Resume

Steven Mercurio - RHCE, RHCVA, RHCDS

Email: SMercurio@Steves-Cloud.com


Summary:


I have extensive experience in automation and continuous integration using Red Hat products like RHEV, Satellite v6, OEL, and RHEL. I also have extensive experience in high-level architecture, Business requirement analysis, design economic and life-cycle analysis, DevOps Architecture and implementation, Documentation and training, and process engineering. I have assisted many companies with defining or improving their CID (Corporate Identity - SOEs, silos, security posture, automation, etc.) I also have puppet, Satellite, Ansible, and Tower automation experience. I have worked with many storage and hardware platforms like Dell, HP, Cisco UCS. I also have a background in Networking, and SAN work. I have written purely data driven “Infrastructure As A Service” and “Infrastructure As Code” Ansible and puppet code that can be used on prep or in cloud with no code changes connected to a CMDB. I also have created and run highly efficient and cost-effective knowledge transfer programs and incorporate those into a total DR solution.


Clearances:

Active secret.


Technical Certifications:

RHCE, RHCVA, RHCDS. Previously held CISSP obtained in 2006.


EMPLOYMENT HISTORY:

Advanced Sciences and Technology - 8/2021 to present

I work on multiple contracts at the FAA. For the FAA I managed the labs including designing and documenting standards for things like racking equipment, cable management, cable tracking, Visio rack elevation diagrams, and more. I created and managed the content and expansion of a MS Access based inventory and configuration database with forms to enter, view, and manage data as well as reports. I enhanced, upgraded, and managed a dev VMware 7 environment with VSAN as well as installed other VMware environments. I am implementing additional DevOps tools like RedHat Satellite6 and Ansible Tower for various contracts. I oversee and assist on projects and vendors on those projects reporting updated to management and stakeholders.

Consultant – BlueCross BlueShield NC - 6/2021 to 8/2021 (contract)

I Improved development speed by creating a standard setup for VScode and demonstrating how to code and commit right from VScode to then test in Development Tower instance. I also Created a fully data driven model of Ansible coding used for patching, installs, etc. I Demonstrated how to increase coding efficiency by writing Muti-OS/Multi-Platform Ansible code. I also created examples showing how to use tower inventory to start defining data where it is most relevant which allowed code to be operationalized without users ever needing to do any coding or see the code itself. I Assisted in adding additional code branches for lower than prod environments as well as performed troubleshooting to fix and enhance existing Ansible code as required.


Consultant – AGI - 6/2020 to 6/2021

I performed DevOps design and engineering as well as implementation. I rewrote new data driven Ansible code ready for Tower that was under perforce version control. I improved and maintained the monitoring system for Linux including refining alerts levels. I worked with various stakeholders on internal developed applications running on various platforms to ensure minimum up-time and site reliability. I performed troubleshooting of applications as well as upgrades, monitoring, and maintenance. I set up, maintained, and implemented PITR DR of the PostgreSQL database for the custom Jfrog Artifactory I designed. The Artifactory design used a single app VM and a single Postgresql 11 VM pair that could be easily used on prem or in AWS with lower resource cost and high security and performance. I created the infrastructure to build, and sign, and maintain RPMs as well as created a Linux SOE that was STIGd to 800-171 and 800-53 compliance. I monitored and maintained the servers in multiple security enclaves including security reporting and mitigation. I performed maintenance work like image and kickstart updates as well as created new functionality like RDP remote console solutions to Linux PCs for testing and Dev users. I Created, Maintained, and updated documentation for new and existing solutions.


