Timothy - Architecte ACTIVE DIRECTORY
Ref : 090330H002-
75001 PARIS
-
Consultant, Ingénieur système, Architecte (54 ans)
-
Totalement mobile
-
Mandataire social de sa structure Freelance (SARL, SAS, EURL, etc)
Experience
Experience
Identity Architect BNP Paribas – Paris, France (Montreuil, FR) August 2021 – October 2021)
Audit of Azure AD implementation for a 275,000-user global banking environment.
Review and proposition of the delegation of administration for Azure administrator role implementation
Implementation of new security standards for Azure administrator accounts
Corrections of non-adherence to corporate naming conventions for the Azure environment
Audit of ADFS configurations for smart-card authentication to Azure AD.
Update and translation of documentation for Azure AD, Azure AD Connnect, and ADFS.
Identity Architect Plastic Omnium – Paris, France (Nanterre, FR) February 2021 – April 2021)
Development of PowerShell scripts for management of Azure identities. Produced guidelines for PowerShell administration.
Implementation of delegation of administration for Azure administrators
Design of trust relationship between client and its partner within strict networking access-controlled environment
Use of and Configuration of Quest Active Roles environment
Implementation of new security standards for Azure administrator accounts
Definition of naming conventions for new Azure environment
Created ADFS configurations for various business applications.
Proposed and developed several migration plans for repatriating email services from an outsourced service
Business Founder and Identity Architect Milieu Group - Paris, France (January 2021 – Present)
Creation of company “Milieu Group” with all legal, administrative, and fiscal planning. Marketed services and products.
Developed software add-ins for Microsoft applications.
Participation in the Microsoft Partner Network giving insights and training for Microsoft licensing, Azure, Microsoft Teams, among others
Participation in the Microsoft Cloud Solution Provider allowed training and experience with the details of Microsoft Azure including migration planning and Microsoft 365 building and integration models.
Identity Architect Bolloré Transport and Logistics – Paris, France (Puteaux) (October 2017 – January 2021)
Maintenance, modification, and troubleshooting of identity management systems in a multi-forest, cloud-integrated global environment (Azure AD Connect, MIM2016, FIM 2010) of 35,000 users
Migration of legacy Active Directory infrastructure to consolidated WS2016 AD forest
Upgrade of legacy forests from Windows Server 2012/2008R2 to WS2016
Optimization of network topology for multiple AD forests (450 sites)
Infrastructure preparation for global AD migration
Integration of networking equipment (VPN, Proxy) into Active Directory infrastructure.
Implementation of automatic group-based licensing for Office365 clients in Azure Active Directory
Development (PowerShell) of administration tools for enterprise management
Supervision of AD Federation Services (ADFS) for O365 authentication
Analysis and implementation of directory security
Windows System Architect La Poste – Paris, France (Saint-Quentin-en-Yvelines) (May 2017 – September 2017)
Integration of legacy business units into consolidated national environment
Migration of 5000 users and computers into 90000 user environments
Windows System Architect CEGEDIM – Paris, France (Boulogne-Billancourt (February 2017 – May 2017)
Corrected and optimized a multi-forest, multi-domain high-security environment (medical information) Realignment of Windows Systems (including Active Directory, SCCM, Exchange, Lync) following sale of business division.
