Donald Allan Stamps

San Francisco, CA 94107 / (628) 400-3615 / Donald.Stamps@donsconsulting.com

OBJECTIVE:  Cloud Architect, Cloud Security Engineer

EXPERIENCE SUMMARY

• 20+ years, IT Implementation Services
• 20+ years Senior IT Project Manager (server, networking, and security architecture)
• 20+ years, Supervising Manager (teams of 2-20 software developers / support engineers)
• 3+ years, Software Designer, Developer (coding)

EXPERIENCE PORTFOLIO

05/22 – present, IT Security Engineer, Public Works

City & County of San Francisco, Public Works Dept., San Francisco, CA

Communications Management, Help-Desk Management, Cybersecurity Management

• Communicate via email, chat (MS Teams), and verbally with directors, managers, peers, and junior help desk and security personnel from other city agencies related to troubleshooting issues, monitoring and implementing cybersecurity assets, and developing service and product launches
• Research, analyze, identify, and develop new security procedures, liaising/coordinating with senior and principal engineers to troubleshoot specific issues; update managers (Manager V and VII) on security incidents and progress updates on product deployments
• Create and distribute progress reports (six-month rolling calendar) showcasing security postures with 10-point metrics (self-developed) to Manager V and VII (weekly) for dialog on improving measurements
• Meet quarterly with reps from San Francisco’s central IT security department to review the department’s security posture (current assets, milestones, procedures, policies, improvements)
• Research, analyze, identify, and generate reports on incidents and vulnerabilities; update servers and applications to current releases to enhance security posture; manage authentication and access controls, including user and system account provisioning, updates and removals, and security role administration
• Respond to information system security (ISS) incidents, including investigation(s), implementing countermeasures, and facilitating recovery post-computer-based attacks; liaise and coordinate with external incident response partners, including law enforcement entities
• Research, audit, and vet vendors for cybersecurity capabilities, security perspective, and evaluation capabilities to deliver government IT services contracts; manage authentication and access controls, including user and system account provisioning, updates, and removals, security role administration
• Conduct research, identify, and implement updates and security enhancements using security monitoring solutions (e.g., Azure Security Center, Splunk, Tenable), resulting in reduced critical incidents, transitioning from >250 critical and high vulnerabilities; implement applying patch management best practices and critical server updates, including those for SQL servers, Windows OS servers, Linux servers, applying up-to-date SSL/TLS certificates, and activating BitLocker encryption across 1,500 workstations/laptops, resulting in critical vulnerabilities diminished to <25 and high vulnerabilities eliminated within 12 months

Project Management, Program Management,  IT Management, and Subject Matter Expert (SME)

• Manage the Project Construction Management (PCM) solution (as an SME, IT security engineer, and PCM Product Manager) for a 1,500-employee department, implementing delivery to end-users over a two-phase, five-year, $5M contract (including software licensing and 3^rd party vendor support), and delivering training/adoption to two construction divisions; coordinate peers, departments, a 3^rd party system integration company, and solution vendors
• Develop plans to migrate multiple legacy systems to Azure cloud infrastructure (06/23-06/24) currently on Microsoft servers reaching end-of-life (support by Microsoft); research, plan, and architect the security architecture of migrated workloads; use SME knowledge of servers, networking, and Azure architecture to coordinate, facilitate, implement, and schedule cloud teams to develop a migration strategy and testing to migrate the servers and services to Azure, and confirm security posture
• Manage, supervise, monitor, implement, maintain/upkeep information system security controls and countermeasures; utilize Microsoft Defender for Cloud, Microsoft System Center, ServiceNow, Sophos, Splunk, Tanium, Tenable, and Varonis to detect misalignment to security best practices and identify security vulnerabilities; utilize Windows operating system and application version and patch compliance, server and workstation inventory management, and identify and resolve unauthorized access or misuse
• Manage, maintain, and monitor security dashboards for vendors (Tanium, Tenable, Sophos) to audit critical or high vulnerabilities detected in servers or workstations (PCs, laptops); triage alerts and assign tickets to help-desk staff, including journey, senior, and principal IT engineers
• Research, analyze, develop, and conduct software User Acceptance Testing (UAT); write PowerShell scripts to analyze and configure servers and workstations; develop and test Azure DevOps procedures and processes for deploying new services and software
• Collaborate with division peers (engineers, managers, directors), including representatives from construction management, financial management, and IT help desk personnel, to facilitate, validate, and integrate security controls and protocols throughout the lifecycle of information systems, software, testing, hardware acquisition, and system development

