data from East to West Coast.
  • Migrated several terabytes of mission-critical Patient Health Information (PHI) data from physical file storage to Cloud object storage.
  • Stored mission-critical PHI encrypted at-rest.
  • Migrated 10+ IPsec VPN connections [between Health IT vendors and healthcare providers] from Juniper ScreenOS device to LibreSwan service.
  • Migrated a 300+ GB Oracle 10gR2 Database from physical server to Oracle 11gR2 Database Cloud service.
  • Migrated PostgreSQL database from physical server to Cloud.
  • Migrated public DNS service from physical server to Cloud.
  • Managed private DNS service.
  • Implemented Gemalto-based Multi-factor Authentication (MFA) for AWS CLI/Console.
  • Implemented Yubikey-based MFA solution for Secure Shell (SSH).
  • Migrated OpenVPN service from physical server to Cloud.
  • Managed Samba Domain [with OpenLDAP backend], which provided file sharing and authentication services to Windows and Linux servers.
  • Managed Juniper SRX500 firewall, which protected 100+ servers and desktops spanning two HIPAA-compliant organizations.
  • Provided key server, network, and facilities advice to customer, which resulted in successful creation of small server room.
  • Assisted Developers in creating/modifying Jenkins Continuous Integration jobs.
  • Managed an Electronic Health Records (EHR) stack [based on Apache/Tomcat/Oracle], which served PHI to patients and healthcare providers.
  • Collaborated with Surescripts [e-prescription network] IT personnel to facilitate secure electronic transmission of medical prescriptions between healthcare providers and pharmacies, which were prescribed within an EHR application.
  • Collaborated with LabCorp [clinical laboratory network] IT personnel to facilitate secure electronic transmission of clinical laboratory results into an EHR application.
  • Served as interim HIPAA Compliance Officer, and provided mandatory HIPAA training to 10+ customer staff members via LawRoom online compliance training platform.
  • Served as HIPAA Security Officer in charge of 5+ TBs of data [24+ million patient records].
  • Managed DHCP and Proxy services.
  • Managed Enhance Tech UltraStore RS16IP4 iSCSI SAN, which included multiple SAS/SATA disk shelves.
  • Built RPM packages for Amazon Linux distribution as needed.
  • Managed highly complex Electronic Data Interchange (EDI) environment, which sent and received critical patient laboratory results.
  • Managed customer public web presence.
  • Managed Oracle 11gR2 Database environment, which involved software updates, account management, security, and backups.
  • Managed multiple Juniper/Cisco firewalls/switches.
  • Managed multiple VMware ESXi instances.
  • Performed JVM Monitoring and Tuning, which helped to stabilize a mission-critical application.

System Administrator: Stanford University, Stanford, CA (2011 – 2012)

  • Customers included research and production groups within the organization.
  • Supported 150+ production, test, and development virtual machines running MySQL/PostgreSQL and Apache/Tomcat/RoR services, among others.
  • Administered a 10-node VMware ESX 5.0 cluster running on EqualLogic PS Series iSCSI SAN storage.
  • Maintained HP MSA 2012 FC SAN storage with multiple SAS/SATA disk shelves.
  • Deployed Cobbler for OS Provisioning.
  • Administered departmental web server, which hosted 30+ websites.
  • Monitored health of various services via Nagios.
  • Procured, installed, and administered NetApp FAS3240 (ONTAP 8.1 7-mode) filer and associated SAS/SATA disk shelves.
  • Maintained Subversion (SVN) service for various internal groups, and Git for our own operations.
  • Administered RHEL and Windows servers.
  • Utilized DocuWiki for internal documentation. Installed, configured, and managed Brocade VDX (10 GbE) and HP ProCurve switches.
  • Performed basic DBA duties for MySQL and Oracle instances.
  • Maintained HIPAA-compliant computing environment.
  • Deployed and maintained a Bacula instance, which protected approximately 15 TB/month.
  • Supported a 32-node HPC cluster that utilized Platform LSF and ran both serial and parallel bioinformatics applications.
  • Wrote Puppet code as needed to control/automate server/application infrastructure(s).
  • Deployed two-node NFS Cluster based on Red Hat High Availability Add-On.
  • Deployed two-node Web Cluster involving Apache Web Server and F5 Load Balancer.
  • Assisted in migration of mission-critical VMware Appliance to Xen, KVM, Virtual Box, and Amazon EC2.
  • Utilized Monitis for external monitoring of server performance and availability.
  • Leveraged Monitis Full Page Load Monitoring feature to diagnose slow page load issue, which was then promptly fixed by our Developers, and resulted in drastic improvement in customer experience.
  • Installed/configured Atlassian Crowd (with Active Directory connector) as a centralized authentication mechanism for our Atlassian Jenkins/Jira instances.
  • Implemented Cacti for performance monitoring.

