Resume

My Professional Journey

Always looking for new and amazing opportunities.

PDF
Google Doc
DOCX
TXT
LinkedIn

Summary

 

Brian Johnson

15 Years of Experience
San Francisco, CA, United States
Available for hire!
He / Him / His
Brian Johnson

Senior System Administrator with over 15 years of experience specializing in IT Security, Operations, DevOps, and Network Management. My career, spanning roles at Molekule, Eat Just, Stella & Dot, and Synaptics, reflects my adeptness in managing complex IT systems, including AWS and Azure cloud infrastructures, VPN solutions, and private cloud networks. I excel in enhancing security and scalability, streamlining IAM processes, and mentoring global teams.

Work Experience

 

Molekule
Senior System Administrator
2021-02 — 2021-12
assets-img-resume-molekule.svg
Molekule
San Francisco, CA

Developed a comprehensive AWS solution enhancing security and scalability, streamlined IAM across 30 accounts in multiple regions with SSO integration, and formulated best practices and documentation for optimized cloud network management.

  • Designed and deployed a scalable, redundant global Client VPN solution on AWS using FortiGate virtual appliances, with DNS geo-location routing via Cloudflare and Amazon Route 53.
  • Identified and corrected a multitude of security challenges related to AWS EC2 and VPC security groups, VPC routing, OS-level and application-level configurations enhancing the overall security and stability of AWS environments.
  • Consolidated over 400 AWS Identity and Access Management (AWS IAM) [identity and resource-based] policies, roles and groups spanning 30 accounts into AWS Single Sign-On (AWS SSO) and Okta. HRIS supplied user attributes were synchronized from Active Directory and Okta, enabling attribute-based access controls (ABAC) to ensure security of development environments.
  • Integrated private cloud networks with the corporate “local” network using IP Address Management (IPAM), AWS Transit Gateway, Site-to-Site VPN ensuring secure communication across all accounts and regions.
  • Integrated Global VPN and Corporate Network solution with development environments eliminating the need to access critical/production servers using their public IPs, no longer relying on security group whitelisting
  • Documented entire AWS account topology organized by their function, management team, business owners, risk exposure and built network diagrams.
  • Crafted and implemented new user account management process to provide cloud-resource access.
  • Created internal DNS alias/proxy service to provide SSL compliance across all servers (cloud and on-prem) both internally and externally
  • Created AWS VPC on-boarding (network) and EC2/VPC security best practices guide as it relates to the existing corporate/global network
  • Troubleshooted end-user (customer) IOT device connectivity challenges with internal firmware and software development teams
System Administrator
2018-12 — 2021-02
assets-img-resume-molekule.svg
Molekule
San Francisco, CA

Integrated multiple cloud applications into Okta SSO, mentored and on-boarded 50+ global developers on full-stack and e-commerce projects, architected a redundant network for a multi-floor headquarters using Fortinet, enhanced security protocols, and documented and trained on both cloud and on-premises networks.

  • Integrated numerous cloud applications into Okta SSO (single sign-on) including: AWS Single Sign-On and AWS IAM (Federation), Active Directory (to/from), Atlassian Access (and related apps- Jira/Confluence/Bitbucket), Google Workspace/G Suite
  • Mentored development teams understanding the technologies used (full-stack) on the website (Node.js) and e-commerce platform (Magento)
  • On-boarded, mentored and supported development teams (~ 50 remote consultants worldwide) on various full-stack projects ranging from web-frontend to e-commerce backend, to analytics/data engineering teams using a wide array of AWS services: RDS, RedShift, CloudFront, Elastic Beanstalk, and enabling data-analysis streams with Kinesis/Firehose,
  • Headquarters relocation: architected, setup redundant networking solution in new headquarters (3 floors, 15 managed switches and ~30 access points) using Fortinet technologies: FortiGate, FortiSWitch, FortiAP
  • Enabled WPA2-Enterprise encryption, RADIUS authentication to Active Directory
  • Enabled Client VPN authentication, authentication using LDAP and Active Directory
  • Implemented multicast routing enabling Apple AirPlay and Secure AirPrint from anywhere on the corporate network, including Client VPN
  • Isolated internal WAN traffic depending on their exposure risk to outsiders (i.e. conference rooms and ports ) and engineering labs.
  • Documented cloud and on-prem network landscape using LucidCharts and CloudInsights.
  • Provided end-user instruction, training and how-to guides using Atlassian Confluence.
Eat Just
System Administrator
2017-06 — 2018-12
assets-img-resume-eatjust.png
Eat Just, Inc.
San Francisco, CA

Administered Microsoft Azure cloud infrastructure, including Active Directory and SQL Server; established multiple VPCs on AWS with EC2 and S3; implemented a virtualized privated cloud and SAN storage solution using VMware and Nimble; transitioned from Google Apps and Dropbox to Office 365; and extended IT services to remote sites in Roseville and South San Francisco, CA.