Integrated UK and US businesses into corporate environment (Active Directory, SCCM, Exchange, Lync)
Merge of WSUS service into existing SCCM architecture
Expert Active Directory Zodiac Milpro – Paris, France (December 2016)
Performed Active Directory cleansing process using internally-developed PowerShell tools
Prepared for multi-domain migration and consolidation project
Technical Systems Architect, Expert Active Directory Tarkett Groupe – Paris (La Défense), France (November 2015– August 2016)
Designed a consolidated multi-forest, multi-domain AD system architecture for the global enterprise (12,000 users, 205 sites globally)
Analyzed system infrastructure of countries for migration planning and implementation using scripted data acquisition methods (PowerShell 4.0)
Streamlined replication and authentication systems for faster authentication and improved fail-over
Interfaced Active Directory (WS2012R2) with on premise systems (OpenText DS) and cloud-based (AWS) services
Performed corrections and enhancements of infrastructure (DHCP, DNS)
Created architecture for external authentication systems (ADFS)
Prepared environment for future Windows-10 and Windows Server 2016 compatibility
Systems Architect/Migration Technical Team Lead Publicis Groupe – Paris (Saint-Denis), France (October 2014– October 2015)
Performed troubleshooting of Active Directory at global, regional, and country levels
Completed technical design of the migration process for the European (EMEA) Active Directory migration, management centralization, and data consolidation project (27 countries, 20,000 workstations, 1000 servers) using ADMT 3.2 and in-house developed tools
o Creation and implementation of project plans
o Management of design documentation and versioning
o Validation and improvement on methods, processes, and standards
Analyzed server, workstation, and infrastructure of countries for migration planning and implementation using scripted data acquisition methods
Implemented new centralized infrastructure architecture elements including Infoblox; Microsoft WS20121R2 DNS, DHCP; Linux DNS, DHCP)
Automated processes (PowerShell 4.0, VBScript) for industrialized deployment
Systems Architect/IT Infrastructure Team Lead Alstom Grid – Paris (Massy), France (March 2013– October 2014)
Coordinated a team of engineers to design, document, and implement IT infrastructure solution for an electrical grid transmission control system for a European country. This coordination included creating project plans and document management for multi-phase government contract
o Creation and implementation of project plans
o Management of design documentation and versioning, and client approval
Designed the multi-forest AD Infrastructure for a software solution which controls electrical transmission systems. This infrastructure included: Windows Server 2012R2; DNS; PKI; Remote Desktop Services and thin client solutions (Windows-8 embedded)
Utilized PowerShell 4.0 scripting tools to automate the directory creation and architecture implementation (including directory structure, sites, site links, GPOs, and password policies)
Managed the design and integration of other elements of the system including: Linux; VMWare; SAN (HP 3PAR 7400); Monitoring (SCOM, Splunk); Management (SCCM 2012, Red Hat Satellite, Spectrum); Database (SQL 2012, Oracle).
Managed the specification of hardware and software was well as the installation of system infrastructure for physical servers, virtual servers, and storage devices (SAN).
Presentation of designs to management and technical audiences for the client and internal entities
Implementation of smart-card security
Systems Architect Steria – Paris (Issy-les-Moulineaux), France (June 2010 – December 2012)
Designed the target multi-forest, multi-domain Windows Server 2008R2 Active Directory and accompanying systems infrastructure for the internal client (20,000-user corporation spanning 16 countries and 77 sites including near-shore and off-shore operations).
Utilized PowerShell 2.0 scripting tools to automate the creation and assignment of security and the automation of the creation of the majority of the supporting architecture
Analyzed existing architecture for preparation for migration to new target infrastructure which included new elements of Active Directory, DNS, DHCP, Certificate Services, IP-Sec, Federation Services,
Consulted on the customization of the directory schema to support automated management of the environment and integration with business applications
Implemented Network Access Protection (NAP) for wired and wireless access (802.1x)
Performed AD integration tasks for dependent technologies including FIM, Office365, SCCM2012, Lync 2010, and Exchange 2010.
Systems Architect BNP Paribas – Paris (Montreuil), France/International locations (April– June 2010)
Participated in a pre-study of Windows 7 and Windows Server 2008R2 infrastructure rollout for the BNP Paribas Group (Banks and financial institutions worldwide totaling 250,000 workstations)
Analyzed workstation and application data collected throughout the organization in order to propose cost-effective implementations including TCO and ROI calculations
Proposed multiple implementation scenarios for multi-domain, multi-forest WS2008R2 Active Directory, App-V, SCCM 2007 to deliver the new Windows-7 workstation platform and the supporting WS2008 infrastructure.
