N OJAN E MAD

105 Aqueduct Dr.| North Wales, Pennsylvania 19454 | Email: nojan.emad@outlook.com

INFORMATION TECHNOLOGY ARCHITECT, ENGINEER, LEADER & SECURITY PROFESSIONAL

Leadership| Cyber & Security| System Engineer & Support | Cloud Architect | Azure
| Microsoft Office 365 | AWS | Solutions & Infrastructure Architect
Citizen of United States | Open to Travel | Experienced working Internationally

 Highly accomplished global information technology professional leader with 18+ years’ experience in
excelling in architectural design for enterprise infrastructure, application, and technology integration projects
 Expert in the design, development, and deployment of high-availability infrastructures for critical business
systems
 Seasoned Cyber Security professional, with hands on and hands off crises management skills.
 Experienced in evaluating legacy systems migration and implementing tools for system, network and
application upgrades, and platform-refresh, leading professional teams to construct high end complex data
networks, and managing projects from concept to completion
 Effective in defining enterprise technology strategies and solutions that reduce costs, improve efficiency,
support organizational goals and maximize technology investment
 Leveraged strong analytical skills and problem solving expertise to serve as project coordinator, ensuring
compliance with all established time schedules and collaborating with project managers and other key
employees to quickly identify and resolve issues
 Versatile and proactive problem solver with excellent interpersonal skills
 Highly adaptable to ever changing circumstances and multicultural environment within a fast-paced and
demanding surrounding
 I am an expert in Office 365 Deployment and completed many complex ADFS & ADFS Proxy Deployments, ADFS
Claim Based Rules, Publishing of ADFS with TMG 2010, Single & Multiple Domain Federation of ADFS with
Microsoft Office 365 cloud, Directory Synchronization, Exchange email migration using Cutover, Staged and
Hybrid Deployment and POP3 and IMAP email clients Migration.
 Multiple complex & successful Google Suite, Notes and Exchange migrations to Microsoft 365 with over 80K
users.
 Design, build and implementation of Microsoft Windows Autopilot. Azure Information Protection.
 Microsoft and other product integrations. Confluence, Jira and Planner with Teams
CORE SKILLS AND COMPETENCIES
 Complex Infrastructure  Value & Process Engineering  Systems Integration and
Integrations Migration
 Technology Need Analysis  Total Quality Management  Systems Architecture
 Network Management & Security  Team Management &  Vendor Management
Leadership
 Disaster Recovery Systems/Process  Process Improvements  IT Budgeting / Cost Savings
 Azure Architect  CISSP + CSSP  NIST
 Microsoft Teams deployment  Polycom deployment  Teams and Zoom rooms

PROFESSIONAL EXPERIENCE

Mac-Kali, UPS, Siemens, Borealis - ATOS, Inc. PA (Oct 2019-Present)

Senior Security Architect & Engineer
 Provide Store operation and support to Wawa’s projects.
 Provide consulting on Azure data factory, office 365 integration, Microsoft teams integration with other
Pearson’s applications and tools.
 Design, build and deployment of Microsoft Intune in conjunction with Windows autopilot for North America and
Global work force.
 Identity Management replacement from ADFS to Ping identity, multi-domain design.
 Delivery of Device management MDM and MAM for Pearson’s workforce.
 Delivery of Intune Autopilot and automation of Windows deployment.

DCL3 - Confidential
 Nojan Emad Page 2

 Hands on Migration Engineer for Exchange Migration to office 365 exchange online.
 Delivery of Migration Run Book based on tasks and levels of importance.
 Delivery of enhanced two factor authentication for privileged access.
 Security and governance architect and engineer.
 Design and implement end point / MDM Intune management for UPS subseries
 Delivery of sensitivity labels for each of the UPS subsidiaries, based on approved legal and governance frame
work.
 Delivery of Just in Time access for external user using Azure B2B.
 Delivery of Azure Information Protection and Azure privileged Management.
 Application and Data process migration to Azure SQL as service and SQL Server in Azure.
 Application and System Security Subject Matter Expert. Providing expert knowledge on environment hardening.
 Migration engineer, working as a hands on technical lead to migrate all UPS global subseries in one M365
tenant. Using tools like BitTitan and Quest On-demand migration manager.
 Design and implementation of Microsoft CASB, cloud app security solution, based on the three security pillars.
 Design and implementation of Azure Sentinel for user behavioral analysis.
 Light design and configuration of Azure Monitoring.
 Light design and configuration of Azure Synapse.
 Full end to end implementation of Core view product.
 Automation Architect, using tools like Ansible, Kion.
 DevOps management using tools like Chef and Puppet.
 Hands with Serverless computing and container driven application model.

Pearson Education – Dimension Data. NJ, PA, NYC (June 2018-April 2020)
Senior migration Engineer, Architect, Security
 Provide consulting on Azure components to Pearson Lead Architects for a Data center move to cloud project.
 Provide consulting on Azure data factory, office 365 integration, Microsoft teams integration with other
Pearson’s applications and tools.
 Design, build and deployment of Microsoft Intune in conjunction with Windows autopilot for North America and
Global work force.
 Identity Management replacement from ADFS to Forge-rock & Ping identity, multi-domain design.
 As a Azure migration engineer in a lead role, I gather information using a run books, organize meeting with
application owners and work with business to engineer and adopt a successful migration.
 Providing HLD and LLD for Cloud Solutions. Analyzing & developing the technical and visual design of the
project. Produce sound technical specifications in response to functional designs. 
 Work closely with the engineering teams during the implementation of solutions designing reusable components
 Hands on migration engineer for Google to Office 365 G mail, G Drive and G Sites & Forms.
 Delivery of Device management MDM and MAM for Pearson’s workforce.
 Delivery of Intune Autopilot and automation of Windows deployment.
 Design and Impalement Privileged Identity Management (Azure PIM)
 Hands on Migration Engineer for Google Migration to office 365 exchange online.
 Delivery of Migration Run Book based on tasks and levels of importance.
 Delivery of enhanced two factor authentication for privileged access.
 Delivery of Just in Time access for external user using Azure B2B.
 Migration from ForgeRock to Microsoft CASB, cloud security covering all cloud and online applications.
 Delivery of Azure Information Protection and Azure privileged Management.
 Design and implement Azure sensitivity labels, Azure Information Protection.

