Data Analyst Systems Administrator
Resume:
Santi Ross Cloud Systems Administrator Automation Engineer
Largo, FL 215-***-**** *****.******@*****.*** https://www.linkedin.com/in/santiross
Summary
Versatile IT engineer and data analyst with hands-on experience in cloud infrastructure, automation, secure systems, and data-driven solution design. Skilled in Python, SQL, PowerShell, Terraform, CDK, and Excel-based modeling, with a proven record of delivering system migrations, workflow automation, and statistical analysis across healthcare, finance, and government sectors. Deep knowledge of compliance and security frameworks including PCI-DSS, NIST, IAM, and PAM, with expertise in certificate lifecycle management and access control. Known for transforming complex environments into scalable, repeatable architectures that drive performance, compliance, and operational efficiency. Passionate about applying data science and machine learning principles to solve real-world problems, with a focus on accuracy, system integrity, and business value.
Skills
Cloud & Infrastructure: AWS (EC2, S3, RDS, CloudFormation, Lambda, IAM, CDK), Azure (AD, Monitor, DevOps, Security Center), O365, VMware, Citrix, Intune, SCCM, Entra ID
System Administration: Windows Server, Linux (RHEL, Ubuntu), IIS, Active Directory, DNS, Group Policy, patching, upgrades, endpoint management
DevSecOps & Automation: Terraform, Ansible, Jenkins, GitHub, CDK CLI, Docker, Kubernetes, OpenShift, CI/CD, IaC, PowerShell, Python, YAML
Database & Data Modeling: SQL Server, Oracle, PostgreSQL, PL/SQL, T-SQL, SSIS, SSRS, RedGate, Excel-based statistical models
Security & Compliance: IAM, PAM, CyberArk, Venafi, MFA, SSO, TLS/SSL, OAuth2.0, SAML, SOC 2, NIST, PCI-DSS, ISO 27001, ITIL
Monitoring & Observability: Datadog, Azure Monitor, Splunk, IBM MQ, system logs, RCA
Enterprise Applications: Salesforce, nCino, SWIFT, SharePoint, ServiceNow, JIRA, Confluence
Project Delivery: Agile (Scrum, Kanban), SDLC, Waterfall, BRD/FRD, stakeholder collaboration
Achievements
Configured and maintained IIS-based web applications, improving uptime and security.
Developed security documentation to comply with IT policy standards.
Led system patching and application upgrades, ensuring compliance with internal security requirements.
Provided end-user support and troubleshooting, reducing incident resolution times.
Implemented SharePoint Online, Microsoft Teams, and OneDrive for enterprise collaboration
Swift Alliance Access – New acquisitions migration and system upgrades
Experience
Sr System Administrator/Automation Engineer April 2023 – Present
Raymond James Financial Clearwater, FL
Responsible for managing over 300 applications and infrastructure across VMware, AWS, and Azure, leveraging automation tools such as AWS CloudFormation and Jenkins to enhance CI/CD pipelines. Manages certificate lifecycle management with Venafi, identity and access management through CyberArk, and ensures adherence to compliance standards including PCI-DSS, ISO 20001, and NIST. Manage SSL certificate lifecycle processes, including signing and deployment, using Venafi to ensure secure and compliant application access. Utilizes monitoring solutions such as Splunk and Datadog to strengthen system security and operational efficiency. Provides critical support for SWIFT operations, including MT-MX migration projects, and oversees SWIFTNet Link, Alliance Gateway, and IBM MQ to ensure secure and seamless financial transactions for institutional clients. Responsible for managing IT asset lifecycle using ServiceNow CMDB, ensuring accurate tracking, compliance, and optimization of hardware and software assets across the enterprise.