Consultant – Mythics, Inc - 6/2016 to 5/2020

I worked as a consultant helping clients implement complex solutions involving both cloud and on-premise technologies like OCI, OEL, RHEL, Tower, Satellite 6, etc. I also was part of the automation and innovation team responsible for developing new technology and IP solutions as well as enhancing existing solutions and processes. I developed new methods and technology around automation, standardization, and systems management that allowed for deploying complex automation and systems management technology to clients in an agile manner. I developed, tested, and maintained automation code for agile DevOps deployments and management of both cloud and on-premise systems for clients. While at Mythics I earned multiple awards for my performance and innovation. I wrote purely data driven Ansible code using Tower that ran on Sparc Solaris 11 servers to seamlessly manage all CDOM, LDOM creation, updates, OS installs, and tear-down based on input data as part of a DR solution. I also implemented new code to rapidly stand up a new Satellite system for clients including integration to their environment and training in 2 weeks with one week on site and the other week remote. I also developed code and methods to deploy, expand, shrink, and maintain infrastructure on premise or in a public cloud in the same manner the load the infrastructure was created, managed, and decommissioned on the infrastructure. I setup and created work flows in Red Hat Cloudforms for clients that enabled self-service to users even across work group silos.


Linux Architect - Nomura America Services - 2/2015 to 6/2016

Red Hat Linux Architect working in the Unix Engineering group. I worked with a global team of engineers to develop the satellite 6 design and new OS layout for Red Hat 6 and 7. I also implemented and used new cost-saving tools and techniques into the RND environment for evaluation like LVM thin provisioning, KVM, etc. I also was responsible for documentation and drafting standards for evaluation and adoption for the OS, Puppet code, etc. I also was the top tier US support person to operations for the current legacy Unix platform. I was also functionally their lab manager for the US R&D lab that was used by members of various teams globally.


Omnipoint Staffing - 9/2014 to 12/2014

Senior Linux Engineer/consultant responsible for automating all aspects of the OS using Red Hat Satellite. Also responsible for all aspects of RHEL 5/6 administration and OS issues. Audit all processes and procedures to fill in/create all needed documentation and make any recommendations for improvement.


Everyday Health, Inc. - 1/14 to 9/2014

Senior Linux Engineer in the DevOps team responsible for all Linux servers across all environments in a 24x7 shop. Use puppet, foreman, shell scripting, etc. to automate current processes. Maintain and manage the Nagios monitoring infrastructure across all environments. Troubleshoot any Linux server or Network related issues including Radware load balancer or Checkpoint firewall rule issues. Create and maintain documentation as needed for all new and existing systems on the MediaWiki site.


Infosys/Bank of America – 10/12 to 1/14 – Linux engineer

Part of the onshore server build team doing global Linux installs. I designed and created a new knowledge transfer system and created all the initial content for that system including, training and how-to videos (using Adobe Captivate) as well as all-new HTML-based documentation hosted on a new web site. I also worked on engineering new automation solutions using shell scripts as well as improve existing automation solutions. Some of the software used for the automation system was puppet enterprise and XCAT as well as custom-created software. I also worked issue resolution, documentation, and training for the new private cloud roll-out.


Paragon/AT&T – 7/09 to 10/12 – Linux engineer

I was an employee of Paragon who permanently placed at AT&T in Middletown, NJ as a Linux engineer.

As part of the Engineering support team, I provided all T3/T4 level support for all global deployments. Responsible for designing, testing, securing, and supporting all standard and custom Linux reference systems as well as the deployment methods for those operating systems that were used worldwide by all AT&T hosting clients. Also engineered, tested, and created documentation for all patches as well as any custom design requests.


Core Services – 3/07 to 7/2009 – Systems Engineer/Networking

I was part of the systems team working with Dell and SUN hardware running Linux and Solaris. My responsibilities involve building/kick-starting new servers for Oracle, Performance Tuning, Troubleshooting, quarterly patching, and hardware diagnosis and repair. I also am involved in daily SAN operations (adding/zoning/reclaiming LUNS, etc.) on EMC Clarion systems. I also got involved with Linux server security and basic networking with Cisco equipment. As needed, I also have worked with the Checkpoint firewalls as well as router and switch ACLs and NAT rules. I also performed training and mentoring of junior staff members as needed. I was also a member of the team that was charged with designing and building a new data center for expansion. I also took care of the physical facilities of the data center like the UPS and generator systems.


