Andrew Bucklin

Alexandria, VA 22301 https://Andrew.guru -- Andrew Bucklin Objective To obtain a contract position in the Information Technology field within a company that offers me the ability to grow and succeed. Summary Experienced Senior Solutions Architect with a demonstrated history of working in the information technology and services industry. Swift understanding of complex enterprise infrastructure. Strong engineering professional skilled in systems engineering, cyber security, and federal government requirements. Effective leader and subject matter expert. Experience July 2014 – Present National Transportation Safety Board Washington, DC Senior Systems Engineer Primary responsibilities include providing Engineering, Design, Installation, Maintenance, and Operational support for the technologies listed below: • Microsoft Windows Server -) – Active Directory, Group Policy, DHCP, DNS, IIS, File Services, DFS, NFS, ADCS, Certificate Authority (PKI), Work Folders, and PowerShell. • VMware vCenter – Highly available VMware environment utilizing HP blade enclosures and HP SANs. • Microsoft SQL Server -) – SQL servers with Availability Groups. • Backups – StorageCraft ShadowProtect and Veeam B&R backup infrastructure, utilizing 3-2-1 backup methodology with off-site cloud storage and best practices for applicationconsistent backups. • Microsoft Office 365 – Identity synchronization from on-premises Active Directory with federation to ADFS and Okta. Configured DLP, ATP, among other features. • Microsoft Azure – Extend on-premises network to Azure and migrated to IaaS and PaaS offerings. Deploy Apple DEP with Intune MDM. • Microsoft SCCM and WSUS – OS patches and software deployments. • BigFix – Compliance to DISA STIGs, third-party software deployment and patches, and for other hardware/software reporting purposes. • Firewalls – Maintenance of Cisco FirePOWER and CheckPoint firewalls in HA setup. • Cybersecurity – Barracuda Web Security Gateway, Zscaler Internet Access, squidGuard, Plixer Scrutinizer, Metaflows, AlientVault, Tenable Nessus vulnerability scans and remediation, McAfee ePO, and Symantec Endpoint Protection. • Infrastructure Monitoring – SolarWinds S.A.M. utilized to monitor network equipment, servers, and other infrastructure. • Disaster Recovery – Design systems to be highly available and document systems to ensure continuity of operations in the event of a disaster. • Remote Access – Cisco AnyConnect, Juniper / Pulse Secure, Zscaler Private Access • Familiar with government guidelines, regulations, assessments, and required reporting, such as FedRAMP, FIPS compliance, TIC, NIST / DISA STIG, FISMA reporting, CyberScope, HVAs, and CDM program. Worked with other agencies on collaborations and pilots, including the Office of Management and Budget (OMB) and DHS. Worked with multiple parties on FedRAMP sponsorship. August 2005 – Present Tech Advantage Washington, DC Senior Solutions Architect Primary responsibilities include providing Engineering, Design, Installation, Maintenance, and Operational support for the technologies listed below: • Microsoft Hyper-V – Build and maintain highly available Hyper-V Failover Clusters on Server 2016 and Server 2019, utilizing direct-attached storage (Storage Spaces Direct) and iSCSI. • Amazon AWS – Design and implement multiple AWS products (e.g. EC2, S3, Route53, Aurora, CloudFront, CloudWatch). • Microsoft Exchange (2003 - 2019) – Build, maintain, and migrate highly available Exchange infrastructures with third-party email hygiene products (Proofpoint, Mimecast, FortiMail, GFI, Barracuda, and SpamTitan). • Web Servers – pfSense firewall with pfBlocker and Suricata IDP / IPS, NGINX, HAProxy, Traefik, Apache, MySQL/MariaDB (including clustering), and Docker. • Microsoft Remote Desktop Services – Desktop virtualization (VDI) and Application virtualization services using Microsoft RemoteApp. • Video Surveillance Systems – Design, install, and configure of network video recorders (NVR) and IP cameras. • Voice-over-IP (VoIP) – Design, implement, and support of multi-site VoIP systems on various platforms (e.g. ShoreTel, 3CX, and FreePBX). • Infrastructure Monitoring and Automatic Remediation – Utilize PRTG Network Monitor to automatically remediate infrastructure issues and alert via email, text message, and phone call, to ensure timely response and remediation of issues that could affect clients. • Open Source – Contribute to open source community for projects such as pfSense, NextCloud / ownCloud, NGINX, Traefik, TinyProxy, IceCast, Home Assistant, and SoftEther. • Network Design & Implementation – Branch office buildouts and upgrades; routers, switches, wireless (UniFi), structured cabling, servers, endpoints, WAN, VLANs, guest access, etc. Rearchitected flat networks to incorporate segregation of networks, traffic types (e.g. data versus voice), and environments (development, testing, staging, and production). • Managed Services – Maintain networks and systems and responsible for the oversight of service desk operations for over 50 small and medium sized business clients. • IT Policies and Procedures – Write based on best practices and third-party guidelines or standards (NIST, HIPAA, PCI) and utilize various tools to technically enforce. April 2012 – July 2014 InfoReliance Washington, DC IT Consultant (Contractor) Primary support specialist and Service Desk team lead. Modernized desktop computing environments by using Microsoft Deployment Toolkit (MDT) to create a standardized baseline Windows OS builds. Provided in-person and remote support using LANDesk, Bomgar, and ScreenConnect (ConnectWise Control). Utilized a variety of ticketing systems (e.g. FreshDesk, Zoho, and HEAT) and wrote documentation and customer-facing KB articles. Education 2004 – 2008 Liberty University Lynchburg, VA ▪ Graduated with a bachelor’s degree in Management Information Systems and held a GPA of 4.0.