portfolio

Work & Experience

networking

Automation

Container & Virtualization

Security

Highlight 1

Lorem Ipsum

FIlm

Highlight 2

Dolor Amet

Film

Highlight 3

Consectetur

Commercial

Highlights

Projects

  • Networking –  dolor sit amet, consectetur adipiscing elit.
  • Automation – aliquet bibendum ultricies. Lorem ipsum dolor sit amet, consectetur adipiscing elit.
  • Container & Virtualization –  nulla justo, mollis id maximus sed, pellentesque sit amet ex. Nulla vel viverra purus.
  • Secutity –  euismod nunc ipsum, sed elementum lectus varius a. In feugiat malesuada urna

“Knowledge is power”.

Sir Francis Bacon

Featured Production Networks I have Designed and Implemented.

(ip addresses removed and designs modified for security reasons)

Small Enterprise Network

Click Here – Physical

.

 

.

Medium Enterprise Network

Click Here – Logical

.

 

.

CI/CD Pipeline

Click Here – Logical

.

 

.

CI/CD Pipeline

Click Here – Logical

.

 

.

CI/CD Pipeline

Click Here – Logical

.

 

.

Unified Cloud, Virtual and Physical Solution

Click Here – Logical

.

 

.

Technologies

Windows – MS Servers, 2003, 2008, 2012, 2016, 2019, 2022 AD services, Group Policy, PowerShell, and all aspects of design, maintenance and administration.  Windows XP to Windows 11.  MS Office, Office 365, MS Exchange, 2003, 2008, 2016, 2019, Outlook Office 365.

Linux – Debian distributions: Ubuntu, Kali & Red Hat distributions, Red Hat, Rocky Linux. NginX, Apache, OpenSSH, Samba, TMUX, NeoVIM.

 Cloud – AWS – IAM, EC2, S3, Route 53

Devices – Cisco switching and routing Firewalls: PaloAlto.

VM & Containerization

Automation

Cybersecurity

Devices and Hardware

 

  Windows

 

MS Windows – Implemented Windows products on Premise, in the Cloud, in remote sites and in colocations.  Demonstrated expert experience with MS Servers, 2003, 2008, 2012, 2016, 2019, 2022 AD services, Group Policy, PowerShell, and all aspects of design, maintenance and administration.  Experience with Windows 7, 10, 11.  MS Office, Office 365, MS Exchange, 2003, 2008, 2016, 2019, Outlook Office 365.

Supported systems infrastructure, hardware, and software, including: analysis, planning, design, development, implementation, provisioning, upgrade and day-to-day operations

Functioned as a technical expert in the design, development, modification and debugging of Windows System Hardware and Operating Systems.  Have a solid knowledge and significant experience with core computer infrastructure services such as DNS, DHCP, FTP, file structures, IP addressing

Expert knowledge of development and implementation of GPOs, Server hardening and Clustering technologies.  Automate monitoring and other workflow processes to increase efficiencies for projects and operations

Provided document response and resolution processes for team compliance; develop training content to educate junior staff.  Technical diagnostic expertise including problem investigation, reproduction, and resolution skills

 

Linux

 

Linux Red Hat & Debian – Installation, configuration and administration of Debian distributions: Ubuntu, Kali & Red Hat distributions, Red Hat, Rocky Linux. NginX, Apache, OpenSSH, Samba, TMUX, NeoVIM,  SystemD, Proxmox. Docker, Portainer, Kubernetes, Loki, Helm, Ansible, Terraform, Jenkins, Grafana, Prometheus, AlertManager, Squid Cache Server, guacamole Remote Desktop, OSTicket – UVTicket Ticketing System.

Linux system Administrator – Automation scripting (Bash, Python).  Administration, installation, configuration, tuning, upgrade, build and release.

  • Set up and configure Linux servers, networks and systems
  • Monitor server performance and identify potential issues
  • Plan and implement system upgrades and maintenance
  • Troubleshoot server and network problems
  • Create and manage user accounts, permissions and access rights
  • Ensure server security and data integrity
  • Perform scheduled backups and data recovery processes
  • Automated the implementation of system upgrades.
  • Documented network changes, system configurations and troubleshooting steps.
  • Ensured system compliance with industry standards and policies
  • Purchases and implementation of new hardware and software as needed
  • Monitor server usage and optimize system resources

 

AWS

 

AWS – IAM, VPC, EC2, ECS, EBS, RDS, S3, Lamda, ELB, Auto Scaling, Route templates to create custom VPC, subnets, and NAT and Route 53.