System Administrator: Seda Systems, Durham, NC (2009 – 2011)

  • Customers included several small to medium-sized Genomics and Professional Services businesses based in North Carolina and California.
  • Wrote custom tools that operated on and helped automate the analysis of Next-Generation DNA Sequencing (NGS) data.
  • Migrated customers from FTP to SFTP (with additional system hardening).
  • Performed maintenance of Samba services as needed.
  • Provided custom web hosting solutions based on customer needs.
  • Wrote Puppet code as needed to control/automate server/application infrastructure(s).
  • Tracked changes to all Puppet code via Git.
  • Deployed custom High Performance Computing (HPC) cluster which utilized Torque (PBS) and served as an integral component of a bioinformatics analysis pipeline.
  • Deployed and maintained Bacula instances – one of which protects approximately 30 TB/year.
  • Provided auditing of customer IT infrastructure.
  • Performed TB-scale storage expansion to facilitate NGS efforts.
  • Migrated servers to the Rackspace and AWS Clouds.
  • Provided general Linux server support.
  • Provided general Mac/Windows desktop support.
  • Installed, configured, and utilized TWiki for internal documentation.

System Administrator: University of North Carolina at Chapel Hill, Chapel Hill, NC (2005 – 2009)

  • Customers included research and production groups within the organization.
  • Supported 100+ production/test/development servers running MySQL, Tomcat, JBoss, GlassFish, Coldfusion, Blackboard, Oncore, Bugzilla, Oracle Universal Content Management (UCM), and Apache services.
  • Administered campus WWW cluster, which hosted 300+ individual websites.
  • Maintained various system configurations (including campus Blackboard instance) via Puppet.
  • Monitored health of various services via Nagios.
  • Assisted in campus-wide ERP deployment.
  • Administered a clustered NetApp FAS3050 filers and associated FC/SATA disk shelves.
  • Provided DBA with Oracle database server OS builds and storage expansion.
  • Performed hardware troubleshooting/repair as needed.
  • Maintained Subversion (SVN) service for various campus groups.
  • Administered RHEL, Solaris, and Windows servers.
  • Utilized TWiki for internal documentation.
  • Supported 10 production/development servers running microarray/clinical data storage, retrieval, analysis, and visualization services.
  • Installed, configured, and managed Enterasys L2+ switches.
  • Performed basic DBA duties for MySQL and Oracle instances.
  • Installed and configured shared package space for use in bioinformatics data analysis pipeline.
  • Provided consultation to collaborating geneticists/bioinformaticists to facilitate CPU and memory-intensive data analysis via HPC platforms.
  • Maintained HIPAA-compliant computing environment.
  • Provided high-capacity storage/backup for NGS runs and corresponding analysis files.
  • Provided centralized location for collaborators to access microarray images for QA and feature-extraction purposes.
  • Created online flash-based video tutorials for common end-user tasks.
  • Designed and implemented SAN fabric for production servers.
  • Designed and implemented an Open Source tape backup solution.
  • Implemented DNS for private network.
  • Migrated 300+ users across multiple machines to a centrally-managed solution involving LDAP for authentication/authorization and NFS for exporting home directories from file server.
  • Designed and implemented secure multi-organization file-sharing solutions involving Samba and SFTP, which relied heavily on Access Control Lists (ACLs).
  • Supported one HPC cluster that utilized Maui/Torque and another that utilized Sun Grid Engine (SGE) – both of which ran serial and parallel bioinformatics applications.

Computer Lab Assistant: Wake Technical Community College, Raleigh, NC (2004 – 2005)

  • Assisted HPC Bioinformatics students with scripts that interacted with relational databases through web interface.
  • Terminated Cat-5e cable for Cisco Training Lab.
  • Conducted inventory for departmental computer equipment.
  • Troubleshooted computer lab hardware/software.
  • Installed Linux on student machines.

