Experience

Working in IT industry for over 20 years, I am well experienced in solution design, implementation and support. My responsibilities include understanding the requirements, translate them to technical requirements, assess the infrastructure and network, produce design, implement the design and provide technical support.

Summary

  • VMware Certified Specialist - vSphere with Tanzu (Kubernetes, Docker and Container)
  • VMware Certified Master Specialist - VMware Cloud on AWS
  • VMware Certified Advanced Professional - Cloud Management and Automation Design (VCAP-CMA)
  • VMware Certified Professional - Cloud Management and Automation (VCA-CMA)
  • VMware Certified Professional - Network Virtualisation (VCP-NV)
  • VMware Certified Professional - Datacenter Virtualisation (VCP-DV)
  • VMware Certified Professional - Desktop Management (VCP-DTM)
  • VMware Certified Specialist - vSAN
  • Microsoft Certified Systems Engineer (MCSE)
  • Microsoft Certified Professional (Exchange)
  • Microsoft Certified Professional (SQL)
  • Experience in translating business requirements into detailed technical architectural design
  • Proficient in architecting, implementation, configuration and maintenance Virtual Datacenter and VDI using VMware vSphere, ESXi, vCenter server, vSAN and Horizon View
  • Hand-on-experience in VMware NSX-T implementation, upgrade and support
  • Hand-on-expertise in design, deployment and support multi-datacenter VMware vSAN clusters, stretched vSAN clusters
  • Hand-on-expertise in design, deployment and support multi-datacenter VMware Desktop infrastructure with VMware Horizon Cloud Pod architecture and provide automatic failover across datacenters
  • Experienced in design and deployment of VMware Cloud Foundation
  • Hand-on-experience in implementing and managing multi-datacenter VMware infrastructure
  • Experience in VMware vRealize/Aria Automation
  • Hand-on-expertise in design, deployment and management of multi-site and multi-forest Active Directory with RBAC security access and delegation
  • Hand-on-expertise in design, deployment and management of large scale Microsoft Exchange Servers
  • Hand-on-expertise in design, deployment and management of Microsoft AlwaysOn High Availability SQL clusters
  • Hand-on-expertise in design, deployment and management of large scale remote access using Citrix NetScaler ADC, XenApp and RDS
  • Experience in deployment and management of Microsoft SharePoint Servers
  • Experience in deployment and management of Microsoft Configuration Manager (SCCM) and Server SOE deployment
  • Experience in Windows 7 deployment using Windows SCCM and Windows Deployment Service (WDS)
  • Hand-on-experience on RHEL SOE deployment
  • Experience in RHEL infrastructure servers design, deployment and management
  • Exeprience in administering BackupExec and CommVault backup systems
  • Experience in P2V VMware Converter
  • Comprensive knowledge & expertise in VMware High Availability (HA), Distributed Resource Scheduler (DRS), Fault Tolerant (FT), Clustering, vMotion and Host Profile
  • Hand-on-experience in Cisco switches and HP switches, HP Procure wireless controller and wireless access points, HP InstantOn switches and InstantOn wireless access points
  • Hand-on-expertise in implementation and management of CheckPoint Firewall, Palo Alto Firewall and NSX-T Distributed Firewall
  • Hand-on-expertise in deployment and management of Active/Passive Big-IP F5 load balancers
  • Hand-on-expertise in design, deployment and management SMTP gateway and Web gateway
  • Experience in deployment and management of two-factor authentication using Vasco and RSA
  • Experience in deployment and management of muti-datacenter Active/Passive BAE data diode systems
  • Experience in new datacenter setup or datacenter migration by installing new physical servers and cabling physical servers