  • Primary system administrator of Microsoft Azure cloud/Windows 2016 servers -- including Active Directory, SQL Server, and Remote Desktop Services (terminal services)
  • Setup multiple VPCs using Amazon Web Servers (AWS) – multiple EC2 compute resources and S3 buckets
  • Architected virtual machine and shared storage (SAN) storage solution in remote Datacenter using technologies from VMware, Nimble storage, HP/Aruba switches and Fortinet/FortiGate
  • Assisted with the migration from Google Apps and Dropbox to Microsoft Office 365
  • Expanded core IT network services to remote locations; datacenter in Roseville, CA; warehouse in South San Francisco, CA
Stella & Dot
Systems Administrator
2014-01 — 2016-09
assets-img-resume-stelladot.png
Stella & Dot
Brisbane, CA

Conducted a migration of 250 mailboxes from Rackspace to Office 365; relocated about 50 finance servers from Burbank to Atlanta using VMware vSphere and Veeam; standardized and migrated office network equipment from Cisco to Sonicwall/Brocade; transitioned from NetApp to Nimble storage; and supported the IT equipment move during headquarters relocation.

  • Rackspace to Office 365 migration - migrated approx. 250 mailboxes from Rackspace Exchange to Office 365
  • Vmware data-center migration - migrated approx. 50 finance (Microsoft GreatPlains, Cognos BI) servers from Burbank, CA to Atlanta, GA utilizing VMware ESX Server and Veeam
  • Office network equipment migration/standardization - standardization of network equipment (Sonicwall/Brocade) in all Offices (migrated from Cisco ASA/Catalyst) - maintaining VLANs, routing and redundant WAN
  • File server migration - Migrated from NetApp filer to Nimble storage array, setup for VMware using NFS & iSCSI
  • Headquarters relocation - Assisted team moving al IT equipment to new HQ, including phones, network devices, servers
Synaptics
Helpdesk Support / System Administrator
2008-11 — 2013-11
assets-img-resume-synaptics.png
Synaptics
Santa Clara, CA

Administered Windows servers and managed Active Directory services; Deployed global Cisco TelePresence video conferencing solutions; +Optimized IT operations with a scalable, ITIL-based Service-Now system; Managed engineering environments and facilitated the migration of physical devices to VMs; Maintained software packages, monitored ticketing systems, and ensured smooth printer operations.

  • Managed Windows 2003 and 2008 servers focusing on print and Active Directory (DNS/DHCP/WINS/LDAP).
  • Architected and implemented worldwide Cisco TelePresence solutions, utilizing various Cisco management systems and software clients.
  • Assisted in creating, managing, and terminating Windows user accounts and Exchange mailboxes.
  • Transitioned from TrackIt to a scalable, ITIL-based Service-Now system, improving incident, problem, and change management processes.
  • Built and maintained environments including Matlab, Cadence, SolidWorks, and deployed Linux workstations using RedHat and KickStart.
  • Oversaw several software license servers using FlexLM for various engineering applications like Cadence, SolidWorks, Matlab, Oracad, and Mentor Graphics (PADS).
  • Assisted in migrating physical devices to VMware to replace engineering workstations and production servers, optimizing infrastructure.
  • Updated and prepared software install packages for helpdesk team and managed SCCM deployment.
  • Ensured high user satisfaction by operating within SLAs and keeping track of new and existing incidents in TrackIt and Service-Now.
  • Deployed printers and set up LDAP, SMTP for document processing, troubleshooting issues, and monitored printer/toner status using SNMP.
Desktop Support Administrator
2007-08 — 2008-11
assets-img-resume-synaptics.png
Synaptics
Santa Clara, CA

Developed and deployed an update server using WSUS, maintained internal ASP.net applications, and managed end-user licenses for various software products. Built IT equipment for different environments and new employees, following strict build processes, and was responsible for IT equipment purchases and asset management. Collaborated in troubleshooting production issues, documented Standard Operating Procedures, and created Oracle 10g accounts for new hires.

