Alexander Kem
Chantilly,VA
Summary
A results driven Cyber Security Solutions Architect professional with a Bachelors focused in Information Systems and Business from Mount St. Mary's University. Demonstrated working in the Information Systems and management consulting industry. 15 years of experience including 10 years in DevOps and 6+ years in a leadership role. Top Secret Clearance with Security + CE, RedHat Certified Systems Administrator, Certified Ethical Hacker, Certified Network Defense Architect, AWS Certified Solutions Architect Associate
Overview
15
15
years of professional experience
1
1
Certification
Work History
Cloud Architecture Lead
FlowBank SA
Geneva, Switzerland
12.2023 - Current
- Manager Cloud Engineering Team and Senior DevOps Engineer
- Product owner AWS Cloud Architecture/Design and Hybrid infrastructure projects
- Work with the business and vendors to identify and implement new solutions to optimize efficient, secure architecture and data flow
- Initiated and implemented new design strategies to comply with FINMA security policies and standards
- Delivered proof of concept for Terraform to restructure modules and use with CI/CD
- Define new processes and procedures for change management
- Developed and implemented Disaster Recovery plans and procedures for Cloud Infrastructure and resources.
- Safeguarding information systems through the development of robust security architectures
- Conducted routine risk assessments
- Enforced Compliance with Industry Standards FINMA
- Identity and Access Management
- Defined roles and worked with security team to identify teams accesses and permission sets to various resources
- Facilitated employee growth and career development for Infrastructure Team
Senior Cloud Engineer/ Product Owner
First Republic Bank
San Francisco, California
06.2021 - 06.2023
- Manage and implement new system design architecture following SDLC utilizing AWS with new and existing infrastructure and applications to support the banks internal/external clients, and investors
- Ensuring system robustness and scalability, while proactively addressing potential security risks inherent in cloud-based environments.
- Infrastructure migration from on premise to AWS
- Automation with ansible playbooks and terraform workspaces to support applications such as JFrog Artifactory, Infoblox, Perform InvestorTools, Jira, New Relic, Spinnaker, Splunk, Thales Tokenization, Cashview, Jetbrains and VMC.
- High volume of terraform infrastructure as code. From creating new workspaces and modules, coding/building infrastructure to testing and deploying into dev, stage and prod environments through the proper change management channels.
- Collaboration with multi-cloud teams and vendors to find new solutions and create new designs to help improve efficiency, security and funds with the highest visibility and approvals from all levels of management including the CIO.
- Risk Management and Security
- Budget and Resource Allocation
- Process Improvement
- Strategic Planning and Execution
- Daily SCRUM meetings to cover days agenda and weekly deliverables
- Biweekly sprint meetings to cover new projects, time reallocation, shift of priorities depending on the mission
- Biweekly meetings to help colleagues find/set individual goals and improvements for midyear and year end reviews
- Exhibiting exceptional proficiency in interpersonal communication
- Actively engaging and fostering positive and productive relationships with colleagues, while effectively navigating cross-functional collaborations towards shared objectives.
Senior System Engineer
Amazon Web Services
Palo Alto, California
02.2019 - 06.2021
- Manage several Kinesis Service Team Projects including region builds for Kinesis Firehose, Kinesis Analytics, and AWS Datafeeds Ingestion Hub for multiple commercial and government regions.
- Platform Infrastructure optimization and solutions. Expanding services in regions and using automation tools to deploy changes.
- Developed project plans and workflows for each of these services for internal and global availability to our clients.
- Worked with native AWS tools in compliance with our overall security posture. Led team trainings and demos for our Director of Engineering
- Client Engagements with new internal and external customers
- Participated in ATO process for authority to operate new services in regions. AWS Certified Solutions Architect Certification
- Worked with services Cloudformation, CloudFront, Cloudwatch, EC2, Kinesis, S3, SQS, SNS, VPC Updated metrics dashboards for team analytics and operations
- Worked extensively with commercial and government clients on new project plans
Associate, Deputy Network Engineering Lead
Booz Allen Hamilton
Herndon, Virginia
10.2016 - 11.2018
- Oversee the entire JIDO Network Operations consisting of a team of 10 Network/System Engineers
- Work with other contractors, consultants, and engineers to ensure maximum value is delivered to our client.
- Provide network/system engineering and cyber security services.
- Redhat 7 build, configure, and test for Palantir Servers, Splunk, and Decision Lens Building/ deploying docker container images and creating data containers
- Provide tier III incident resolution
- Microsoft Exchange 2007/2013 System Engineer. Built entire Enterprise Architecture for all 3 Enclaves
- Information Support Server Environment Guard (ISSE) Certification (Solaris 10) Secure Systems by implementing STIGS and verifying security with ACAS/Nessus Oversee the use and enhancement of industry-leading network and system monitoring systems including Solarwinds, Splunk and SCOM.