Human Asset Management, Training and Development, Mentoring

• Manage/supervise one senior engineer responsible for resolving server, SQL, and network encryption security vulnerabilities and one help-desk security technician responsible for troubleshooting and remediating specific anti-malware issues discovered on individual workstations and laptops
• Mentored direct reports and junior colleagues, e.g., security help desk staff, on cybersecurity techniques, meeting monthly to discuss topics, issues, and progress on security training courses
• Draft training materials; develop end-user training for new Project Construction Management solution

01/18 – 01/22, IT Project Director, PMP, Scrum Master

Parachute Technologies, San Ramon, CA

Business Development, Contract Management, Resource Implementation Management

• Directed, managed, and oversaw up to 60 clients’ IT services (annual fixed/variable rate contracts), including national clients in the following industries: law (e.g., counseling, insurance, intellectual property, elections, civil, criminal, human rights), global housing (e.g., Google, Facebook), medical offices (e.g., surgeons, hospitals), research firms (e.g., data analytics, statistical services, local, state, federal agencies)
• Managed, supervised, and monitored team implementation of productivity software, networking, cloud offerings, and network architecture from initial client requirements gathering, design phase through completed projects, and removing progress barriers to achieve scheduled milestones
• Researched and forecasted client needs, facilitated defined project proposals; coordinated data (cost, timeline, deliverables, and identification of client benefits), increasing contracts awarded to the company by 300% (annually); coordinated resources and facilitated team, clients, and vendors interactions
• Research, analyze, and identify data compliance, integrity, availability, and security needs related to HIPAA (health insurance patient privacy), GDPR (European privacy regulations), FedRamp (US federal guidelines for cloud services), FINRA (financial regulations), and the California Consumer Privacy Act of 2018, in addition to compliance and security frameworks, guidelines, and regulatory requirements
• Directed and managed Tier Three information technologists to brainstorm, identify, and implement project scope, reviews, and services delivery; direct technical support issues to the Account Managers
• Conducted business requirements gathering and needs analysis; designed and built new IT network infrastructure and installed applications for new clients, including:
  • Determined servers and services to meet needs for short-term (1-3 years), mid-term (3-5 years), and longer-term (> five years)
  • Specified, ordered, delivered, installed, configured, tested, and commissioned new client network systems, virtual desktops, physical/virtual servers, and Microsoft Azure or AWS
  • Created Office 365 tenants for clients; created Google G-suite tenants for clients
  • Enroll clients in cloud services to provide business functionality, including accounting and payroll services, HR, project management, client management
  • Replace legacy servers with Dell, HP, and Lenovo on-premises servers (if client prefers vs. cloud)
• Delivered 80% of projects on time and within budget, with ‘0’ project failures and <20% overruns (with client approval)

Organizational, Technical Subject Matter Expert, and Client Account Management

• Researched, analyzed, identified, and reported to clients on cyber-security best practices, including hardware/software investments and/or on-premises or cloud servers (e.g., Amazon Web Services (AWS), Google, Microsoft Azure), compliance, financial, operational, and security considerations, including services/pricing from Internet Service Providers (ISPs; e.g., AT&T, Cogent, Comcast)
• Managed product and solution sets, requirements discovery, project scoping, delivery, implementation, client acceptance, and adoption
• Implemented 20-minute check-in sessions and weekly 1-hour reviews with team members (including client management team and senior managers) for project status reports and final client approvals, as well as project closures
• Developed and implemented weekly and monthly reports to provide increased visibility of labor hours worked vs. client project revenue earned for time spent on projects
• Trained senior engineers and account team members to anticipate and capture client needs and change requests; convert requests into project change orders or new opportunities for presentation to client, resulting in increased ‘visible time management;’ reduced scope creep with an 80% reduction in project cost overruns
• Provided Subject Matter Expert (SME) advice and counsel on cyber-security strategies, server, and services migration approaches, for small (<20 employees) to large (>1000 employees) USA-based companies with up to 15 separate work sites per client

