Michael Erdely
3348 Tanterra Circle
Brookeville, MD 20833
mike@erdelynet.com
(301) 908-3865

SKILLS

Operating Systems:

Strong: OpenBSD, Redhat-based Linux, Mac OS X

Good: Windows XP, Windows 2003, other Linux

Fair: FreeBSD, Solaris

Software:

Strong: Bacula, Sendmail, Bind, Courier-IMAP, OpenSSH, Nagios, ClamAV, OpenBSD PF, SpamAssassin, OpenBSD spamd, GNU screen, Apache 1.3, OpenVPN, Unix Shell Scripting, Windows/DOS Batch Scripting

Good: (Open)LDAP, Apache 2.x, MySQL, PostgreSQL, Exchange 2003, Jabber Server, CVS, Subversion, TWiki, Wordpress, Perl, PHP, VBScript, Javascript

Fair: Cisco IOS, Trac, MediaWiki, Bugzilla

EXPERIENCE

Developer, OpenBSD
September 2007 to present

Use the ports framework to port third-party software to OpenBSD. This sometimes involves reading and patching the third-party source code (often C), configure scripts and Makefiles to make it build and work on OpenBSD. Manage bulk builds of alpha packages. Test code for ports and the base system on different architectures: i386, amd64, macppc, alpha and sparc64 (real hardware) and i386 and amd64 (VMware). Track and manage ports using CVS. Collaborate with developers all over the world using chat and email.

Manager of IT Services, SRA International/Raba
April 2007 to present (Columbia, Maryland)

Manage Raba-legacy IT resources: internal websites and customer systems hosted on Raba network. Updated custom-built Raba Portal to authenticate against SRA Active Directory using LDAP. Planned and scripted many steps in the Raba-SRA integration transition including synchronizing usernames/passwords for email migration. Managed and retired Apple OS X Server running LDAP, Windows File Sharing Services and email. Managed NetBackup server backups. Migrate from NetBackup to Bacula. Manage dual OpenBSD CARP firewalls. Manage Cisco-based IPsec VPN authenticating against a Solaris-based RADIUS server. Provide "consultant"-support to SRA System Administrators supporting different customers. Set up and manage MediaWiki and SVN repository on OpenBSD for the internal media department authenticating against Active Directory. Use Nagios to monitor the health and status of the Raba Legacy servers and services.

IT Manager, Epok, Inc.
September 2003 to April 2007 (Bethesda, Maryland)

Manage IT resources and staff. Provide 3rd level IT support for local, West Coast office, New York office, home office and international users. Manage network and physical security for offices. Manage OpenBSD firewalls (migrated from Linux iptables) with CARP for redundancy and IPSec tunnels between offices. Manage Mac OS X, BSD, Linux, Windows servers and desktops. Implemented anti-virus, anti-spam and anti-spyware systems. Implemented VPN for home office and road warrior users for Windows, Mac, Linux and BSD clients using OpenVPN. Reduced login complexity by using Active Directory to authenticate many unix logins, Jabber IM and web applications. Assisted developers in integrating Epok's product with our Windows Active Directory infrastructure. Managed move of IT resources for headquarters office to a new location. Involved in planning of almost all phases of the move. Deployed Microsoft Exchange 2003 (migrating from Linux Courier IMAP server) for Windows/Outlook, Mac/Entourage, Linux/Evolution and Thunderbird, Blackberry (Enterprise Server) and Palm (ActiveSync Server) users. Exchange fronted by sendmail on OpenBSD. Manage Microsoft SQL (for Great Plains) and MySQL databases (for Wordpress, Bugzilla, Bacula, Jabber and other applications). Manage Merlin Magix/Legend phone switch and voice mail system. Use Nagios to monitor the health and status of the servers and services and notify the IT staff of problems.