  • Built, tested, and deployed a production update server for all client/server machines using Windows Server Update Services (WSUS).
  • Maintained home-grown internal applications developed in ASP.net, utilizing Internet Information Services and Windows Server 2003.
  • Administered licenses for various software products including Microsoft, Adobe, Matlab, and Creo, ensuring compliance and availability.
  • Constructed laptops, desktops, workstations, and servers for production, test environments, and new employees, adhering to strict build processes.
  • Established stringent build processes for end user client machines to maintain uniformity and compliance.
  • Managed the procurement of all IT equipment, liaising with vendors and overseeing asset management to ensure optimal pricing and quality.
  • Collaborated with IT members to troubleshoot production issues across various domains including Linux, Network, and Storage Administration.
  • Maintained documentation of new and existing processes for Standard Operating Procedures, updating them annually to reflect changes and improvements.
  • Created Oracle 10g accounts for new employees, ensuring seamless integration into the company’s systems.
Jr. Helpdesk Support Technician
2006-01 — 2007-08
assets-img-resume-synaptics.png
Synaptics
Santa Clara, CA

Provided comprehensive hardware and software support for desktops and laptops, maintaining updated deployment images using Symantec Ghost and SysPrep; led IT training sessions for new hires weekly and participated in a 24/7 on-call support rotation; Generated weekly reports on account creations and terminations to meet business and compliance requirements and setting up IT equipment for new employees based on specific business needs.

  • Offered extensive support for both hardware and software, focusing on desktops and laptops for over 300 employees at the Santa Clara office.
  • Kept deployment images for desktops and laptops up-to-date utilizing tools like Symantec Ghost and SysPrep, ensuring streamlined deployment processes.
  • Led weekly IT training sessions for newly hired employees, providing essential knowledge and support to facilitate smooth onboarding.
  • Participated in an on-call support rotation with the IT team, offering round-the-clock assistance to address and resolve issues promptly.
  • Created detailed weekly reports outlining account creations and terminations, fulfilling business requirements and maintaining compliance with Sarbanes-Oxley.
  • Prepared laptops and desktops for new employees, tailoring setups to meet the specific needs of various departments including Engineering and Software/Firmware Development.
Intranet Web Developer Intern
2005-06 — 2005-12
assets-img-resume-synaptics.png
Synaptics
Santa Clara, CA

Spearheaded the development of innovative solutions, including an early Product Lifecycle Management system and an employee availability system; laid the groundwork for enhanced communication infrastructure, adding substantial value to the organization’s operational and communication capabilities.

  • Designed and implemented a pioneering component database in PHP and MySQL, serving as an early PLM system to organize components effectively, prior to the establishment of ISO/IEC 27001 standards. Ensured secure and seamless user authentication by integrating the system with Active Directory using LDAP.
  • Addressed a critical organizational need by developing a PHP-based system to display real-time employee availability on the company’s intranet, integrated with the on-premises Exchange server, enhancing interdepartmental coordination and planning.
  • Played a crucial role in building foundational infrastructure during the company’s headquarters relocation, including building wiring and setting up Ethernet cables and POTS lines.

Skills

 

Operating System

Windows / Windows Server 90%
macOS / macOS Server 80%
iOS 80%
Android 50%
Linux (DEB Based) Ubuntu, Debian 75%
Linux (RPM Based) RedHat, CentOS, Amazon 60%
Linux (Other) Arch, Gentoo 60%

Amazon Web Services

EC2 80%
RDS 60%
VPC 80%
CloudFormation 50%
CloudFront 80%
AWS CodePipeline (CodeDeploy) 60%
AWS SSO (Single Sign-On) 80%
AWS IAM (Identity and Access Management) 80%

Cloud Infrastructure

Amazon Web Services 70%
Azure 50%
Google Cloud Platform 40%

Programming Languages

PHP 75%
Python 75%
Perl 80%
Ruby 60%

User Directory / SSO / Accounting

Google Workplace 75%
Microsoft Active Directory 75%
Okta 75%
OneLogin 50%
JumpCloud 75%

Networking Concepts

Firewall policies 80%
Multicast policies 60%
LAN / WAN internetworking 80%
SSL VPN (Client) 80%
IPSEC (Site to Site) VPN 80%
IPAM Management 90%

Networking Hardware

Fortinet - FortiGate / FortiSwitch 80%
SonicWall 40%
Cisco - ASA / Catalyst 70%
Juniper 70%
Brocade (Broadcom) 80%

Frontend

JavaScript 60%
jQuery 50%
Node/NPM 80%
CSS 80%
Sass (SCSS) 80%

Content Generation / Management

Jekyll 90%
Magento 75%
WordPress 90%

Frameworks (Web App / Frontend)

Angular 60%
Rails 40%
React 50%

Database

MySQL / MariaDB 80%
PostgresSQL 80%

Automation (CI / CD / Testing)

Jenkins 80%
Circle CI 70%

Version Control / Repository / Service

Git 80%
Subversion 70%
CVS 75%
GitHub 75%
Gitlab 75%

Microformats

JSON 90%
YAML 90%

Containers / Packages / Orchestrations

Ansible 40%
Chef 40%
Docker 50%
JAMF 50%
Puppet 40%

Software

Adobe Photoshop 75%
Adobe Illustrator 60%
Adobe InDesign 60%
Inkskape 60%

Projects