- Provide recommendations and solutions for system deployments and enhancements
- Perform network changes in accordance with change management process Create and modify Juniper firewall policies
- Train personnel on Juniper firewalls
- Automate reporting tasks via PowerShell and Management Shell
- Cisco switch management and configuration/ Port Security/VLAN configuration/Trunk Configuration
- Commvault Enterprise Backup Solutions for most Enterprise applications Vmware/Vcenter
- JIRA/Atlassian System Engineer
- Implementation of F5 Load Balancing to optimize security with applications such as JIRA, Exchange and other clustered applications.
- Container configuration and implementation with Docker. Hosting static web applications to containers and building custom docker images
- Worked with Ansible and SIMP to automate custom Redhat server builds and patching
- Encrypted laptops to fit the security guidelines.
Senior System Engineer
Protiviti Government Services / GSA
Manassas, Virginia
03.2015 - 10.2016
- Manage CA and Production Systems that control GSA FPKI data.
- Certificate Issuance and Revocation with onsite Security Officer
- Patch Manager: Windows 2008 R2, 2012R2, Linux RHEL and ESXi systems VMware administrator
- Update server firmware and software on cisco devices
- Manage ESXi, LogRhythm and Nessus Scanner
- Nessus scanning for vulnerabilities
- Perform weekly Information Systems Audits (collect logs for each system in production and certificate authority zones)
- Symantec Endpoint Protection Manager/ Update anti-virus definitions Control
- Equipment in our lab: rack servers, patch panels, cisco and palm alto firewalls, cisco switches, KVMs, activate Ethernet ports
DC Site Engineer/ FSO
Software Engineering Institute
Arlington, Virginia
06.2013 - 03.2015
- Manage Security and IT Operations in our DC office location
- Host and raise security awareness within the company; conduct training seminars for employees
- Work with DSS to maintain our level of clearance in accordance with the NISPOM during security accreditation
- Responsible for Indoctrinations and Debriefs with employees maintaining a clearance. Install patch panels, routers, fiber, coax, and perform network maintenance to ensure proper connectivity.
- Build Linux VMs
- Mac and Dell Certified technician
- PBX, VOIP, CMA Site Engineer
- System Center Configuration Manager, DHCP, DNS, Active Directory
System Analyst
United States Department of Agriculture
Washington D.C.
06.2011 - 06.2013
- Provided safe-boot endpoint encryption to strengthen the security of network devices
- Remote support with the System Management Server (SMS) and LogMeIn Rescue console
- RSA SecureID two factor authentication for access in Citrix XenApp and Cisco AnyConnect VPN Client
- Managed the BlackBerry server and McAfee Enterprise Mobility Management server
- Active Directory Management
LAN Administrator
Dell Contractor / National Institute of Health (NIH) / National Institute of Allergy and Infectious Diseases
Bethesda, Maryland
07.2010 - 06.2011
- Diagnosed and repaired desktop and laptop computers. Supported over 1,500 NIH users
- Monitored and analyzed issues and compiled daily reports to show trends in network connectivity. Communicated with management to develop mitigation strategies and effectiveness.
- Provided management and support while monitoring users' daily computing activities.
- Responsible for custom reimaging of computers and workstations, patching cables to Cisco switches and servers
Education
Bachelor of Science - Information Systems and Business
Mount Saint Mary's University
Emmitsburg, MD, USA05.2010
Skills
- AWS Cloud
- Terraform
- Networking
- Kubernetes
- Teamwork and collaboration
- Customer service
- Problem-solving
- Attention to detail
- Flexible and adaptable
- Dependable and responsible
- Organization and time management
Certification
- AWS Solutions Architect Associate
- RedHat Certified System Administrator
- Security + CE
- EC Council Certified Network Defense Architect
- EC Council Certified Ethical Hacker
Languages
English Native
Spanish Intermediate
French Beginner
Interests
Family, Hiking, Coaching, Football Coach 10 years as a hobby, Football, Cambodia National Team Player 2011-2012, Golf, Leisure
Work Ethic
Lead by example to encourage efficiency and motivation. I want to help others to improve professionally.
Personal Information
- Title: Cloud Solutions Architect / Manager
- Date of Birth: 07/21/1988
- Nationality: American
Timeline
Cloud Architecture Lead
FlowBank SA
12.2023 - Current
Senior Cloud Engineer/ Product Owner
First Republic Bank
06.2021 - 06.2023
Senior System Engineer
Amazon Web Services
02.2019 - 06.2021
Associate, Deputy Network Engineering Lead
Booz Allen Hamilton
10.2016 - 11.2018
Senior System Engineer
Protiviti Government Services / GSA
03.2015 - 10.2016
DC Site Engineer/ FSO
Software Engineering Institute
06.2013 - 03.2015
System Analyst
United States Department of Agriculture
06.2011 - 06.2013
LAN Administrator
Dell Contractor / National Institute of Health (NIH) / National Institute of Allergy and Infectious Diseases
07.2010 - 06.2011
Bachelor of Science - Information Systems and Business
Mount Saint Mary's University