Senior Consultant, Rand Solutions Group, Inc.
January 2002 to September 2003 (Washington, DC)

Managed network security (firewalls, VPN) for 13 locations. Implemented SpamAssassin for site-wide email spam filtering. Managed office move which included implementing failover Cisco Pix 515E firewalls with 3 DMZs and IPSec VPN Access for users, upgrading from NT4 to Windows 2000 and Active Directory and upgrading from Exchange 5.5 to Exchange 2000 for a company of about 75 users. Implemented OpenBSD-based firewall/VPN Server (using IPSec/ISAKMP) for multiple customers. Connections made using SSH Communications Sentinel and NAI PGPvpn clients. Implemented Site-To-Site IPSec ISAKMP VPN to enable a client to allow/deny hosted web system securely over the Internet. Implemented OpenBSD-based Proxy server with Content Filter, including web-based management to override sites blocked through the downloaded access lists. Wrote PHP web-based certificate management system for VPN Servers running on Apache on OpenBSD. Provided daily network/user support at several customer sites.

Manager of Platform Integration, rStar Networks
December 2000 to November 2001 (McLean, Virginia)

Used OpenBSD to protect customer and corporate networks and to create VPN connections to Cisco Pix firewalls at customer locations. Installed and maintained Windows 2000 Active Directory and Exchange 2000 server for customer access. Maintained Solaris Satellite Network Management Server, Web Caching Proxy and FreeBSD-based X-Stop Web Content Filter. Built and maintained OpenBSD-based Squid Web Cache. Wrote Perl, Unix Shell, Microsoft batch, VBScript scripts for maintenance, software delivery and system monitoring.

Systems Analyst, Mentor Technology Group
February 2000 to December 2000 (Annapolis Junction, Maryland)

Developed PC vLab product to provide customers with access to real PCs for MCSE training. Configured Cisco routers (including reflexive access-lists) and switches (including VLANs and port-trunking). Write Perl and Microsoft batch scripts to control hardware and software for the labs. Built web-based rack management and lab development system implementing Active Server Pages (ASP), JavaScript and Perl to access ODBC databases (Access) using IIS.

Senior Network Engineer, US Mint (AINS Contractor)
May 1997 to February 2000 (Washington, DC)

Led network team supporting four local sites with 600 users and supported network/helpdesk personnel across the country. Also served as acting Project Manager for 30 people for up to a month at a time when the Project Manager was unavailable. Planned and led Exchange 5.0 installation and desktop upgrade to Windows 95 and NT Workstation 4.0 with Office 95 for 2000 users. Planned and led WAN upgrade from a bridged network to routed Frame Relay using Cisco 2500, 4000 and 7200 routers for ten Mint locations. Planned and led Token Ring LAN upgrade to Fast Ethernet. Maintained multiple NT 4.0 domains including backups, service packs, printing, anti-virus, RAS, WINS, DNS, SNA and DHCP.

Network Engineer, NIH/NCI (COMPUS Contractor)
July 1996 to May 1997 (Bethesda, Maryland)

Maintained multiple NT 3.51 domains including backups, MS Mail, service packs, printing, RAS, WINS and DHCP. Upgraded desktops from Windows 3.x to Windows 95. Planned server upgrade to NT 4.0.

Network Administrator, Bell Atlantic Corporate TV
August 1991 to June 1996 (Silver Spring, Maryland)

Supported LAN Manager network (running on System V Unix) for 50 users running Windows 3.x. Maintained System V Unix server hosting LAN Manager and MS Mail. Maintained NT 3.51 services such as RAS, WINS and IIS. Designed and maintained multimedia lab consisting of Windows, Macintosh, SGI and Sun systems. Planned upgrades to Exchange, NT 4.0 and Windows 95.

EXTRA CURRICULAR ACTIVITIES

Capital Area BSD Users Group - Founder

MetaBUG (Global Federation of BSD User Groups) - Co-Founder

OpenBSD Journal (Undeadly) - Editor, Contributor

CERTIFICATIONS

Cisco Certified Network Associate 2.0 (Exam 640-507) in 2001

Last Modified: August 4, 2008