Dupont/DOW Chemical – Avanade . NJ, PA, NYC (April 2018-January 2019)

Senior migration, Integration & Security Engineer
 Application and Server integration to create a new platform for DowDuPont.
 Datacenter migration. Over 10000 hosts migrated.
 Application migration integration run book creation and support
 Migration of multiple email systems to Office 365.
 Airgap system migration. Like for Like.
 Design and implementation of Microsoft DLP, AIP, Cloud App Security.
V4.0

DCL3 - Confidential
 Nojan Emad Page 3

 Active Directory Consolidation and merger. GPOs, Password policies, Groups.

 Azure Information protection deployment.
 Veronis security file and access manager design and deployment.

Amneal Pharmaceutical – Avanade. NJ, PA, NYC (March 2018-January 2019)

Senior migration Engineer, Architect, Security
 Active directory and application migration hands on engineer lead and architect.
 Cloud to Cloud email migration technical lead working with Binary Tree.
 Design, Build and implement OKTA identify management post-merger with Amneal Pharmaceutical.
 Design and Build OKTA cloud and on-premise application two-factor authentication.
 Design and Build OKTA cloud and on-premise application Seamless Sign-On.
 Post-merger Datacenter consolidation. Over 400 applications and 1500 servers was consolidated.
 Office 365 / Azure R-BAC design, configuration and rollout to all national and international users.
 Azure process automation from on Premise application to IaaS, PaaS
 Application and Data process migration to Azure SQL as service and SQL Server in Azure.
 Application and System Security Subject Matter Expert. Providing expert knowledge on environment hardening.
 Design, and implement Identity Protection and Privileged Identity Management for new company users and
administrators.
 As a cloud security subject matter expert, I have provided Tenant restrictions, Application in Azure security.
 Responsible for defining and implementing baseline security requirements for Cloud computing environment
(security monitoring/logging, architecture reviews, identity & access management etc.)
 Responsible for participating in the planning and design of new infrastructure security initiatives in
consultation with Information Technology and DevOps teams.
 Responsible for coordinating 3rd party penetration tests and risk assessments as needed.

Pearson Education – Cognizant (February 2018 –April 2018 )

Senior migration Engineer, Architect, Engineer
 Active directory and application migration hands on engineer lead and architect.
 Cloud to Cloud email migration technical lead working with Binary Tree.
 Design, Build and implement OKTA identify management post-merger with Amneal Pharmaceutical.
 Design and Build OKTA cloud and on-premise application two-factor authentication.
 Design and Build OKTA cloud and on-premise application Seamless Sign-On.
 Post-merger Datacenter consolidation. Over 400 applications and 1500 servers was consolidated.
 Office 365 / Azure R-BAC design, configuration and rollout to all national and international users.
 Azure process automation from on Premise application to IaaS, PaaS
 Application and Data process migration to Azure SQL as service and SQL Server in Azure.
 Application and System Security Subject Matter Expert. Providing expert knowledge on environment hardening.
 Design, and implement Identity Protection and Privileged Identity Management for new company users and
administrators.
 As a cloud security subject matter expert, I have provided Tenant restrictions, Application in Azure security.
 Responsible for defining and implementing baseline security requirements for Cloud computing environment
(security monitoring/logging, architecture reviews, identity & access management etc.)
 Responsible for participating in the planning and design of new infrastructure security initiatives in
consultation with Information Technology and DevOps teams.
 As a senior member of the team, I managed a team of nine Engineers, assignment of project tasks.
 Responsible for coordinating 3rd party penetration tests and risk assessments as needed.
Zoetis Inc. Parsippany, NJ (January 2018 – April 2018)
Senior Migration & Security Architect / Engineer – Cognizant
 Winnows & Linux server and application migration to Azure SaaS and IaaS model.
 Utilizing Azure Site Recovery service and Push and Pull model. Migrated over 3300 servers.
 Complete redesign of backup system. Using Microsoft DPM to Disk and push to cloud.
 Hands on migration of AWS VMs to Azure IaaS. Over 2200 servers with applications migrated to different regions
of Azure
 Hands of Active Directory consolidation of ten (10) disperse forests in one unified forest.

V4.0

DCL3 - Confidential
 Nojan Emad Page 4

Azure Automation using PowerShell and Chef with 90 separate nodes.

