• Engineered, built, automated, and maintained two DoD-accredited systems: NTCSS Laptop Server and NTCSS VE, which are sold to other government agencies by NIWC Atlantic, ensuring robust and secure virtual environments for government agencies.o NTCSS Laptop Server: high-performance laptops with VMware Workstation for server deployment by end customers.o NTCSS VE: a complex setup including 3 ESXi Servers, vCenter, Veeam backups, HP StoreVirtual SAN appliance, UPS devices, Cisco switches, and management console laptops.• Virtual Environment Management: Performed installation, configuration, and maintenance of virtual environments including ESXi, vCenter, vSphere, VMware Workstation, and Hyper-V.• Network Storage Management: Managed network-based storage platforms, including HP StoreVirtual SAN Appliance and VMware's VSA.• Automated installation and maintenance processes using object-oriented programming (AutoIT), batch scripts, and PowerShell, significantly improving efficiency and consistency across the fleet.• Vulnerability Management: Utilized ACAS (Tenable Nessus and Security Center on RHEL) to scan for system vulnerabilities, creating and executing monthly change management charters for mitigation.• Remediation and Automation: Mitigated vulnerabilities through Windows updates, Active Directory, Group Policies, registry modifications, and custom batch/PowerShell scripts. Automated these changes into IAVA package disks for fleet-wide deployment.• Developed and implemented security policies and procedures, ensuring system compliance with FIPS, NIST standards, and DISA-published STIGs.• Technical Documentation: Produced detailed system administration guides, work statements, and management plans.• Oversaw the RDTE network, managing ESXi servers, vCenter, vSAN, Active Directory domain, WSUS, SCCM, SQL servers, Cisco routers and switches, and Palo Alto firewalls, ensuring seamless office operations.

• Spearhead cyber operations, including the execution of both offensive and defensive cyber strategies, to ensure the security and integrity of critical systems and networks within the Commonwealth of Virginia. • Conduct comprehensive cyber intelligence, surveillance, and reconnaissance (ISR) operations to identify potential threats, vulnerabilities, and anomalies within specified systems and networks. • Perform network terrain audits and penetration testing to assess the robustness of security measures and identify potential areas of improvement. • Conduct basic digital forensics data analysis to investigate and understand cyber incidents, aiding in the development of effective countermeasures and preventive strategies. • Employ advanced software threat analysis techniques to identify and mitigate potential software vulnerabilities and threats. • Respond promptly and effectively to cyberspace events, leveraging cyberspace defense infrastructure capabilities to minimize impact and ensure rapid recovery. • Collect and analyze basic digital forensics data to understand the nature and extent of cyber incidents, providing critical insights for incident response and future prevention strategies. • Provide comprehensive incident response impact assessments, detailing the potential or actual impact of cyber incidents on the organization's operations and reputation. • Produce detailed network security posture assessments, providing a clear and accurate picture of the organization's current security status and areas for improvement.

• Oversaw DevOps and corporate IT operations, implemented multi-factor authentication, and ensured compliance with FIPS, NIST standards, and DISA's STIGs to enhance system security.• Administered Active Directory domain and configured DNS, DHCP, WSUS, SCCM, WDS, MDT, VAMT, and other servers/services.• Managed IIS web servers and SQL databases, supporting the UNICORN program. • Developed diverse utilities and programs for optimized troubleshooting processes.• Provided technical guidance to project managers and contributed to proposal development.• Designed and negotiated server infrastructure upgrades for the 27th IS and 480th ISR Wing.

• Managed and optimized networks and systems for an upcoming CCRI, adhering to FIPS, NIST, and STIGs by DISA, while also maintaining operational stability, scalability, and security.• As a senior system engineer, collaborated with team members and application owners to design customer solutions, evaluate emerging technologies, and provide technical guidance.• Documented design specifications, installation instructions, and new processes, and communicated these through technical reports and presentations.• Performed ongoing hardware and software maintenance, including installations and upgrades, and designed, configured, and secured a virtual server environment (ESXi, vCenter, etc.) and a new hyperconverged VDI with VMware Horizon 7 on Nutanix.