Systems Architect Nufarm – Paris, France (February 2010)
Design of multi-tier WSUS 3.0 solution for Northern European region (9 sites across Europe, North Africa), addressing multi-site and multilingual issues.
Implementation of AD security delegation and GPO implementation to support server and workstation solution
Systems Architect EDF (Electricité de France) - Paris, France (November – December 2009)
Designed and proposed several alternative architectures to provide a solution for the campus locations which is coherent with the overall consolidation project including desktop refresh and server update
Produced proposals for NAS storage solutions (up to 30 TB), VMWare server hosting (ESX 3.5), SCCM 2007, SCOM 2008, Windows Server 2008.
Analyzed several large campus locations (2000 – 7000 users each) with respect to network capacity, storage requirements, and technical constraints, and local constraints
Systems Architect (AD)/Principal Engineer Nissan Europe – Paris, France /Pan-European locations (May 2003 – September 2009)
Designed and supported Windows 2003/2008 AD and Infrastructure for 39 EMEA sites (9000 users)
Planned (Technical Project Manager) and executed (Primary Engineer) server and workstation migrations
Trained and managed admin staff to support the infrastructure migration and to maintain corporate policies
Collaborated with global teams for the Nissan worldwide corporate Active Directory 2003 and Exchange 2003 infrastructure and security design (Japan, North America and European regions—90,000 users total)
Designed group policy strategy for Nissan Europe (EMEA)
Installed and configured servers for data centers and remote site locations
Coordinated integration of Smart-card login, Single-sign-on application authentications, metadirectory implementations (MIIS, Novell eDirectory), SMS 2003 , Exchange 2003
Supported common multi-language workstation image platform
Architect/Engineer Milieu Network Architects – Chicago, IL (May 1999 – March 2003)
Client Projects Included: Microsoft Corporation Proven Solutions Staffing Companies
Starbucks Corporation Arlington House International Youth Hostel
U.S. Senate International Language Services
McHugh Construction Company Powell/Kleinschmidt Interior Architects
Banque de Montréal
Creation of Milieu Network Architects, service company for systems and network design and support
Designed server and network architecture on Microsoft platform conjunction with existing UNIX, Novell, and mainframe networking infrastructures
Managed full life-cycle projects including procurement of materials and services; coordination of projects with client business goals; training and management of system administration; managed ROI expectations
Analyzed security structures and network infrastructure for networking, messaging, web-hosting, internet access, and remote-access clients
Consulted on telecommunication decisions for voice and data integration scenarios
Created automated software installation scripting for software distribution (SMS, Windows Installer)
Customized solutions for database integration and financial data (various FE/BE multi-platform solutions)
Server/Infrastructure Engineer Bank of Montreal/Harris Bank Client-Server Support – Chicago, IL (November 2000 – February 2001)
Built, installed and configured Windows server platforms
Supported datacenter and branch-office application servers
Consulted network rollout of corporate Active Directory
IS Director/Senior Systems Engineer American Health Information Management Association – Chicago, IL (April– August, 2000)
Designed corporate security infrastructure including remote access, internal file security, web access and Exchange internal security functions for multi-OS environment
Engineered and managed Novell Netware to Windows migration project including Active Directory design
Produced network diagrams and documentation for server and systems infrastructure
Network Architect Black Dog Design – Chicago, IL (May 1999 – March 2000)
Designed and implemented the systems and network infrastructure and server implementation for a web services and hosting company
Implemented email migration from UNIX Sendmail to Exchange server migration
Expansion of web server environment and integration of eCommerce services
Designed router-based and software-based firewall and RAS implementations
Established structured disaster-recovery systems
Windows Server Consultant Skidmore, Owings, & Merrill Architects – Chicago, IL (April – May 1999)
Provided Windows, UNIX, and Macintosh server and client support for architectural graphics processing and business systems.