Design, Install Azure security model based on five (5) proven security framework.
Design and implement Azure security model based on CIS Microsoft Azure foundation Security Benchmark.
Install and configure Red Lock to monitor, control and report on Azure.
Install and Configure Azure key Vault for lower and production Azure tenants.
Utilizing CloudScape to Optimize Cloud IaaS pricing model and data center workload sizing, I utilized this tool
in conjunction with Azure automation process.
 Responsible for defining and implementing baseline security requirements for Cloud computing environment
(security monitoring/logging, architecture reviews, identity & access management etc.)
 Responsible for coordinating 3rd party penetration tests and risk assessments as needed.
Margolis Edelstein, Philadelphia, PA (November 2017 – April 2018 )
Senior Consultant - Cognizant
 Office 365 deployment / migration from Google G Suite.
 Design and Implementing Azure two factor and boundary access.
 Implementing Directory Synchronization and Azure auto-license framework.
 Design and Deploying migration setup for multiple types of migration. (Cut-Over, IMAP, Staged and Hybrid)
 On-Boarding and Off-Boarding the mailboxes from Exchange Online Servers.
 Migrating the Shared, Resource and Room Mailboxes to cloud and from cloud to On-Premise.
 Handling post migrated issues like permissions and password issues for the users.
 Administered and supported Office 365 and MS Exchange policies.
 Setting up the ActiveSync for the mobile messaging services.
 Managed MS Exchange servers, AD applications and public folders.
 Resolved tenancy technical issues and monitored Office 365 systems.
 Automated and executed Office 365 procedures utilizing Windows PowerShell.
 Active Directory consolidation project. In this role I architected to collapse seven forest’s in to one AD forest
 Design and implement security posture framework for the law firm to measure the risks and adhere to the
mitigations outlined in an audit.
 Utilizing CloudScape to Optimize cloud price and workload modeling and sizing
 Failed audit risk mitigation, in this role I would be running tools to understand Where are the risks, I would
investigate What is the risks and How to mitigate it.
 Design and implementation of Intune Device Management in a hybrid scenario with SCCM as a hierarchy.
South Jersey Energy , Folsom, NJ (October 2016 – November 2017 )
Senior Solution & Security Architect& Engineer - Cognizant
 Hands on migration lead from Exchange 2010 to office 365 in a hybrid scenario. I was responsible for all aspect
of the project. As an technical lead I was responsible for complete end to end design, configuration and
delivery of the project.
 Hands on migration lead from Mobile Iron MDM to Microsoft Intune. I was responsible for all aspect of the
project. Design, test and delivery of Intune policies to adhere to the new security standards that I
implemented using NIST Security Framework based on best practices for U.S. based energy companies.
 In my role as a Security architect I would be working very closely with Board of Public Utility, DHS Cyber
Security division to mitigate all risks associated with SCADA networks. Introducing security tools i.e. Varonis
Systems, Splunk and RSA security analytics framework, to build an intelligent detection response system based
on users behavior.
 In my role as a Security engineer I would be responsible for tracking the source of SPAM, Malware and
fraudulent emails, utilizing variety of cyber security tools.
 Configured and implemented DKIM and DMARC frameworks, significantly reducing Spoofing.
 Hands on migration lead for Active Directory consolidation project. In this role I was responsible for
consolidating 4 separate Active Directory forests in to an existing forest. Using PowerShell and other self-made
scripts and tools. Group Policy (GPO) consolidation, migrating and configuring fined grained password policies.
 Hands of migration lead for AD FS upgrade project. I was responsible to upgrade AD FS version 2.0 (2008 R2) to
version 4.0 (2016).
 As a security architect / engineer I was responsible to design a secure access to Microsoft Office 365 waffles
i.e. Teams, Power BI for external clients and partners I utilized Azure B2C and eventually B2B to deliver this
project.
 As a senior architect and engineer I managed a team of six engineers, assigned tasks, followed up on tasks. Set
goals.
 Utilizing RISC Networks cloudscape to provide accurate data center migration to IaaS model for Azure and AWS.
V4.0

DCL3 - Confidential
 Nojan Emad Page 5

 Design and implement security posture framework.

 Architect and Engineer for Azure leapfrog project, in this project it was my responsibly to evaluate current
systems and applications before migration to Azure IaaS and or PaaS.
 Implementation of Multi-forest Azure AD Sync tool pre migration and AD consolidation project.
 Hands on and Architect on multiple high visible projects. ESXi and storage upgrade, Two factor authentication
migration from RSA to Octa. SCADA instrument Migration to Amazon cloud.
 Deployment engineer / SME for Apple iOS / Desktop, Mobile connected to Active Directory
 Deployment engineer / SME for Android OS / Desktop, Mobile connected to Active Directory

KPMG, McLean, VA (August 2016–November 2016)

Senior Cyber Cloud Security Solution Architect & Engineer - Cognizant
 As a Senior cloud security architect I am responsible for ensuring that all KPMG applications moving to cloud are
meeting the security controls build and maintain by the Information Privacy Group.
 Hands on security and risk mitigation for Amazon AWS and Microsoft Azure cloud infrastructure and platforms.
 Perform and review PEN testing based on guidelines defined by NIST.
 Technical hands-on lead for KPMGs leapfrog project, deploying proof of concept and version 1.0 of office 365,
Azure Privileged Identity manager (PIM), Exchange online, Intune in a hybrid scenario.
 Define guidelines and policy’s based on international exposure of application and systems.
 Define technical guidelines and policy’s for Azure, IaaS, SaaS, and PaaS platforms.
 Working with Microsoft and KPMG International teams, I designed, build and maintained Azure in Sovereign cloud
scenario
 As a senior architect and engineer I managed a team of four security engineers, assigned tasks, followed up on
tasks. Set goals.
 Design and build ADFS 4.0 in a new ADFS farms scenario. These farms would be used for Office 365 migration
project.
 Upgrade current ADFS 3.0 farms to ADFS 4.0, to serve the applications moving to the Azure and AWS and SML 2.0
 Security testing against Intune device enrolment, ADFS 3.0 and 4.0 issues and Active Sync scenarios.
 Security testing against on-premise scenario versus AWS and Azure cloud platforms.
 Report writing, i.e. security assessment reports, Security Assessment Plans and remediation reports
 Design and documented cloud base security controls and test cases, specifically designed for IaaS, SaaS and PaaS.

KPMG, McLean, VA (May 2016–October 2016)

Enterprise & Solution Architect, Office 365 Migration Engineer - Cognizant
 As a Senior member of the Enterprise Architect team one of my responsibilities is to ensure that all internal and
external DTE’s Enterprise Projects adheres to the DTE’s technology road map.
 Technical hands on lead for Office 365, Azure migration to cloud program. My daily tasks was to oversee and ensure
all migration issues are resolved and documented.
 Technical hands on lead for Office 2016 role out to over 43000 users and devices across the United States. My
primary role was to ensure a successful pilot, and hand off to deployment team.
 Architected and POC the DTE’s road map to clod. Using App-V and Amazon Application to Cloud platforms. Create
and build application testing scenarios based on Enterprise Architect best practices.
 Design and Implement Windows 7 to Windows 10 migration technical road map using Microsoft Deployment Toolkit
 Migration Subject Expert Matter for DTE’s Windows 7 to Windows 10 migration.
 Design and Build DTE’s Microsoft Deployment Toolkit environment farm, based Windows 20102 R2.
 Lead Architect for SharePoint 2013 to SharePoint 2016 Hybrid Solution.
 Hands on Lead for DTE’s Cyber, cloud security initiatives, Data calcification, DLP, Environment hardening
 Hands on Lead architect for IaaS, SaaS and PaaS initiatives designing environments based on EMC VBlock and Cisco
UCS, across all DTE’s Datacenters. Design and Build the future green data center.

