CHRIS MADDEN

Newport, MN 55055
(651) 492-6420
madden.chris.s@gmail.com

VENDOR NOTES
Work Authorization: W2 – US Citizen
Current Location: Newport, MN
Interview Availability for next 7 days: Anytime – He will make himself available

VENDOR SUMMARY
Chris is an IT professional spending the last nine years specializing within engineering Active Directory.
Din his last role, Chris provided support (Enterprise Admin, Global administrator) of a network of over
60,000 users with offices in countries on every continent (except Antarctica) while transitioning from
On-Prem Active Directory to AD DS on Azure and Office 365. He has also authored PowerShell scripts for
creation of shadow groups to automate enrollment of computers and users in security groups for
application and filtering of Group Policy. When it comes to Active Directory professionals, there are very
few consultants nationwide at Chris’ level.

Experience:
Shutterfly Inc.
5/2023 – Present
Senior Systems Engineer Interpublic Global Group
 Active Directory and Azure security evaluation.

Interpublic Global Group

6/2016– 5/2023
Global Active Directory Engineer
 Level 3 support (Enterprise Admin, Global administrator) of a network of over 60,000 users with
offices in countries on every continent (except Antarctica) while transitioning from On-Prem
Active Directory to AD DS on Azure and Office 365.
 Replaced or retired over one hundred Server 2008r2 Domain Controllers throughout North
America in less than three months upon Microsoft end of life.
 Removed legacy Trust Relationships with decommissioned Domains.
 Implemented enterprise-wide security overhaul including implantation of multi factor
authentication, transference of user maintenance from unenforceable, ad hoc user
administration to a hardened and automated identity management system, transitioned
enterprise to least privileged administrative access, re-delegated Active Directory (D)ACLs and
utilized (S)ACLs for logging, auditing, and alerting.
 Authored PowerShell scripts for creation of shadow groups to automate enrollment of
computers and users in security groups for application and filtering of Group Policy.
 Provided final level support of all aspects of Active Directory for an extremely dynamic
organization consisting of tens of thousands of users, hundreds of Domain Controllers, and a
global footprint.
 Provided user access for Secret IP network via PKI permissions.
  Administration of SSL certification deployments and PKI infrastructure.
 Managing Active directory certificate service, PKI.
 Perform Cloud and On-Premises Server troubleshooting, repairs, and disaster recovery.
 Audits and response plans for Security, Disaster Recovery, Active Directory, and SCCM.
 Utilized PowerShell for auditing and reporting, providing on demand perspective for leadership.
 Identified and architected solution for Group Policy handling of dynamic Microsoft Threat
Detection installations in response to licensing limitations.
 Regularly performed AD maintenance such as DC promotion, DC Demotion, metadata cleanup,
lingering objects, etc.
 Configure and troubleshoot DNS, DHCP, Replication, DFS, Group Policy.
 Respond and react to automated system alerts (SolarWinds).
 DHCP authorizations
 New OU Creation/Deletions
 Create/Delete/Edit Sites and Subnets in Sites and Services
 Create/Delete/Edit DNS
 Updated PKI portals with supporting documentation.
 Created PKI enterprise infrastructure and conduct trends analysis.
 Performed operating system and network disaster recovery procedures and data backup.
 Supported large scale outages and disaster recovery efforts.
 Research, create, edit, and implement Group Policy
 Forcibly Delete Domain Controllers and perform meta data cleanup when unrecoverable
 Remove Lingering Objects from the directory database
 Debug Logging for security and troubleshooting
 Registration of SPNs
 Active Directory Schema modification

UCare Corp.
9/2015 – 4/2016
Active Directory Consultant (Contract)
• Effectively interacted with Business Analysts and Data Modelers and defined Mapping documents
and Design process for various Sources and Targets.
• Gathered user requirements, analyzed and designed software solution based on the requirements.
• Develop, Organize, manage and maintain graphs, tables, slides and document templates for the
efficient creation of reports.
• Interact professionally with diverse group of professionals in the organization including managers
and executives.
• Support and maintain Active Directory and AD services.
• Provide required support for disaster recovery efforts (real or simulated).
• Developed Standard Operating Procedures (SOP) for Monitoring.
• Extensively used data blending, embed functionalities in Tableau.
• Extracted the data tables using custom generated queries from Excel files, Access / SQL database
and providing exacted data as an input to Tableau.
• Created Tableau scorecards, dashboards using stack bars, bar graphs, scattered plots, geographical
maps, Gantt charts using show me functionality.
• Worked extensively with Advance analysis Actions, Calculations, Parameters, Background images,
Maps, Trend Lines, Statistics, and Log Axes.
• Used Groups, hierarchies, sets, localization to create detail level summary report and Dashboard to
cater users from different countries.
• Maintain Microsoft Windows Active Directory by preforming role-based access control, monitoring,
security, backups, scripting, and disaster recovery.
• Worked with tableau administrator in Creating users, groups, projects, Data connections, settings.
• Defined best practices for Tableau report development. Hands-on development assisting users in
creating and modifying worksheets and data visualization dashboards.
• Worked on functional requirements sessions with business and technology stakeholders on data
modeling, integration, and configuration for data warehouse with automated and manual field data
collection systems
• Coordinated database middleware issues with DBA's, system performance with System Architects.
• Maintained server activities, user activity, and customized views on Server Analysis.
• Implemented data security by creating user filters.
• Provided 24/7 production support for Tableau users and conducting trainings to user on interact,
filter, sort and customize views on an existing visualization generated thru Tableau desktop.
• Created SQL Queries for testing the tableau Dashboards.
Environment: Tableau (Desktop/ Server), POWER BI, Oracle SQL Developer, SQL Assistant, HPQC, Oracle
11g, Microsoft office 2007, Business objects, SQL, PL/SQL, T-SQL.