Computer Skills

  • Microsoft Operating Systems - Windows Server 2000 / 2003 /2008 / 2012 / 2016 / 2019 / 2022 and Windows XP / 7 / 10 / 11
  • Linux Operating Systems - Red Hat 6.x / 7.x / 8.x / 9.x and Centos, Fedora, Ubuntu
  • Scripting / Language - PowerShell, PowerCLI, BASH, VBScript, VB/VB.Net, C, C++, Java, Python, Javascript, Perl
  • Automation - Microsoft Configuration Manager (SCCM), VMware Aria Automation, vRealize Orchestrator, Terraform, SaltStack, Cloud-init, YAML, JSON, RHEL Satellite and Ansible
  • RDBMS - Microsoft SQL Server 2000 / 2005 / 2008 / 2012 / 2016 / 2017 / 2019, MySQL, PostgreSQL
  • Microsoft - Active Directory, Group Policy, SharePoint, ADFS, Windows Clustering, DFS/DFS-R, IIS, WSUS
  • DecSecOps - Bitbucket, Artifactory, Ansible, Docker Container and Docker Swarm
  • Cloud - Microsoft Azure and Azure AD, Office 365, VMware Cloud on AWS, Amazon Web Services (AWS)
  • Exchange Server - Microsoft Exchange Server 2000 / 2003 / 2016 / 2019
  • SMTP Gateway and Secure Web Gateway - Microsoft Exchange Edge server, Clearswift SMTP gateay, MailMarshal SMTP gateway
  • Secure Web Gateway - ISA, Clearswift Secure Web Gateway, Palo Alto Web Filtering, RHEL Squid Proxy
  • Two-Factor Authentication - Vasco and RSA
  • Certificate Authority - Microsoft Certificate Authority and Linux Certificate Authority
  • Virtualization Tools - vSphere 5, 6, 7, 8 / vCenter 5.x /6.x /7.x /8.x, NSX, Site Recovery Manager, VMware Converter, vROPs, vRSLCM, vSAN, Workspace ONE Identity Manager, Horizon View VDI, App Volume, UAG, SDDC Manager, NVIDIA License Manager, Citix NetScaler ADC, Citrix XenApp and RDS
  • Storage - HP 3PAR, DELL powerVault iSCSI Storage, NetApp and vSAN
  • Kubernetes - vSphere with Tanzu, namespace, docker, container, pods
  • Nutanix - AHV, Prism, Data Protection, LCM, File Server
  • Mobile Device Management - AirWatch, MobileIron
  • Technologies Knowledge - DNS, DHCP, NAT, WLAN, LAN, vLAN, VoIP, VPN, Overlay Network
  • Security - Splunk, iVanti, Tenable, Symantec Datacenter Security (DCS), Symantec EndPoint Protection (SEP), Symantec OfficeScan Ent, Microsoft AppBloker
  • Load Balancing - Big-IP F5 and Linux Keepalived
  • Applications - Commvault, BackupExec, Apache, Cisco UCS Manager, TRIM, Symantec Enterprise Vault
  • Others - HP Server/Blade, DELL PowerEdge, Hitachi Server and Cisco UCS System
  • Monitoring - vROP, SCOM, Observium, Prometheus, Grafana and Zabbix
  • Disaster Recovery - VMware Site Recovery Manager, Nutanix Data Protection

Department of Defence

    (Nov 2023 - till date)

  • Projects typically include design, implementation and management of VMware-based solutions and Docker containers.
  • Solutions include implementation and management of systems and Docker containers in classifed environments.
  • Developed, tested and deployed automation solutions using Ansible, incorporating version control with Bitbucket.
  • Designed, implemented and manage Linux systems.
  • Created and maintained batch scripts for automated tasks.
  • Utilize Artifactory and Docker containers in DevSecOps to develop, test and deploy automated solutions.
  • Manage VMware infrastructure, including SDDC, vCenter, vSphere, vSAN and NSX-T.
  • Administer and upgrade Palo Alto Firewalls, implementing and maintaining security policies.

Department of HomeAffairs / Classified Systems Delivery

    (July 2016 - Nov 2023)