Solenis L.L.C, Wilmington, DE (June 2015–May 2016)

Microsoft Office 365 and Azure Architect & Engineer, Desktop and Application Migration SME
 Solution Architected and Implemented Solenis Active Directory from paper to server. Single forest design with
reginal de-centralized OU management design.
 Solution Architected and implemented Office 365 Infrastructure that included complete ADFS 3.0 and ADFS Proxy
Claim Based Deployment.
 Solution Architected and implementation of complete Azure deployment.
V4.0

DCL3 - Confidential
 Nojan Emad Page 6

 Solution Architect and implementation of Microsoft Forefront Identity Management (FIM) for Solenis Onboarding
and Off boarding.
 Solution Architected and implementation of Louts Notes, Exchange and Zimbra email systems migration to Office
365, Exchange online with Staged and cutover design and Hybrid design for Exchange server 2010 migration. Using
PowerShell and Binary Tree for Notes migration
 Design and implementation of SharePoint online services and migration of Domino .Docs to SharePoint online
services in an Hybrid deployment.
 Migration of Shared data to SharePoint online services.
 Design and implementation of Azure and online Directory Synchronization for office 365.
 Design and implementation of FIM Synchronization and migration of Office 365 Dir Sync to FIM Sync.
 Design and implementation of Skype for Business in an Hybrid design.
 Migration of Lotus Notes Same Time and Lync 2013 to Skype for Business
 Security auditing for Microsoft servers, devices including non-Microsoft mobile devices.
 Solution Architected and implementation of OneDrive for business and migration of personal home drives to
OneDrive for Business.
 Security auditing for Microsoft SQL, Oracle and SAP using IBM QRadar, SARA and GRC.
 Provide technical leadership to the enterprise for the information security program.
 Mentor and train others in information security in addition to training for other technical groups.
 Install and maintain security infrastructure, including IPS, IDS, log management, and security assessment systems.
 Assess threats, risks, and vulnerabilities from emerging security issues.
 Publish Security Updates newsletter for technical groups.
 Draft enterprise security standards and guidelines for system configuration and server and workstation hardening
program.
 As a senior architect and engineer I managed a team of eleven engineers, assigned tasks, followed up on tasks. Set
goals.
 Solution Architected and Migration of Solenis legacy Application and Servers from On-premise to AWS
 Managed process and acted in the lead role for computer security incident response team.
 Architected a Data Center migration from Kentucky to Dallas and Virginia. Applications and Servers.
 Perform and create procedures for system security audits, penetration-tests, and vulnerability assessments.
 Develop scripts to maintain and backup key security systems.
 New technology evaluation and business improvements.
 Solution Architected Microsoft Direct Access always online infrastructure.
 Security auditing for Microsoft Servers and Desktops IPNS and SCCM.

PENN MEDICINE U OF PENNSYLVANIA HEALTH SYSTEM, Philadelphia PA (March 2015–September 2015)

Microsoft Office 365 and Azure Architect and Engineer
 Design and Implemented Office 365 infrastructure deployment that included completed ADFS 2.0 and ADFS Proxy
Claim Based design and deployment.
 Performed a complete migration of Microsoft Exchange 2010 to Office 365 of 33000 users using Dell/Quest tool in a
Hybrid Exchange 2013 Server solutions
 Performed a complete active directory migration of 4000 users
 Recommended preventive, mitigating, and compensating controls to ensure the appropriate level of protection and
adherence to the goals of the overall information security strategy.
 Assisted in the development of access-controls, separation of duties, and roles.
 Conducted technical risk evaluation of hardware, software, and installed systems and networks.
 Assisted with testing of installed systems to ensure protection strategies are properly implemented and working as
intended.
 Assisted in incident response and recommend corrective actions. Communicated with personnel about potential
threats to the work environment.
 Participated in forensic recovery and analysis. Participated in development and maintenance of global information
security policy.
 Migration engineer for Office communicator Server to Lync 2013 on premise solution
 Design and performed migration from Lync 2013 to Skype for Business Hybrid design
 Design and performed migration from a Multi-Exchange Organization design to a single Office 365 Tenant in hybrid
solution
 Design and performed migration from Louts Notes mail system to Office 365 using Binary Tree migration tool.

V4.0

DCL3 - Confidential
 Nojan Emad Page 7

 Design and implementation of Forefront Identity Management (FIM) for password reset using Windows GINA and
online services.
 Design and Implemented Data Center migration for new acquired hospitals across US.
 Design and implementation of Office 365 and Active Directory Single Sign on (SSO).
 Design and implementation of Office 365 Multi Factor Authentication (MFA) with App Password enabled.
 Post migration Security Audit for Office 365 and other environments using Whisker.

GUARDIAN INSURANCE COMPANY, Bethlehem, PA (December 2014–March 2015)

Microsoft Office 365 and Azure Architect & Engineer
 Solution Architect and implemented Office 365 Infrastructure that included complete ADFS 3.0 and ADFS Proxy
Claim Based Deployment.
 Solution Architect Exchange Server 2007 and 2010 email migration by using hybrid design.
 Designed and implemented Azure hybrid solution.
 Design and implemented Directory Synchronization for Office 365 and Active Directory.
 Implemented PING technology to federate with Guardian on-premise data centers.
 Design and Implementation of federated services, ADFS & ADFS Proxy Form Based Deployment.
 Design and Solution Architected migration of over 33000 lotus notes users to Microsoft Office 365 using Quest / Dell
migration tool.
 As a senior architect I managed 4 engineers, assigned tasked and build a team to hand off.
 Utilized cloud to cloud migration strategy with the power BitTitan power shell command line tool, over 5000
Guardian branded and non-branded agencies and users was migrated to Microsoft office 365 tenet
 Designed and solution Architected a Disaster Recovery & Business continuity plan with a proof of concept based on
a hybrid cloud solution from Guardians datacenter in Verging in to Azure cloud
 Utilized private and public IPs, Hyper-V and VMware technologies, PowerShell scripts to failover and create replicas
in Azure, to build and create Storage groups for the purpose of the DR&BC
 Provided step by step technical documentation of how to recover on demand.
 Designed and Solution Architect Novell GroupWise email migration to a Microsoft Exchange 2013.Over 15000 mail
boxes migrated.
 Solution Architected and Migration of Guardian Life non branded divisions to AWS Services. This included
application for agents and remote workforce.
 Provided training and technical assistance pre and port migration.
 Lead and assisted the Office 365 project team.