• Due to my outstanding work on the MARMC contract and receiving several letters of commendation, the President and CEO personally requested that I design and create their internal company’s IT infrastructure.• Implemented NIST 800-171/53 standards across company headquarters and branch offices, ensuring compliance with current and prospective government contracts.• Architected network design and server configurations for both on-premise and cloud-based infrastructure.• Developed and presented comprehensive Visio diagrams, PowerPoint presentations, and other informational materials during weekly meetings.• Procured competitive quotes for essential server hardware and software, optimizing budget and resources.• Established a virtual server environment using Microsoft Hyper-V, enhancing system efficiency.• Integrated seamless single sign-on, pass-through authentication, and existing Office 365 applications into a new Azure Hybrid cloud configuration using Azure AD Connect. This was implemented on newly created Norfolk and Pax River office on-premise domain controllers, which I also installed.• Established a VPN to facilitate domain replication between physical sites, ensuring data consistency.• Implemented Group Policy to ensure compliance across all users, computers, and other systems, enhancing overall security and efficiency.

- Single-handedly CREATED the Regional Maintenance Center Intranet (RMCnet), an enterprise-level IT infrastructure, including procurement, installation and configuration of all servers and network devices. - Negotiated quotes for server hardware, parts, software, and services on behalf of MARMC and assisted with purchase requests.- Installed and managed servers and network devices, ensuring optimal airflow, cable management, and network connection.- Designed and implemented the entire network, including configuration of all network devices and services for network management.- Installed and configured ESXi 6.5, vCenter, and vSAN for efficient management of the ESXi hosts and uninterrupted service.- Established an Active Directory domain, setting up domain controllers and creating all necessary accounts for various services.- Installed and optimized Microsoft SQL Server 2014 Databases for various services.- Deployed standardized image throughout the building using PXE boot OS installation.- Configured group policy on the domain to manage various system security items.- Maintained system security and integrity using Symantec Endpoint Protection Manager and McAfee Host Intrusion Prevention.- Installed, configured, and maintained Axway Validation Authority Suite for cryptographic logon, DC Configuration, and enabling SSL on IIS Servers.

• Travel to various bases and shipyards to set up, Install, and SOVT entire network / domain from ground up for ISNS COMPOSE, ORT, CANES, and CENTRIXS systems.• Upgrade/downgrade firmware, configure BIOS and RAID arrays, and install RAM on server hardware (IBM Blade centers, Crystal Servers, etc)• Perform initial iSCSI, CHAP, LUN, and Storage Pool configuration and troubleshooting on FAS, EMC, and IBM primary and remote storage devices/data centers.• Install and configure ESX and Windows Hypervisor for network virtualization and high availability.• Create virtual machine shells, install Windows Server, and configure newly created VMs.• Configure domain, DNS, DHCP, WINS, NMS, TMG, WUG, MS Exchange, File and Print services, Symantec AV Server, SharePoint, IIS, WSUS, WDS, SCCM, SQL, and other services.• Implement PKI Services: Configure Shipboard validation authority server, cryptographic logon (CLO) DC Configuration, Enable SSL on IIS Servers, Tumbleweed Desktop validation services, server certificates, etc.• Configure and troubleshoot Cisco routers and Alcatel switches.• Installed and configured Cisco Identity Services Engine (ISE).

• Administrated clients and workstations, in Active Directory, under the NMCI/NGEN Contract, with over 800,000 users on classified and unclassified Navy, Marine Corps and NNPI networks.• Create tickets and document actions performed in Remedy and HPSM ticketing systems.• Remotely manage workstations using MSRA, PS tools, Net Meeting, RDC, and UNC.• Created, managed, and troubleshot network drives (File Server Management)• Resolve Intranet and Internet connectivity issues involving DNS, proxy settings, layer 1 connections, and group policy enforcement, firewall, and intrusion prevention.• Train end users on systems and applications.