Computer Consultant: North Carolina State University, Raleigh, NC (2004 – 2005)

  • Troubleshooted computer lab hardware/software.
  • Provided assistance to students with regards to general questions involving calculus-based software.
  • Troubleshooted various end-user issues involving file-transfer, printing, and email.

Education

Planned

Certificate in Advanced Computer Security: Stanford University, Stanford, CA (2018)

  • Coursework included Using Cryptography Correctly, Writing Secure Code, Exploiting and Protecting Web Applications, Software Security Foundations, Network Security, Emerging Threats & Defenses.

Work In Progress

Certificate in Python Programming: Wake Technical Community College, Raleigh, NC (2018)

  • Coursework included Computing Fundamentals, Introduction to Programming for Data Science, Python Programming, Python Application Development, and Advanced Python.

Completed

Certificate in Linux Administration: Wake Technical Community College, Raleigh, NC (2005)

  • Coursework included Linux Administration/Security and Linux/Windows Integration [via Samba].

Certificate in Bioinformatics Computing: Wake Technical Community College, Raleigh, NC (2004)

  • Coursework involved creating a custom Bioinformatics web application, which ran on a self-managed Linux/Apache/MySQL/Perl (LAMP) stack.
  • Curriculum was designed to train Biological Sciences workers to host/serve their own research data on the Internet via Open Source Software.

Bachelor of Science in Biochemistry: North Carolina State University, Raleigh, NC (2003)

  • Coursework included Calculus, Statistics, Physics, Economics, Communication, Organic/Analytical/Physical Chemistry, Microbiology, Zoology, Human Physiology, and Genetics.
  • Arrived at Cumulative GPA of 3.662, and received Latin Honors distinction of Magna Cum Laude (“with great honor”).
  • On Semester Dean’s List twice.
  • Completed Calculus lab assignments on Solaris Unix.

Associate of Science in University Transfer: Durham Technical Community College, NC (2001)

  • Coursework included Psychology, Sociology, General Chemistry, Biology, and Human Anatomy/Physiology.
  • Arrived at Cumulative GPA of 3.679.
  • Received Durham Technical Community College President’s Scholarship.

Training

Planned

Penetration Testing: Department of Homeland Security FedVTE, Online (2018)

Penetration Testing with Kali Linux: Offensive Security, Online (2018)

Linux Operating System Security: Department of Homeland Security FedVTE, Online (2018)

Work In Progress

Linux Networking and Administration: The Linux Foundation, Online (2017)

Completed

Cloud Computing Security: Department of Homeland Security FedVTE, Online (2017)

Introduction to Ansible: Red Hat, Online (2016)

Cisco Certified Network Associate (CCNA) Routing and Switching (R&S) Exam Prep: Wake Technical Community College, Raleigh, NC (2016)

Puppet Labs Stanford Hackathon: Puppet Labs, Stanford, CA (2012)

F5 BIG-IP Local Traffic Manager (LTM) Advanced Topics v10.x: F5, San Jose, CA (2010)

CollabNet Subversion 1.4 for Administrators: CollabNet, Online (2008)


Certifications

Planned

AWS Certified DevOps Engineer: Amazon Web Services (2018)

Offensive Security Certified Professional (OSCP): Offensive Security (2018)

Cisco Certified Network Associate (CCNA) Routing and Switching (R&S): Cisco (2018)

Work In Progress

Linux Foundation Certified Engineer (LFCE): The Linux Foundation (2017)

Completed

Red Hat Certified Technician (RHCT): Red Hat (2005)

Security+: CompTIA (2004)

Network+: CompTIA (2004)

Linux+: CompTIA (2004)


Conferences Attended

Silicon Valley VMware User Group (VMUG): Sunnyvale, CA (2012)

Supercomputing (SC): Seattle, WA (2011)

SouthEast LinuxFest (SELF): Spartanburg, SC (2010)

Open Source Bridge: Portland, OR (2010)

WordCamp Raleigh: Raleigh, NC (2010)

Large Installation System Administration (LISA): San Jose, CA (2010)

Large Installation System Administration (LISA): Baltimore, MD (2009)


Activities

Member: Electronic Frontier Foundation (2017 – Present)

Donor: Wikimedia Foundation (2013 – Present)

Member: League of Professional System Administrators (2009 – Present)