QVC, INC. , Westchester, PA (August 2014–January 2015)

Microsoft Office 365 and Azure Architect & Engineer
 Lead Architect and migration specialists for server consolidation project. Migrated over 4000 servers from Physical
to Virtual servers in a HyperV and VMware environments.
 Designed and configured Active Directory Certificate Services in a multi-forest environment
 Lead Lync 2010 migration to Lync 2013 / Skype for Business online multi–tenet Hybrid solution
 Lead Security Auditor for Microsoft pre and post migration to cloud
 Solution Architected and Implemented Microsoft Office 365 complete migration from Lotus Notes to Exchange
online using Binary Tree for QVC’s international divisions.
 Solution Architected and migrated applications to Azure Services.
 Lead IT Specialists for QVC’s Active Director migration to a single forest with reginal delegated OU management
design.
 As a senior architect I managed a team of 6 engineers.
 Provide technical leadership to the enterprise for the information security program.
 Mentor and train others in information security in addition to training for other technical groups.
 Install and maintain security infrastructure, including IPS, IDS, log management, and security assessment systems.
 Assess threats, risks, and vulnerabilities from emerging security issues.
 Publish Security Updates newsletter for technical groups.
 Draft enterprise security standards and guidelines for system configuration and server and workstation hardening
program.
 Managed process and acted in the lead role for computer security incident response team.
 Perform and create procedures for system security audits, penetration-tests, and vulnerability assessments.
 Develop scripts to maintain and backup key security systems.
 Assisted with daily migration support and addressed user issues.
V4.0

DCL3 - Confidential
 Nojan Emad Page 8

 Install and Configure Dell/Quest AD migrator tool for AD migration.

 Lead IT Specialists for NAS to SAN migration.
 Lead Subject Matter Expert for Microsoft Office 365 administration
 Solution Architected and migrated QVC’s DNS environment from Microsoft DNS to BIND DNS.

VERIS ASSOCIATES, INC., Philadelphia, PA (October 2013-August 2014)

Senior Integration & Migration Architect & Engineer for Comcast – NBC Universal
 Worked with NBC and Time Warner Cable to architect a solution on Separation and Integration
 Provided technology best practice guidance and proof of concept on the Active Directory, Exchange, Lync
migration and integration
 Utilized AD FS, FIM and Azure Pack to provide the best possible technology scenarios for a non-agnostic technology
environments
 Expertized Microsoft Exchange, Outlook PST migration to O365 archive project.
 Provided technology solutions to locate, collect, gather and archive all available PST’s at Comcast NBCU
environments and archive them to Office 365
 Managed projects vendor procurement: met with vendors, HP (Autonomy), Dell Quest, Trans Vault, Microsoft and
POC their products, presented and obtain the finding to executives
 Introduced Air watch and SCCM to the community as a lead architect for MDM for Comcast corporate users
 Evaluated move to cloud sceneries with different applications utilizing Microsoft Application Virtualization (App-V)
and Citrix XenApp, VMware desktop and application virtualization for Office 365 / Hybrid Exchange 2013 project
 Migrated 20 sites with over 1.5 TB of data to a single managed platform on SharePoint 2013 Hybrid
 Designed and built a Disaster Recovery with Azure Recovery Services.
 Created the MDT/ OSD image, tested and documented the process
 Create and defended my change tickets with the business unites and resolve any issues pre and post migration for
over 10000 servers
 Tested, documented and implemented the process to extend the schema, upgrade the GPO and get the
environment ready for Read Only Domain Controllers 9RODC)
 Created and defended change tickets with various business unites and resolve any issues pre and post migration
 Upgraded over 2000 active directory domain controllers to Windows 2012 R2

VERIS ASSOCIATES, INC., Philadelphia, PA (October 2013-December 2013)

Senior Systems Engineer and Migration / Integration specialists for DM Transportation
 Provided technical solutions and migration assistants to multiple clients on numerous scales
 Provided migration from Louts Notes to Exchange 2013 Hybrid Office 365 Solution.
 Used Binary Tree migration tool for Active Directory users and computers from multiple domains located in various
part of the world and to Exchange 2010 to Exchange 2013 Hybrid Model from multiple domains located in various
part of the world
 Migrated DM Transportation DR site data center to Azure on a Hybrid model, based on Hyper-V Windows server
2012 R2.
 Deigned and build the Azure recovery based on the Microsoft practice for DM Transportation
 Provided support for Binary Tree Smart Exchange and Active Directory Migrator including the DirSync tool
configuration
 Configure the tool to meet clients specifications at Binary Tree
 Helped over 1500 Servers migrate from Server 2003 and 2008 R2 to Windows server 2012 R2
 Designed, installed and migrated Lync 2010 and 2013 environment with chat rooms, mobile chat, Desktop and file
sharing for over 2500 Lync users
 Led engineer and support for AD migration from 2008 and Windows 2008 R2 to Windows Server 2012 R2 with raising
the domain and forest functional levels
 Created GO replication between PA and CO Data Center for redundancy
 Provided technical solution for Physical to Virtual (P2V) VMware and Microsoft Hyper-V 2012 R2 server consolidation
projects

VERIS ASSOCIATES, INC., Philadelphia, PA (July 2013 – October 2013)

Senior Virtualization Engineer for Defense Logistics Agency
 Planned and executed a domain separation and migration to a new target domain using PowerShell and Migration
Tools
 Supported and planned a migration form Exchange 2010 to 2013 for over 15000 Users.
V4.0

DCL3 - Confidential
 Nojan Emad Page 9

 Provided daily environment support, AD, Exchange, SCCM, SCOM and routers, switches and firewalls
 Planned, documented and executed an exchange 2013 to Hybrid deployment and migrating to Office 365 Exchange
online, from Lync on premise to Lync online
 Designed and installed Lync 2013 environment with chat rooms, mobile chat, Desktop and file sharing for over 7500
users
 Planned, documented, and executed Physical Computers to Virtual Machines in VMM (P2V Conversions) using system
center to lower the total cost of ownership
 Reconfigured PowerShell scripts to manage the day to day of the Hyper-V infrastructure
 Trained new service desk technical analysts to be able to support DLA’s 15000 user community located in East and
West coast
 Planned, documented and executed migration from SharePoint 2010 on premise to SharePoint 2013 Hybrid solution
using BCS
 Planned, designed, and implemented Azure Cloud data Centre with replication and Synchronization to a On-
premise Data Center for over 15000 Microsoft Windows and Red hat Linux (Demo is available upon request)

VERIS ASSOCIATES, INC., Philadelphia, PA (July 2013 – October 2013)