Worked on multiple projects including the rollout of a new ERP system and a Warehouse Management System (WMS).  Involved in the development, planning and its rollout.  Implemented accounting SAGE system on AWS and maintained all aspects of its day-to-day functionality.

Created and utilized tools to monitor our applications and services in the cloud including system health indicators, trend identification, and anomaly detection.  Worked with development teams to help engineer scalable, reliable, and resilient software running in the cloud

Docker to AWS – Experience migrating on-site solutions to cloud based offerings, such as Amazon’s AWS.  Implemented security controls and best practices for cloud environments, resulting in a 75% reduction in security incidents and a 20% increase in customer trust. Research and evaluated new cloud technologies and services, leading to the adoption of a new cloud provider and a 30% reduction in cloud costs.

 

Networking

 

In depth knowledge of Subnetting, DHCP Server, Broadcast and collision domains, VLANs, VTP configuration and troubleshooting, Spanning Tree, Access Lists, NAT, PAT, Password Recovery, Backup and restore configurations, SNMP, Port Security, DHCP Snooping, TACACS, RADIUS, Static Routes, RIP, EIGRP, OSPF, BGP, GRE Tunnel, PPP, PPP CHAP, Voip, CUCME.

Routing, Nexus & Catalyst Switching – Configure trunk ports and implement granular control of VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that can extend further across the network infrastructure than previous generation of switches.

Configure port-profiles as part of the NX-OS command structure that allows for configuration of multiple ports and port-types via inherited configurations applied via a single command that reduces administrative error and allows for better configuration readability.

Integrate a virtual version of Nexus: Nexus1000v into VMWare to extend Nexus capabilities directly adjacent to virtual machines so that they benefit from Cisco switching capabilities and network topology consistency ensuring VMs maintain their subnet/VLAN relationships during failover.

Configure secure privileged administrative access to the Cisco IOS system. Enable the encryption of system passwords to prevent unauthorized users access to passwords in the system configuration.

Configure secure access to the console and VTY ports, and set the interval that the EXEC command interpreter waits until user input is detected on the Console and VTY ports. Also, configure the console and VTY ports log messaging to not interfere with active device configuration.

Configured and administrated VLAN Trunking Protocol to reduce administrative overhead. Enable secure sharing of VLAN information to prevent the introduction of rogue devices from affecting the VLAN database. Shutdown unused switches ports following Layer 2 security best practices.

Administrated Local VLANs based on department function, and configure ports with static VLAN assignment, static 802.1Q trunks, and dynamic ISL trucking using

 WireShark

Cisco Meraki – wireless mesh

 

VMware

 

 VMware vSphere Standard and Enterprise -Versions: 5X, 6X, & 7X.  Experience with installations, configurations, troubleshooting and maintenance.   Hands on with  ESXI, vCenter Server.  Strong knowledge of Virtualization (VMware), Storage (SAN/NAS, RAID), Networking and Backups.

Experience with vMotion, DRS, HA, Distributed Switching & vSAN.  Used extensively on premises and in co-locations to run company’s production environments.

Proxmox VE – with clustering in a 5 server configuration, Supported  RedHat and Ubuntu servers along with Windows VMs.  Proxmox Servers were used as backups and in testing environments.

VMware Workstation, HyperV & GNS3 – Used on servers and on the desktop to virtualize different equipment and environments.

 

Docker

Docker– YAML scripting, Docker Compose, Swarm.

Incorporated Docker in the  testing and deploy of applications, to  quickly install and scale applications into production environment.

Implemented Docker on premises and on AWS to provide developers and admins a highly reliable, low-cost way to build, ship, and run distributed applications at any scale.

Configuration Management, Change/Release/Build Management, System Administration, Support and Maintenance in environments like Linux and AWS.

Portainer – Docker manager.

 

Kubernetes

  

Kubernetes (K8s) – JSON scripting used as communicating between K8s components and YAML used as a configuration format for defining K8s resources, Docker, Docker Compose and Swarm were used as well.

Designed and implemented the creation of a 9-node Kubernetes cluster that improved deployment efficiency and significantly reduced downtime.

Mapped out and executed a strategy for migrating 20+ applications to Kubernetes

Utilized Helm charts for efficient and reusable deployments.

Demonstrated excellence in problem-solving by troubleshooting and identifying solutions for complex issues within Kubernetes and Docker environments.

Co-orchestrated the integration of a CI/CD pipeline within Kubernetes, improving development times.

Engineered suitable release management procedures and provided production support for company teams.

HELM – package manager.