Human Asset Management

• Managed, supervised, and delegated tasks to six senior engineers responsible for client projects, pre-sale projects scoping, and escalation for client issues (not resolved by the Help Desk team), including a Senior Engineer, IT Security, two Senior Engineers, IT Projects, a Senior Engineer, and a Senior Mac Systems Administrator; supervised eight field engineers responsible for maintaining/delivering new/updated services
• Conduct informal training for direct reports and four Technical Account Managers (TAMs), including roadmaps, incentive plans (sales), and product and services overviews for TAMs

04/15 – 01/18, Sales and Technical Account Manager (CIO SME)

Intivix, San Francisco, CA

Business Development and Contract Management

• Managed, facilitated, and scheduled implementation of IT support services and infrastructure projects; conducted account management, including preparing IT budgets and developing project road maps 
• Managed, supervised, and oversaw 30 client accounts, including sales for five new clients’ first year, with service contracts valued at up to $20K monthly for three-year contracts
• Developed Requests for Proposals (RFPs) and Statements of Work (SOW) for the following services:
• managed IT services and conducted security assessments
• facilitated maintenance services and/or implementation for hardware (servers, desktops, laptops, firewalls, switches, and wireless access points), enterprise applications (QuickBooks, proprietary accounting software, and industry applications), productivity applications (Excel, Outlook, Word), phone systems (including Voice over Internet Protocol (VoIP)), collaboration systems (e.g., Slack, Zoom, Microsoft Teams), and network infrastructure migrations and upgrades
• migration to Microsoft Azure, Office 365, and other cloud services, as well as enterprise software installations and upgrades, and site networking solutions via MPLS and VPN circuits
• backup and recovery solutions; firewalls, DNS filtering, and enterprise anti-virus solutions

Resource Implementation Management and Subject Matter Expert

• Managed implementation teams; managed six senior engineers, including an Azure SME, a networking SME, and a security SME, plus IT level-3 engineers with ~20 years of experience per engineer
• Provided SME advice to clientele, including research, analysis, and operations audits; identified best-fit software solutions, network, and security infrastructure projects, migration to cloud-based services, server virtualization, backup/recovery systems, multi-tier security solutions; provided security awareness training

06/12 – 04/15, Senior IT Solution Consultant

Ricoh USA, San Francisco, CA

Resource Implementation Management and Client Account Management

• Developed a client RFP including bill of materials for new servers, desktop computers, switches, firewall/router, and supporting delivery schedule that secured the most significant IT infrastructure upgrade project in the Bay Area’s history
• Facilitated and led two teams of 8 members per team, responsible for conducting area sales, identifying, bidding, and submitting contract proposals to win IT infrastructure and upgrade projects, including managed IT services, VoIP phone systems, servers, desktops and laptops, software installs and upgrades, networking solutions, firewalls, and backup and recovery systems
• Oversaw contract work based on number of computers, on-site support, hours of support, and personnel, with equipment valued at ~$100K for a small office to >$2M for larger offices, including small contracts valued at ~$5K (monthly) to provide an on-site technician one day per week, to >$50K monthly to provide a full-time technician on-site five days per week for ~30 client companies
• Managed contract implementation, scheduling, and oversight of deliverables, as well as professional services; coordinated and scheduled support personnel (1-2 on-site engineers) to install networking equipment and servers, and deploy new desktops and laptops
• Provided SME advice to clientele to research, analyze, audit, and identify servers, applications, and computer equipment required to support a company of between 20 and 1,000 employees
• Matrix managed six field service engineers assigned to client sites based on contract parameters

Channel Sales (4 years) Oracle, Redwood Shores, CA

• Developed strategic partnership programs by developing joint customized solutions for clients’ communications, Consumer Product Goods (CPG), and travel & transportation applications within strategic sales goals to sell Oracle licenses to existing and prospective customers
• Facilitated coordination with national business integration partners (Deloitte, Capgemini, PWC, Tata Consulting) and Oracle sales teams to develop and confirm sales strategies to sell additional Oracle licenses to clients; managed three industry verticals, including Travel and Transportation (e.g., United Airlines), Consumer Packaged Goods (CPG) (e.g., Sysco), and Telecommunications (e.g., AT&T and Sprint)