Senior Office 365 Architect & migration specialists / Virtualization Engineer for Venn-Corp
 Planned and executed a separation of Venn Corp as a company from the parent company
 Planned and executed a domain separation and migration to a new target domain using Quest Migration Tool
 Supported and planned a migration form Exchange 2010 to 2013 for over 1500 users in USA and Canada
 Provided daily environment support, AD, Exchange, SCCM, SCOM and routers, switches and firewalls
 Planned, documented and executed an exchange 2013 to Hybrid deployment and migrating to Office 365 Exchange
online, from Lync on premise to Lync online
 Designed and installed Lync 2013 environment with chat rooms, mobile chat, Desktop and file sharing for over 7500
users
 Planned, documented, and executed Physical Computers to Virtual Machines in VMM (P2V Conversions) using system
center to lower the total cost of ownership
 Reconfigured PowerShell scripts to manage the day to day of the Hyper-V infrastructure
 Trained new service desk technical analysts to be able to support Venn Corp 1500 user community located in East
and West coast
 Planned, documented and executed migration from SharePoint 2010 on premise to SharePoint 2013 Hybrid solution
using BCS
 Planned, designed, and implemented Azure Cloud data Centre with replication and Synchronization to a On-
premise Data Center for over 1500 Microsoft Windows and Red hat Linux (Demo is available upon request)

MISSION STAFF, INC., Philadelphia, PA (March 2013 – July 2013)

Senior Infrastructure Engineer/ Datacenter Solution Architect for Beyond Inc.
 Improved efficiency and reduced costs, increased ROI with business process improvement experience via Data
Center Design, Implementation/Integration, Capacity Planning, and Strategic Planning
 Migrated and established a single sign on and identity management system based on Microsoft identity manager
 Implemented and configured Microsoft Lync 2013 system for over 1500 users located across the United States
 Performed daily support and server troubleshooting, AD and Exchange issues, Backup and reporting systems
 Established process and procedures for system monitoring and alert distribution
 Provided setup the POC LAB for the office 365 and created a comprehensive road map to migrate Beyond ‘s 550
users to the Office 365 cloud
 Installed, did setup, and configured Switches and Firewall from Corporate office to the Datacenters, based on
current and future planning
 Migrated a 2000 mailbox Novell GroupWise email system to Microsoft Exchange 2013
 Provided current and future Network bandwidth utilization and throughput tuning for Office 365
 Performed data migration and training for SkyDrive Corp. and SharePoint access
 Migrated over 2TB of data and 200 sites to office 365 migration. and was successfully migrated.

PAPER WORKS INDUSTRIES, Philadelphia, PA (December 2012 – March 2013)

Senior Systems Engineer, Infrastructure Migration Technical Lead
 Planned and executed email migration from shared hosted environment to Microsoft office 365 cloud for over 2500
users across United States and Canada

V4.0

DCL3 - Confidential
 Nojan Emad Page 10

 Planned and executed domain consolidation and upgrade to Windows 2008 R2 environment for over 20 different
domains in single forest methodology
 Installed and configured Quest migration tool for AD, Exchange and SharePoint as a migration platform for 10
Virtual servers
 Executed Group Policy cleanup and re-configuration
 Exchanged migration in a co-existence design to the cloud with office 365 for over 2500 mailboxes
 Migrated Lotus notes and Domino Dot Docs to the Office 365 cloud
 Designed and built a private cloud POC lab with Windows 2012
 Planned and executed SAN migration from Dell Equal Logic to EMC VMAX and VMware upgrade from 4.1 to 5.1 for
over 20 host
 Migrated DPM to SAN based enterprise backup for over 200 servers
 Designed and executed SCCM to replace current manual software deployment, security patching and inventory
 Trained the helpdesk and other IT administrators on how to utilize SCCM
 Conducted detailed technical planning and site architecture optimization; disaster recovery, capacity planning site
design for both national, global and local architectures, system implementation and integration of web, application
and database servers, storage systems (SAN/NAS), security solutions (physical, network--firewalls, data), network
and loss mitigation/fail-over plans and solutions with geographic and application load balancing
 Managed projects with five internal teams (Unix server operations, Windows Server Operations, Network
Operations, Firewalls, Security (physical) and served as single point-of-contact for clients during the process.
 Provide expertise in the area of data center operations and develop recommendations for improving data center
performance and quality by analyzing site usage and determining methods to further improve upon existing
benchmarks

METLIFE (ALICO), Wilmington, Delaware (April 2012 - December 2012)

Senior System Engineer, Active Directory & Email migration specialists
 Ensured successful international migration and integration of MetLife Acquired companies multiple AD domains and
Lotus Notes to Exchange 2010 environment using Microsoft native and Quest tools
 Addressed and executed complex migration of multiple SharePoint and team sites in to a single SharePoint site
with multiple serves in an farm for over 30 countries using database upgrade methodology and Quest migration
manager for SharePoint
 Architected and executed Active Directory domain upgrade from Windows 2003 R2 to Windows 2008 R2 for over 30
countries
 Performed DNS and WINS integration and migration project of all newly acquired sites in AD
 Provided data center migration and server consolidation using HyperV and VMware
 Built VM and HyperV server and workstation templates
 Built the HyperV and VMware infrastructure for the new global datacenter located in the USA for 4 VM hosts and 4
HyperV hosts, with over 10 TB of SAN storage clustered for redundancy
 Implemented VMware VDI infrastructure for the new sites and migrated some of the remote agents laptops
 Applied virtualization to optimize centralized management
 Implement changes across the global network being involved with firewall issues with Verizon and AT&T
 Migrated MS HPC grid for MetLife / Alico accuracy division with very minimal downtime and user impact.
 Packaged and deployed MS Office 2010 to over 4000 users in 33 countries
 Involved in Users, Workstations and Servers migration for multiple regions i.e. MEASA, CEE and APAC using native
tools and Quest Migration Manager
 Developed migration standards for technology refresh. Servers, Domain Controllers
 Facilitated migration and integration meeting between the central team and international teams for upcoming
tasks and responsibilities
 Designed and migrated Remote Work Force in International Divisions of Alico / Metlife to AWS Hybrid Solution. This
included Code Deploy and CLI.
 Provided recommendations for integration and migration of Exchange and server platforms
 Provided Office 2010 rollout to over 30 countries and 40000 (Forty) user base via Microsoft SCCM.
 Designed, developed and implemented Virtual server environment based on VMware and Microsoft Hyper V
technology to be used for local Domain Controllers
 Developed standards for international DR&BC fire drills
 Deployed email archiving system including Symantec email vault and EMC email Extender
 Supported each country post migration and integration of servers, and applications. i.e. citrix, VM and VM
workstations
V4.0