Ecolab, Inc.
1/2015 – 9/2015
Active Directory Engineer (Contract)
 Point of contact and engineer responsible for day-to-day operations of multi-forest, multi-
domain, global Active Directory Environment.
 Tuned raw installation of System Center Operations Manager into usable global network alert
and warning system.
 Responded to request for updates and issues with Group Policy, DNS, Sites and Services and
Inter-site Replication.
 Maintained system integrity/availability and controls for AD/PKI core services.
 Recovered AD/PKI core and adjacent services from unplanned outages as well as define, plan,
and implement changes on required infrastructure environment.
 Produced PowerShell scripts and automated tasks for User Administration group.
 Documented and performed cleanup of domains using PowerShell scripts.
 Provided and disseminated best practice security standards.
 Identified and remedied Active Directory and Domain Controller issues (i.e., Lingering Objects,
physical network changes or outages, Domain Controller retirement and promotion, etc.).

Best Buy
2014 – 1/2015
Active Directory Engineer (Contract)
 Supported initiative to identify and architect solutions in Active Directory with the goal of
improving security Validated SID filtering and evaluated Selective Authentication for all
production forests and domains.
 Implemented Advanced Group Policy Management in all production forests.
 Documented, archived, and eliminated unlinked and empty GPOs.
 Evaluated and standardized group membership (Guests, Administrators, Exchange Enterprise
Servers, Remote Desktop Users, etc.) in all production domains and forests.
  Documented and performed cleanup of domains using PowerShell scripts (identifying empty
groups, accounts never logged onto, password not required, password never expires, active
accounts in disabled OUs, etc.)
 Disabled IE on Domain Controllers via group policy.
 Coached outsourced Active Directory team in trouble shooting and resolving AD issues.

Minnesota Depart of Veteran Affairs

2013 – 2014
Systems Analyst
 Provided systems administration in hands-on redesign and upgrade of Active Directory, server
upgrade and refresh leveraging VMware, and incorporation of MS System Center 2012.
 Created new Organizational Unit structure in preparation of merger of MDVA domain into the
State of Minnesota’s AD Forest.
 Consolidated and streamlined Group Policy, eliminating dozens of redundant and superfluous
Group Policy Objects.
 Created and implemented Group Policy to deploy printers, kiosks, and digital certificates.
 Performed system, resource, and file permission analysis.
 Restructured NTFS access in line with HIPPA and PII standards for enterprise.
 Corrected issues with DHCP and DNS.
 Built and serviced MS Server 2008 and 2012 in vSphere environment.
 Technical Lead for End User Computing and Windows 7 deployment teams.
 Aided in the development of a Microsoft Management Console based custom helpdesk tool
utilizing PowerShell, PsTools and ADUC Saved Queries.
 Acted as administrative lead for End User Computing managing scheduling/coverage,
dissemination of knowledge, problem monitoring and escalation, ticket monitoring and
resolution, vendor coordination and developing resolution strategies through interaction with
supervisors, managers, and end user during a two-month absence of the department’s manager.

Thomas Reuters
2013
Server Administrator
 Created server environments to provide cloud-based access to legal software.
 Built schema and created organizational units, users, groups, etc., in Active Directory Installed.
 Configured and published software on Citrix XenApp servers using Citrix Appcenter.
 Installed and configured RAS connection for each environment.
 Configured SQLO server and databases for centralized organization of multiple environments.

John Ryan Performance

2012
NOC Engineer
 Monitored network stability and performance to ensure 24x7 operations and resolving service
impacts as they occur.
 Configured routers, firewalls, and switches.
 Created new image for remote PCs.
 Handled trouble calls and work closely with field technicians and telecommunications carriers to
resolve service issues.
  Validated problem descriptions and perform detailed problem diagnosis; track and update
problems in trouble-ticketing system.
 Performed scheduled configuration changes to network.
 Recommended solutions to correct network trouble issues and faults.