FORMAL EDUCATION

• 12/14, Certificate Program in Project Management, UC Berkeley Extension, Berkeley, CA USA; GPA: 4.0; Courses:  Project Management, Software Project Management, Project Leadership and Building High Performing Teams, Project Schedule and Risk Management, Project Scope, and Quality Management
• 2004, Master of Science, Information Technology, Golden Gate University, San Francisco, CA; GPA: 3.9; Courses: Distributed Systems, Database Administration, Database Management Systems, Decision Science for Managers, Financial Accounting for Managers, Marketing for Managers, Telecommunications Management, C Programming Language, Managerial Analytics, Systems Management and Control, Advanced Cobol Programming, Statistics, Information Technology Systems, Financial Analysis for Managers, Operations Management, Probability and Statistics
• , University of Louisville, Louisville, KY; GPA: 3.75; Courses: Managerial Accounting, Managerial Economics, Advanced Organizational Behavior, Marketing Management, Management Information Systems, Financial Management, Integrated Marketing Communications, New Venture Creation, Business Plan Development, and Global Strategies

CAREER TRAINING / CERTIFICATIONS

• 2023, AWS Certified Solutions Architect – Associate, Amazon Web Services (AWS), Seattle, WA
• 2022, Microsoft Certified: Azure Security Engineer Associate, Microsoft, Seattle, WA
• 2022, Microsoft Certified: Azure Data Fundamentals, Microsoft, Seattle, WA
• 2022, CySA+, CompTIA, Downers Grove, IL
• 2022, AWS Certified Cloud Practitioner, Amazon Web Services (AWS), Seattle, WA
• 2021, Security+, CompTIA, Downers Grove, IL
• 2021, Microsoft Certified: Security, Compliance, and Identity Fundamentals
• 2020, Microsoft Certified: Azure Administrator Associate, Microsoft, Seattle, WA
• 2020, Microsoft Azure Solutions Architect Expert, Microsoft, Seattle, WA
• 2020, Microsoft 365 Certified: Teams Administrator Associate, Microsoft, Seattle, WA
• 2019, Microsoft Certified: Azure Fundamentals, Microsoft, Seattle, WA
• 2018, Linux+, CompTIA, Downers Grove, IL
• 2018, Linux Professional Institute, LPIC-1, Linux Professional Institute Inc., Port Hope, Ontario, Canada
• 2018, (ISC)² CISSP, (ISC)² Corporate, Clearwater, FL
• 2017, Network+, CompTIA, Downers Grove, IL
• 2017, Salesforce Certified App Builder, Salesforce, San Francisco, CA
• 2016, Salesforce Certified Administrator, Salesforce, San Francisco, CA
• 2016, CTT+ (Certified Technical Trainer), CompTIA, Downers Grove, IL
• 2015, Server+, CompTIA, Downers Grove, IL
• 2015, Microsoft Certified Solutions Associate (MCSA): Office 365, Microsoft, Seattle, WA
• 2015, Microsoft Specialist: Managing Projects with Microsoft Project 2013/2016, Microsoft, Seattle, WA
• 2015, Microsoft Certified Professional, Microsoft, Seattle, WA
• 2015, ITIL Foundation, Exin Holding B.V., The Netherlands
• 2015, Cloud+, CompTIA, Downers Grove, IL
• 2014, Scrum Alliance Certified ScrumMaster®, Scrum Alliance, Westminster, CO
• 2014, Project Management Institute PMP®, Newtown Square, PA
• 2012, A+, CompTIA, Downers Grove, IL

TECHNICAL / COMPUTER

• Amazon Web Services (AWS)
• Azure (Microsoft Cloud services)
• Cisco Meraki (firewalls, switches, and wireless access points)
• CISSP
• CSM
• DevOps     
• Fault Tolerant Architecture  
• Google Cloud Platform (GCP)
• Google G Suite
• KnowBe4 – Security Awareness
• Linux
• Network Design     
• PMP
• Risk Mitigation Systems Integration
• Software Development Life Cycle (SDLC)
• Cybersecurity         
• Telecommunications
• User Acceptance Testing (UAT)
• VMware Horizons
• Web Development
• Windows Server
• MS Office: Word, Excel, PowerPoint, Outlook
• LinkedIn:  www.linkedin.com/in/donstamps