DCL3 - Confidential
 Nojan Emad Page 11

 Implemented and migrated MetLife Patch management serves and Workstations from two different platforms to MS
SCCM

TD BANK GROUP, Mount Laurel, New Jersey (June 2010-April 2012)
Project Coordinator, Senior System Engineer, Senior Infrastructure Architect
 Provided configuration, delivery and continuing support of server, application, and networking technology for
employees of the second-largest bank in Canada and the sixth largest bank branch network in North America
 Executed a full spectrum of project management responsibilities, with executive oversight of the efforts of a team
of 10 builders, application developers, and packagers
 Addressed and resolved application and server issues to a wide user base distributed throughout the United States
and Canada, serving as third-level support for server tickets
 Built and upgraded migrations, code deployment, and patch management, including Windows server and
application patch management using Microsoft and IBM Best Practices
 Migrated over 7,000 workstations from Windows XP to Windows 7 using SCCM.
 Leveraged superior technical expertise and experience in data migration to over 3,000 accounts from Lotus Notes
to a Microsoft Exchange system
 Designed and deployed Symantec email vault for TD Bank North and TD Canada Trust ensuring secure email
archiving for majority of the TD Banks line of business.
 Envisioned, designed, and deployed a monitoring system to oversee the status of 10,000+ servers using HP SIM, ICE,
and IBM Director for HP and IBM hardware monitoring tools
 Created VB and Power Shell scripts to boost the efficiency and productivity of daily administration and automation
tasks
 Authored technical project and environment documentation while presenting whiteboard materials to a diverse
audience of technical and business-oriented stakeholders
 Completed server consolidation project to a virtualized environment implementing VMware and Hyper V technology
 Provided critical guidance for Disaster Recovery and Business Continuity applications
 Executed SharePoint data and site migration project from 2003, MOSS 2007 to SharePoint 2010 platform
 Executed server migration project from SUSE Linux Enterprise to Red Hat Linux Enterprise
 Executed RightFax Solution migration and integration with Kofax mortgage application
 Designed and deployed SCCM across the full spectrum of branches to deliver daily updates
 Migrated security patching from Tivoli to MS SCCM

MERCK & CO., Blue Bell, Pennsylvania (2009-2010)

Senior System Engineer – Migration, Integration Specialist, Project Coordinator
 Supervised a team of 5 onsite and offshore developers
 Provided logical and information architectural design, as well as the architecture for large-scale enterprise Parent-
Child SharePoint farms
 Built and deployed Project Server 2010 encompassing 4 server farms, with integration with MOSS 2007 and
SharePoint 2010, conversion of time and task management from Sage software, and integration of all current
projects and tasks
 Piloted the initial scoping, installation, and training efforts for Project Server, affecting 500 users
 Completed a complex eRoom migration of over 10,000 eRooms to a MOSS 2007 environment, authoring Best
Practice documentation for MOSS 2007 daily operation and migration to SharePoint 2010
 Installed and configured a social networking component for integration with SharePoint, including Newsgator
Enterprise server farms and configuration of Newsgator social sites

TD BANK GROUP, Toronto, Canada (2008-2009)

Senior System Engineer, Senior Infrastructure Engineer
 Designed and built the Microsoft Geo Cluster for Retail and Small Business Banking application, currently supporting
over 1 million clients
 Tasked with coordinating the design and integration strategy to port over 100,000 users from two banks from a
legacy 2003 Active Directory to Windows Server 2008 R2, with an additional 40,000 Active Directory users migrated
from legacy systems to 2008
 Designed and Architected Data Center migration and consolidation.
 Managed projects to integrate Commerce Bank and Bank North systems to TD Bank Financial Group.
 Designed and built VMware server infrastructure, successfully refreshing over 5,000 servers to a virtual
environment, as well as to design and build VMware view infrastructure, installing and deploying over 2000 virtual
desktops

V4.0

DCL3 - Confidential
 Nojan Emad Page 12

 Designed and conducted pre-production testing of the use of SMS and MOM in large environments, collaborating
with three engineers from outside vendors, leading to the installation and configuration of these technologies
 Performed a migration of over 4000 desktop machines from Windows XP to Vista
 Served as the architect for server rollback processes and procedures in both physical and virtual environments
 Migrated EMC email extender to Symantec email vault.
 Addressed and resolved technical issues affecting the SWIFT, PRIME, VOYAGER, ARP/SMS, and CASH MASTER
applications
 Conducted RightFax implementation in Canada based on US configuration

VIDABODE GROUP INC., Toronto, Canada (2008-2008)

Solutions Architect, Builder
 Conducted SMS 2003 R2 migration to a SCCM 2007 10 node distribution and SharePoint migration to MOSS 2007
 Planned, tested, and implemented a migration of Windows Server 2008 from Windows Server 2003.
 Migrated over 2 million handbooks in Documentum eRoom to MOSS 2007 using DocAve
 Deployed Office 2007 to over 10,000 users via SCCM
 Implemented a Windows Vista business upgrade over 2000 users using SCCM
 Designed and deployed Virtual Desktop environment VDM
 Envisioned, designed, and constructed GPO for troubleshooting of legacy application deployments and other tasks
 Designed and deployed Plate Spin (Power Convert) technology for the VM and physical environment
 Designed and configured BizTalk
 Used Plate Spin to execute Disaster Recovery design and testing, including environment setup and writing test
scenarios

EDS/HP, Toronto, Canada (2007-2008)

Senior Solutions Architect, Project Manager
 Completed a Windows Server 2008 migration encompassing over 3500 physical servers and 200 applications
including SQL 2005
 Implemented Microsoft Clustering technology for 12 Exchange 2007 and 20 Windows 2003 R2 Servers
 Managed Microsoft SharePoint 2007 project as well as the Technical Lead for the associated data migration project
 Managed Office 2007 rollout project, distributed via SMS to 40,000 users globally
 Conducted project management for a biometric and face recognition project, implementing technology to enhance
access for oil refineries and laboratories
 Tested and documented pre-production Exchange 2007 migration affecting 40,000 global users