C4 Planning Solutions, Yokosuka Naval Base-Japan – 10/05 to 12/06 – Interim Secret Clearance I worked in the NASM as part of the networking team. Part of my responsibilities involved network design and security as well as using a remedy to solve third-tier trouble tickets sent in by the help desk. The NASM team I was part of was responsible for working on both the unclassified and classified networks of the US NAVY for the entire far east region. I was also responsible for all Linux servers including Security compliance of all Linux servers to the latest DISA STIGs. I also started and maintained training Navy personnel in Linux administration and usage. I ran regular Linux training classes for both civilian contractors as well as military personnel. I obtained my CISSP certification in 2006 in support of the security work I was doing with the network as well as the Linux servers.


Battelle, Stafford Operations – January 2005 to 10/2005 (Temp under ManPower Professional) Part of the Network Engineering team responsible for the design, administration, maintenance, troubleshooting, capacity planning, and security of the network, servers, and infrastructure equipment. I worked with other members of the design team as well as members of the SOC and NOC teams on various projects as well as maintaining all of the documentation for the network. Responsible for approximately 300 Win64, Linux, and Solaris servers in 3 sites as well as Cisco and Nortel routers, switches, and load balancers that operated across all 3 sites. Responsible for high availability technologies like Global Server Load Balancing and is required to have uptime no less than 99%. GSLB was implemented to meet the new requirement of 99.99% uptime. Created a Linux cluster for testing using all open-source software. I also worked closely with the NOC to create and setup SNMP using OpenNMS. I also worked with LDAP and OpenRadius which authenticated the network equipment to the Linux LDAP system.


Inductotherm Industries - Now Indel, Inc. (Rancocas NJ) August 2000 to September 2004

Design, administration, maintenance, troubleshooting, capacity planning, and security of the network as well as the creation of policies, procedures, and budgets within the IS department. Evaluated business needs and created IT solutions through my involvement with various departments. Designed a new fiber backbone network and installed Cisco Switches. Installed a new NetWare 5.1 server, partitioned, repaired, and redesigned the NetWare NDS tree, installed ZEN Works as well as HSM, and created new high security and high-performance desktop standard and automated deployment for that standard to provide more manageability. Designed and installed a new backup system with an LTO Library and Arkeia backup software which also ran the VMware server for software testing and server consolidation purposes. Installed, managed, and maintained the security of the company’s VPN system. Migrated the Checkpoint FW1/VPN1 server from v4.1 on NT4 to NG on Linux. Designed, installed, and maintained the intrusion detection and content filtering systems which were to be ported to Linux and be enhanced later with open source solutions as well. Investigated, reported to management, and followed up on all needed forensics involved if there were any security issues. Installed and administered outside subsidiary companies E-Mail systems that were hosted on Red Hat Linux servers on-site. Responsible for the migration of servers and desktops to Red Hat Linux. Tested several servers and desktop applications for use on Linux and rolled out several Linux desktops. Oversaw porting both Domino servers to Linux and both Win terminal servers down to one VMware server running on Linux. Created a hardened installation of Win2k that has no IE, outlook express, front page, or any other software leaving only a pure and very hardened OS. Headed up several projects to move to open source and standards-based software like OpenOffice and the Linux Terminal Server Project. Responsible for training all the MIS staff on all changes that I made and maintained. Worked with vendors to ensure all deliverables are in place, on time, and on or under budget. Designed and built a secure method of burning data to removable media using a Linux server to pull data from Novell on demand to be burned in a secure location.


Technical Expertise:

  • Satellite6, Tower, Ansible, and puppet DevOps automation technology

  • Agile Scrum DevOps experience

  • AWS and OCI cloud experience

  • 20+ years in Systems and Network Engineering; 17+ with Linux in Production

  • ALL Red Hat Linux and OEL versions (Fedora and RHEL) Servers AND desktops

  • EMC, Dell, HP, Cisco, and SUN hardware

  • Linux server security and auditing

  • Creating, maintaining, and automation of packaging of RPMs for RHEL/OEL

  • VMware, KVM, and RHEV virtualization (server AND desktop virtualization)

  • Process engineering, documentation, and technical training

  • High ROI 3-5 designs with 3+ year life cycles designed around business costs/goals

  • Engineering economic analysis of existing and new designs with ROI analysis

  • Vendor and full life-cycle management of All Linux systems and hardware


*References available upon request.