  • Projects typically include design, implementation, migration and management of VMware-based solutions, Windows-based solutions, RHEL-based solutions, F5 load balancing or integration with other systems.
  • Projects including new datacenters installation, racking and cabling new physical servers; installation of vSphere hypervisor, Windows and RHEL operating systems.
  • Designed, installed, configured and manage multi-datacenter vSpphere (vCenter & ESXi servers) using standard vSAN clusters and Streteched vSAN clusters for automatic VM server failover.
  • Admininstrating multiple VMware vCenters of VM servers (multi-vendor) with HA, vMotion and DRS.
  • Implemented and manage policy driven storage policy using VMware vSAN.
  • Designed, implemented and manage VMware Desktop Infrastructure (VDI) for hundreds of VMs with multiple pools across multi-datacenter and auto-failover using Cloud Pod Architecture, Unified Access Gateways (UAG) and F5 Load Balancers.
  • Cross Single-Sign-On (SSO) vCenter live / cold VM servers migration within the same datacenter or cross datacenter.
  • Uprade and manage multi-datacenter NSX-T with micro-segementation and distributed firewall.
  • Design VMware Cloud Foundation (VCF), and implemented in one datacenter as POC.
  • Deployed, upgrade and manage VMware vRealize suite, including vRSLCM, vIDM, vRA, vROPs and Log Insight.
  • Deployed and manage multiple Active/Passive Big-IP F5 across multiple datacenter to load balancing VMware, Windows, RHEL servers and applications.
  • Designed, installed, configured and manage multiple Microsoft Active Directory forests and domains acrosss multiple datacenters; configured and manage Active Directory group policies.
  • Upgraded and manage Microsoft Configuration Manager (SCCM) and server SOE deployment.
  • Designed, implemented, upgraded and manage Microsoft Certificate Authority, RHEL/Linux Certificate Authority
  • Designed, implemented, upgrade and manage multi-forest, multi-site Exchange DAG and non-DAG servers with thousands of users.
  • Designed, implemented and manage Microsoft DFS Namespace servers, DFS servers, High Availability DHCP servers, KMS servers and ADFS server.
  • Designed, implemented and manage multi-datacener High Availability AlwaysOn SQL servers.
  • Deploy and manage Microsoft Servers and clusters.
  • Designed, deployed and manage RHEL Squid web proxy servers, and configured load balancing using F5 and keepavlived in multi-datacenters.
  • Create automation or scripting, update automated process for installation | upgrade | migration using PowerShell, PowerCLI, BASH for Microsoft SOE / RHEL SOE; Microsoft Exchange Servers; SQL Servers; VMware UAG; VMware VMs migration; VM patching; Certificates creation, signing and distribution; file servers migration; users Home/Profile/Redirected folders migration; Active Directory and group policies backup; DHCP scope creation; antivirus defintion downlaod and transfer; and numerous tasks for Windows application, RHEL application and VMware management.
  • Upgrade and manage BAE data diode and datagate Orchestrator.
  • Manage RHEL SOE (7.x / 8.x) and deploy many RHEL application servers.
  • Manage MailMarshal SMTP gateways.
  • Upgrade and manage Active/Passive RSA two-factor authentication systems.
  • Hand-on-experience using API and Postman to manage VMware infrastructure.
  • Hand-on-experience with Windows and Linux NTP server, NTP clients and Stratum levels.
  • Work as Subject Matter Expert and Technical Lead for Platform Services team.
  • Using ITIL methodology for Change and Incident management.
  • Create and maintain technical documents and provide ad-hoc supports.

GeoScience Australia

    (July 2013 - June 2016)

  • Planned, migrated and managed whole agency users cross Active Directory Forest migration, and remediated/addressed any dependency with Windows / Linux (Solaris/RHEL) application servers, Hitachi SAN storage.
  • Designed, implemented and managed Microsoft DFS Namespace servers, DFS/DFS-R file servers in multi-datacenters.
  • Designed, implemented and managed Microsoft Certificate Authority.
  • Designed, implemented and managed High Availability AlwaysOn SQL cluster Servers.
  • Designed, implemented and managed High Availability DHCP serves.
  • Automated assessement of agency's group folders access permissions and nested groups with hundreds of folders and many Terabytes of data hosting in Hitachi SAN; and automated the folders migration to DFS file servers.
  • Planned, migrated and managed Exchange mailboxes cross Active Directory Forest, and enabled Linked mailboxes during the migration; migrated Public Folders to Public Folder mailboxes.
  • Upgraded and managed Citrix Farm, NetScaler ADC and XenApp applications for whole department remote access.
  • Automated Esri ArGIS applications installation with multiple dependencies.
  • Automated/scripting numerous tasks using PowerShell and VBscripts for migrations, installation and operations.
  • Experienced with VMware vCenter 5.x and vSphere 5.x.
  • Deployed VMs using VMware vRA catalog running on VMware (vCenter/ESXi)
  • DR migration testings using VMware Site Recovery Manager (SRM).
  • Experienced with Solaris, RHEL, Oracle database, Hitachi SAN, TRIM and CommVault.
  • Implemented, managed Single-Sign-On using SAML authentication with Azure AD, Citrix NetScaler ADC and Exchange server for user MobileIron Exchange mailbox access.
  • Experienced with MobileIron and Avaya VoIP.

Training

  • Bachelor of Science (Computer Science) - The University of Auckland
  • Numerous trainings from VMware, Microsoft, Red Hat, DDLS, NetApp, CBT Nuggests, ACloudGuru, Udemy and online.
  • Years home lab training - Technologies development, scripting and programming.