SIEMENS CANADA LTD, Mississauga, Canada (2005-2007)

Senior Solutions Architect, Project Manager
 Hold technical executive briefings, presenting project plans and issues to the executive and PMO office,
collaborating to ensure a successful completion of all projects on time and within budgeted amounts
 Implemented enhancements to current SAN environments, Active Directory, and Exchange environments.
 Served as lead architect for mail security, Spam, antivirus and post disaster recovery design, test and execution
 Contributed knowledge and experience as hands-on technical resource for Siemens VPN migration project,
installing and configuring servers and CISCO VPN appliances
 Served as technical resource on LAN/WAN project, building and configuring Cisco, Nortel, 3Com switches and
routers for Siemens Data center, as well as VLAN configuration and firewall configuration
 Conducted server allocation, SAN carving and DRBC design phase for Canada, successfully migrating over 550,000
global users, with over 90,000 users in North America
 Deployed Office 2003 to over 100,000 users globally via SMS
 Enhanced the current Siemens desktop environment, introducing a new method of desktop and server patch
management
 Leveraged proficiency in Office Project to track and report on the progress, using many of the PMBOK
methodologies to drive the project to success
 Designed, migrated, planned and executed Siemens SMS environment to the System Center Configuration Manager
 Worked for IBM and Dell blade center technology server rollout, replacing over 400 servers hosting Siemens
external clients. Accountable for blade center configuration based on a cluster model, server build, server
hardening, build configuration documentation, IBM and Dell fiber channel and Equal logic iSCSI SAN configuration
and disk carving

IBM GLOBAL SERVICES, Boulder, Colorado (2003-2005)

Senior Solutions Architect, Project Coordinator
V4.0

DCL3 - Confidential
 Nojan Emad Page 13

 Ensured the success of Maritime Life infrastructure integration into the existing Manulife environment
 Tested, designed, and fully documented a process to integrate Active Directory from Maritime to existing Active
Directory of Manulife
 Ensured compliance with proper change management procedure on all Maritime Life integration projects,
reviewing all change tickets for proper Description, Test plan and real blackout plan.
 Collaborated with a team of IBM internal ethical hackers to ensure the security of all Manulife and John Hancock
systems
 Reviewed and analyzed reports generated from penetration tools, presenting findings to clients for implementation
approval
 Resolved of all 2nd and 3rd level issues affecting DNS, DHCP and WINS, Active Directory issues, GPO issues, OS and
other related system issues
 Designed and implemented Scotia Bank Active Directory and migrated 28000 users form NT 4.0 environment
 Design and implemented LDAP solutions for Linux servers. Connected 20 Linux servers to LDAP/Active Directory
 Designed and build a Microsoft virtual test lab for Active Directory migration project
 Designed a remote access solution to support off site servers
 Designed Remote Installation solution (RIS) via PXE boot to build and rebuild servers to cut the time and the cost to
build and refresh servers by 40%
 Introduced Blade Center Technology and migrated servers from HP full size server to blade technology to reduce
real estate cost by 20% per site
 Received IBM Best Transition Architect award in July 2004.

PRIOR WORK HISTORY

Senior Consultant, ONX ENTERPRISE SOLUTIONS, Richmond Hill, Ontario (2003-2003)

Senior Systems Engineer, HP GLOBAL SERVICES, Toronto, Ontario (2001-2003)
Systems Architect, BMO FINANCIAL GROUP, Toronto, Ontario (2001-2003)
Systems Engineer, EDS CANADA, Toronto, Ontario (2000-2001)
Systems Engineer, BANK OF MONTREAL ELECTRONIC BANKING SVC (1999-2000)
Systems Engineer, KINKO’S CANADA LTD, Toronto, Ontario (1997-1999)
Network Analyst, MICROSOFT CANADA LTD, Mississauga, Ontario (1996-1997)

EDUCATION

UNIVERSITY OF ONTARIO WATERLOO

Bachelor of Science Degree in Computer Science
Master Degree in Information Systems

TECHNICAL PROFICIENCIES

SCCM 2012 R2 , Configuration Manager, Operations Manager 2012 R2, Operations Manager 2012
DR & BC, SCCM, MOM, SMS and SCOM
Active Directory and Exchange. Office 365, Hybrid
HP family of servers, IBM family of servers, Blade System
Grid Computing Technology, Virtualization Technology, Cloud Computing
Microsoft HPC, Hyper-V, VMWare, APP-V
HP SIM, ICE and IBM Director for HP and IBM hardware monitoring.
Installation and configuration of SQL 2008 R2, Windows 2008, 2012 R2 servers
Patch Management, Problem and Change Management
Biztalk. O365 and Binary Tree, Quest Tools, Azure, AWS

PROFESSIONAL CERTIFICATIONS

MS Cert. IT Professional MS Cert. Technology Specialist MS Cert. Solution Associate

MS Cert. Cloud Architect
MS Cert. Desktop Support Technician
V4.0
(MCTS)
MS Systems Administrator: Messaging MS Cert. Systems Engineer:
Messaging
MS Systems Administrator: Security MS Cert. Systems Engineer: Security

DCL3 - Confidential
 Nojan Emad
MS Cert. Systems Administrator
MS Cert. Systems Engineer
Red Hat Cert. Engineer (RHCE) (2014)
Cert. Novell Engineer + Master (CNE)
Certified ITIL
Cert. DRBC consultant – EMC
HP Expert One – Updated 2016
CISSP – Updated 2016
V4.0
DCL3 - Confidential
MS Cert. Systems Engineer + Internet
MS Cert. Professional
VMware Cert. Professional (VCP)
Cert. Linux Professional (LPIC 1 and
2)
IBM Professional Server Engineer -
PSE
Pending PMP Certification.
MS Cert. Master (MCM) ( End of 2016)
Page 14
MS Cert. Professional + Internet
Red Hat Cert. Technician (RHCT)
MS Cert. IT Professional (MCITP)
Cisco (CCNA, CCET, CCDA)
HP Cert. Server Engineer
MS Cert. Architect (MCA) (End of
2016)
Information Systems Security Prof.