LENS – Kubernetes manager.

 

Automation

 

 

 

Ansible -Experience in managing Ansible Playbooks with Ansible roles, group variables and inventory files.

Expertise in configuring Ansible Playbooks with ansible roles to keep Linux and Windows servers configurations updated.  Hands on experience working with GIT for version control and to store the code for further sharing of playbooks.

Implemented infrastructure automation through Ansible for auto provisioning code deployment, software installation and configuration updates.  Wrote many Ansible playbooks for the automation that was defined through tasks using YAML format and ran Ansible Scripts to provision servers.

CI/CD Pipeline

Jenkins & GitLabs CI CD Pipelines, consectetur adipiscing elit. Praesent aliquet bibendum ultricies. Lorem ipsum dolor sit amet, consectetur elit.  fdsfsadf  fsdfas  fdsafasfa fdsfsdf sdfsdfffs f fdsfsafsafaf  fdsfsfsdffsassfsafaf  fsddfsdf fsfsfs fsd ff fds fsd  fs dsfsfsafffff ff gdfgdfg  gfgdgd gdgdgdg fsadfsa  sdfsafas fasfdasf fsafas fsaf fsdfsa dsfsafsd

GitLabs – fsd  fs dsfsfsafffff ff gdfgdfg  gfgdgd gdgdgdg fsadfsa  sdfsafas fasfdasf fsafas fsaf fsdfsa dsfsafsd

Version Control

  

GIT, GITHUB – YAML scripting, Docker Compose, Swarm. fdsfsadf  fsdfas  fdsafasfa fdsfsdf sdfsdfffs f fdsfsafsafaf  fdsfsfsdffsassfsafaf  fsddfsdf fsfsfs fsd ff fds fsd  fs dsfsfsafffff ff gdfgdfg  gfgdgd gdgdgdg fsadfsa  sdfsafas fasfdasf fsafas fsaf fsdfsa dsfsafsd

GitKracken fsd  fs dsfsfsafffff ff gdfgdfg  gfgdgd gdgdgdg fsadfsa  sdfsafas fasfdasf fsafas fsaf fsdfsa dsfsafsd

Monitoring

 

Solarwinds Network Performance Monitor – 

Prometheus – Prometheus was implemented to collect metrics and send alerts.   Used for scraping and storing metrics in an internal time series database.  Data was also sent to a remote storage backend to later be retrieved and the metrics queried.

External exporters for specific hardware and applications were used to ingest data from various sources and produce scrapable metrics for the Prometheus application.   AlertManager  was used to manage the alerts created by prometheus.

Grafana – Prometheus was used in combination with Grafana and  gave it  control over the metrics, and reports, including where they come from, and where they’re going.  Once the data is in Grafana, it was stored in its database and then converted into dashboards which offered the user visualizations populated by data queried from the Prometheus data source.  Grafana Loki was used for logging data.

 

 

Python

Python  – Monitoring and Alerts. Lorem ipsum dolor sit amet, consectetur elit.  fdsfsadf  fsdfas  fdsafasfa fdsfsdf sdfsdfffs f fdsfsafsafaf  fdsfsfsdffsassfsafaf  fsddfsdf fsfsfs fsd ff fds fsd  fs dsfsfsafffff ff

YAML & JSON & Bash – gdfgdfg  gfgdgd gdgdgdg fsadfsa  sdfsafas fasfdasf fsafas fsaf fsdfsa dsfsafsd ghfghf hgdhd  gfhfhfghgdf  hgfhfdh hgfhfgdh hdhdfgh hgdhdh hgdhd hgdhfgh hdhfgh  hgdhdfh hdhdhdh  dhhdfhdfh hdhg

 

Firewalls

PaloAlto Firewall, PaloAlto Security Arechitecture, Initial Device Configuration, Security and NAT, Application ID, Content ID, URL Filtering, Description, WildFire, User ID, Global Protect VPN, Site-to-site VPN, Monitoring and Reporting, High Availability.

Fortigate Firewall, consectetur adipiscing elit PaloAlto Security Arechitecture, Initial Device Configuration, Security and NAT, Application ID, Content ID, URL Filtering, Description, WildFire, User ID, Global

Hands on experience with PfSense Firewall and SonicWall.

Cybersecurity

 

SIEM – Security information and Event Management.

Used to detect, analyze and respond to security threats before they harmed business operation.  SIEM allowed visibility into possilbe nefarious activity within the network so the IT team could respond swiftly to potential cyberattacks and they could be thwarted.  Allowed for smarte and faster responses to threats.