Supported, configured and optimized Windows servers
Field Deployment Site Team Lead CNA Insurance/CSC – Chicago, IL (August, 1998 – March 1999)
Led teams consisting of between 2 and 20 system engineers in the installation of the corporate computing environment at 20 US and Canadian branch offices (among 139 offices, 27,000 users in total)
Implemented the support of the Windows network implementation; upgrade to Exchange Server messaging; SMS server implementation; installation of 300+ proprietary and non-proprietary applications
Converted existing clients from token-ring network infrastructure to Ethernet
Planned and executed the migration of up to 400 computers per site.
LAN Support Technician Bear Stearns Investments– Chicago, IL (May – July 1998)
Administered/supported multi-domain NT4 platform environment utilizing real-time financial software (ADP), mainframe connectivity, and groupware for stock brokerage/clearing house (600 users)
Employed manual, imaged and SMS-driven upgrades and installations of HP workstations
Performed remote administration of servers and workstations
LAN Administrator Bank of Montréal / Harris Bank – Chicago, IL (July 1997 – May 1998)
Performed installation, configuration, and remote support of servers and workstations
Facilitated LAN/internet/intranet usage and integration with software applications in network environment of 300+ servers, 7000+ users total (Chicago locations only) with direct responsibility for ~400 users.
Participated in corporate roll-out of new computer systems and operating systems
Help Desk Analyst Deloitte & Touche LLP – Chicago, IL (February – July 1997)
Provided end-user support for all company software to 1500+ user base located across four company locations. Support included desktop, remote connection, and phone support.
Process Engineer Sony Electronics, Inc. – San Diego, CA (December 1995 – September 1996)
Administered production changes for manufacturing of network storage peripherals (CD-Recordable, CD-ROM, Magneto-Optical Jukeboxes, Digital Cinema Processing equipment) in ISO 9000 system including documentation control and instruction of production crew.
Willing to travel or relocate. Eligible to work without visa in European Union or in the United States.
Formation
Education
University of Southern California, Los Angeles, CA - USA
BS Electrical Engineering with Minor in Recording Arts May 1992
(French equivalent to BAC+5)
Professional Certifications:
Microsoft Certified Solutions Expert: Server Infrastructure [MCSE on Windows 2012/2012R2]
Microsoft Certified IT Professional [MCITP on Windows 2008/2008R2]
Microsoft Certified Technology Specialist [MCTS Windows 8] in process
Microsoft Certified Technology Specialist [MCTS Windows 7]
Microsoft Certified Systems Engineer: MCSE 2003/2003R2; MCSE 2000; MCSE NT4
A complete list of professional certifications is available upon request
Software
Operating systems: (All multilingual implementations) Windows Server 2019/2016/2012/2008/2003/2000/NT; Windows-10/8/7/Vista/XP/2000/NT; Windows Mobile; Windows Embedded
Directory abstraction: Quest Active Roles
Cloud: Microsoft Azure (Azure AD, Licensing, Application authentication)
Virtualization Technologies: Microsoft Hyper-V, VMWare System Center
Storage Solutions: SAN (HP 3PAR; Hitachi), NAS (IBM, NetApp)
Identity Management: Azure AD Connect, MIM 2016, FIM 2010, ILM 2007, MIIS 2005
Mail/Conferencing/IM: Exchange Server 2016/2010/2007/2003/2000/5.5, Teams, Lync 2010, Office Communication Server 2007, Live Communications Server 2005, MS Outlook, MS Teams
Database: MS Access, SQL Server 2012
Design: AutoCAD, Adobe PhotoShop, Adobe Illustrator, Visio
Office applications: Multilingual MS Office XP/2003/2007/2010/2016/Office365
Financials: Bloomberg, Reuters, multicast networking
Mainframe connectivity: Attachmate
Terminal Services: Windows 2016/2012/2008/2003/2000 Remote Desktop/Terminal Services, Citrix
DevOps: PowerShell
Security: Crowdstrike, McAfee Antivirus, Kapersky Endpoint Security