Honeybee Low Voltage

2010 – 2012
NOC Engineer
 Provided communication of devices on a local area network.
 Configured switches and routers to provide a communications schema for LAN.
 Forwarded necessary ports through router and register with vendor’s dynamic DNS.
 Provided DHCP scope as well as static IP addresses outside the scope.
 Configured remote controls and smart devices to monitor and control equipment and systems
both locally through the LAN and remotely over the internet.

Travel Leaders Group

2007 – 2010
NOC Engineer (Contract)
 Individually consolidated an acquisition from four locations to one, creating an image for
distribution on new laptops and desktops, establishing Active Directory Organizational Units,
user and computer accounts and Exchange mailboxes, integration into WSUS and Symantec End
Point management, and onsite conversion to Travel Leader’s network infrastructure and IP
phone system.
 Created data center and network infrastructure for newly formed headquarters of an
international company.
 Assimilated offices and users attained through acquisitions and mergers, both remotely and on-
site, traveling to locations throughout the US.
 Created XP and Windows 7 images for existing and newly acquired business units and
companies, incorporating individual line of business applications and various hardware
platforms.
 Administered Active Directory users, computers, security groups, and group policy.
 Administered Microsoft Exchange user, shared, conference room and equipment mailboxes,
distribution lists, public folders, and associated calendars.
 Performed network backups.
 Administered RSA VPN access through creating, modifying, and troubleshooting VPN user
accounts and RSA tokens.
 Provided Avaya PBX and modular messaging administration of user extensions, voice mail boxes,
automated and special hours messaging and hunt and seek group extensions.
 Provided Server support locally and remotely of MS Server 2003, MS Server 2008, and Terminal
Services.

Minnetonka Public Schools

2006 – 2007
IT Infrastructure Technician
 Performed workstation software support for user’s district wide both on site and remotely
through SMS and Microsoft Terminal Service.
  Made necessary adjustments to Active Directory (Users, Workstations, Group Policy, and
Organizational Unit membership) to facilitate stability in a dynamic user environment.
 Handled wiring, activation and troubleshooting of network ports, hubs, and switches.
 Generated detailed knowledge base documentation.
 Assisted with the setup of specialized equipment for instructional staff.
 Participated in projects for technology deployments and initiatives.
 Coordinated with Media Department staff on site related incidents and initiatives.
 Documented and tracked warranty work.

Orbit Systems
2005 – 2006
IT Network Administrator
 Field technician responsible for on-site and remote network administration and technical
support for five metropolitan companies and their remote systems and users 24/7 through
utilization of SMS and Microsoft Terminal Services as well as proprietary remote connection
applets included in various lines of business applications.
 Responsible for repair, installation, upgrade, and maintenance of on-site computer systems
including workstations (software and hardware), file and print servers, Terminal Servers,
printers, scanners, either net port, hubs and switches and all peripherals.
 Modified Active Directory by adding, removing, and modifying user accounts (user rights, e-mail,
resource access and issues pertaining to IPTs).
 Coordinated with vendors to support, repair, maintain, upgrade, and install proprietary line of
business applications.
 Maintained daily contact with customer representatives on any and all IT related issues in the
form of face-to-face meetings, telephone interaction, e-mail, and report generation.
 Provided on-site training as well as written and illustrated instructions for software use on an as-
needed basis.
 Generated customer-specific knowledge base documentation

The Computer Guy

2002 – 2005
PC Technician
 Performed in home installation, upgrade, repair and configuration of hardware, software,
printers, Work Groups, wireless networks, and various peripherals for residential customers on a
direct hire basis.
 Contracted with small businesses (i.e., Semper Fi Security, various restaurants, etc.) to perform
hardware break/fix, software upgrades, file recovery, computer moves and peripheral
integration as well as consultation on hardware and software for new purchases.

United Healthcare
2002
IT Infrastructure Technician
 Contracted to United Health Care as the IT Professional for the accounting group.
 Performed all IT related duties including wiring, activation and troubleshooting of network ports,
hubs and switches, maintaining inventory of accountings IT related equipment, building and
rolling out new PCs, performing hardware upgrades and repairs, monitoring, trouble shooting
and maintaining NDS printing, NDPS printing and Windows 2000 printing and desktop support of
 Windows NT and 2000 workstations, the Novell Network and Windows NT (and Windows 2000
for printing) networks.
 Supported numerous Data Base front ends running on 3 different versions of DB2 and Oracle as
well as IBM Mainframes (OS390), Access Databases, Lotus Notes and dozens of different
applications and Office Suite add-ins.

Xcel Energy
2001
Desktop Technician

Ecolab, Inc.
2000
Network Administrator

Smith Micro Technologies

1999 – 2000
IT Computer Support

Globe College
AAS Degree (Data Communications)