Threat Intelligence, Threat Hunting, Log Data Analysis, Vulnerability Detection.

Security Operations, Incident Response, Regulatory Compliance, IT Hygene. 

Cloud Secuity, container Security, Posture Management, Workload Protection.

EDR – Endpoint Detection Respon. Configuration Assessment. Malware Detection, File Integrity Monitoring.

Kali Linux – 

Hardware

Dell, HP, Cisco, Xerox.  On premise, remote sites and  colocation experience with server provisioning automation, maintenance and performance tuning.  Installation and configuration and maintenance of Dell and HP Servers along with HP printer and Xerox and Toshiba Copiers.  Storage solutions included VMware vSAN, Dell Equalogic, Synology NAS in RAID 6 and 10.

Re-designed and upgraded network infrastructure.  Upgraded servers, routers, switches and firewalls in addition to rolling out all the related software.  Implemented a wireless mesh using Cisco Meraki access points to better cover a 50,000 sq. ft. warehouse and offices.

Rack & Stacked servers and rewired wiring closets, rack redesign of Component upgrades and replacements.  Used Wireshark  to troubleshooting wiring and security issues and other devices such as network meters.  Experience with CAT 5, 6, 7. DAC , RTP and 10GB fiber cabling.

Created schematics and layouts for new systems using MS Visio and other design tools.  Collaborated with software engineers to ensure hardware, software  and co-designs all worked together.   Performed system-level testing to validate hardware against requirements and specifications.  Write technical documentation, such as product design specifications, testing procedures, and user manuals.  Provided technical support for hardware issues, including diagnosing and resolving problems in collaboration with other engineers and technicians.

 

Web Development

Developed and maintained company websites and worked closely with Marketing & Sales to help achieve their goals.  Tools: WordPress, Ecommerce, Subscriptions, Newsletter,  Logo Design, Popups, Email Response, Email Campaigns, Windows Application Hosting, Forms, Google Maps. Languages, Python, PHP, CSS, Html5 & XHTML.

Intelligent Applications: Divi Themes and Page Builder, Elementor, WPforms, Contact 7 Forms, Paid Membership Pro, WooCommrce and MailChimp.Other appllications included Photoshop, Illustrator, CorelDraw, Pixabay, Pexels, Unsplash image libraries.

Marketing & SEO – Google Analytics, Answer The Public, Ubersuggest, ScreamingFrog,  PosthHog, GTMetrix, PageSpeed Insights and Yoast SEO.

Social Media Automation – Buffer, Zapier.

 

Splunk Enterprise

 

Managed the Splunk environment, including monitoring and alerting on system performance and availability.

 Implemented a system to monitor the health of Splunk servers and automatically alerted administrators when problems were detected

 Configured and administered Splunk Enterprise components including Splunk Forwarders, Splunk Indexers, and Splunk Search Heads.

 Developed custom Splunk Enterprise applications, dashboards, reports, and alerts to meet the specific needs of each organization.

 Splunk Enterprise and Splunk Cloud environments

 configuring Splunk, managing Splunk users, and creating Splunk reports

 have a solid understanding of big data concepts

 

Big DATA

 

MySQL – Basic Queries, Subqueries, Complex Queries,  Data Types and Functions, Grouped By, Joins, Window Functions, Regular Expressions, Working with Files, Data Cleaning, Views, Stored Procedures, Summarizing Data, Inserting, Updating, Complex Stored Procedures, Triggers, User-defined Functions, Views, Cursors and deleting data.

Maintained 50 million record client leads database and provided collections and accuracy statistics in the form of reports.  Provided analysis for tracking clients.

Assisted marketing department  with their database needs, and was responsible for the overall maintenance, upkeep and health of the database.  This included mass email and marketing campaigns.

Used TableAU software for reporting and graphing data. Trained junior staff to perform repetitive database tasks like data entry and generating reports.

Maintain mailing calendars and provide general support to Senior Manager to help improve team and program efficiency

Other databases I have worked with include: SQL Server and PostgreSQL.

Navicat Premium – used to provide a consistent environment when working with multiple databases.  Navicat Modeler – Main tool used for data modeling

 

AI

 

Coding & Writing: ChatGPT 3, 4 Llama 2, 3

Graphical: Stable Diffusion, Automatic 1111, ComfyUI, LoRA, Checkpoint.

Contact Me

Get In Touch

Thank you for visiting our website!  I Value your feedback, inquiries, and suggestions.  Please feel free to get in touch with me using the contact information provided.  I will response to your message as soon as possible.

John Cristy

engineer