Skills
System Administration: Windows Server, Active Directory, Azure AD, Microsoft Entra ID, Linux (RHEL, Ubuntu), VMware, Citrix, SCCM, MEM/Intune,
Cloud Technologies: AWS (EC2, S3, RDS) CDK, Azure (Microsoft Entra ID, O365, Intune)
DevSecOps & Automation: CI/CD Pipelines, Azure DevOps, Jenkins, Docker, Kubernetes, Terraform, Ansible, Deploying and configuring Commercial Off-the-Shelf (COTS) products for infrastructure integration
Security & Compliance: Identity & Access Management (IAM): CyberArk, Venafi, MFA, SSO, PKI, Okta, OAuth, SAML, PCI-DSS, ISO 20001, NIST, Teammate+
SSL Certificate Management (Venafi, PKI, TLS/SSL lifecycle)
Penetration Testing & Network Security: Wireshark, Kali Linux, Fiddler, Nmap, tcpd
IT Operations & Application Management: Administer and maintain web applications using IIS, Active Directory, SQL Server, and Azure: System upgrades, patching, architecture changes, and IT security policy enforcement, Monitoring application performance and logs for security compliance and optimization, Developing and maintaining system documentation, security policies, and compliance reports, Lifecycle and Data management Management (SDLC,PLM,ITIL) – ServiceNow (CMDB, ASE, IRM, GRC, REQ, RITM, INC, KB)
Enterprise & Financial Applications: SWIFT Alliance Access, IBM MQ, MT-MX migration, SWIFTNet Link, Alliance Gateway, FT Profiles (FINplus, RMA), BIC migration
Achievements
Automation Streamline service lifecycle automation by integrating CI/CD pipelines (Teams Foundation Server)with monitoring data, synthetic checks, and ServiceNow-driven job orchestration for self-repair, scheduled task
Migrated new acquisitions to SWIFT / SIL Alliance Access Banking System
Debit Card Services systems migration (PCI-DSS 27001/SOC2)
SiteMinder to Pingone migration, optimizing authentication workflows, system security
Enhanced monitoring with Datadog Monitors/Synthetics (APIs), Splunk Dynatrace dashboards.
Infrastructure Automation RHEL Ansible, Python, YAML, and PowerShell
Mitigated critical vulnerabilities (CVE and Mitre ATT&CK frameworks, (MoviIT CVE-202*-******, 34362, 45046)
Sr Systems Administrator/Security Analyst November 2021 – April 2023
PSI(Government Contract) St. Petersburg, FL
Managed and administered cloud infrastructure across multiple environments using HP Synergy, VMware vSphere, AWS, Citrix, Azure AD, IIS, SQL, SCCM/MDM, and Commvault for backups. Led Vista (Cache/IRIS) migration through Ansible scripting and playbooks. Developed and enforced compliance policies aligned with NIST CSF, ISO 27001, and MITRE ATT&CK. Automated infrastructure using AWS CloudFormation and Terraform while deploying applications with GitHub, Python, and PowerShell. Monitored environments with Splunk and SolarWinds, identifying and resolving vulnerabilities to maintain operational efficiency. Managed SSL certificate lifecycle using Venafi and other tools, ensuring secure authentication for web applications and infrastructure. Automated certificate updates for Linux environments to enhance security and compliance. Implemented IT asset management processes, tracking and maintaining hardware/software inventory to align with compliance standards. Utilized ServiceNow HAM/SAM to manage asset records and lifecycle for VA infrastructure.
Skills
System Administration: Windows Server, Linux (RHEL), HP Synergy, Dell VxRails, VMware, AWS, Azure, Azure AD, Microsoft Entra ID, O365, Intune, IIS, SQL, Oracle, SCCM, DLP (Symantec, McAfee, Microsoft), ForeScout, Centrify, Commvault (Backups), VA Vista
Cloud Technologies: AWS (EC2, S3, RDS, AWS CloudFormation, AWS CDK CLI), Azure (Microsoft Entra ID, O365, Intune, Citrix)
DevSecOps & Automation: Automated CI/CD pipelines using Terraform, Python, PowerShell, JavaScript, C#, ASP.NET, GitHub, VS Code, Infrastructure as Code (IaC) and serverless automation
Security & Compliance: Identity & Access Management (IAM): CyberArk (PSM, EEV, CPM), Venafi (Certificate Lifecycle Management), MFA, SSO, PKI, Okta, OAuth, SAML
Compliance Standards: NIST CSF (800-53 171), ISO 27001, ISO 25010, MITRE ATT&CK
Penetration Testing & Vulnerability Management: Mitigation of CVE vulnerabilities (CVE-2021-44228, CVE-2021-45046), leveraging Mitre ATT&CK and Nessus
SSL Certificate Management: (Venafi, PKI, TLS/SSL lifecycle), Automation of Certificate Management (PowerShell, Ansible)
Security Operations: SOC, REEF, Role-Based Access Control (RBAC)
IT Operations & Documentation: Documented policies, procedures, and SOPs: ATO, SSP, FIPS, DAS, CAR, POA&M, eMASS, ePAS, CCTF, Application Performance & Security: Fortify (SSC), Performance Center, PCMM, TRM, VA Asset tracking management.
Enterprise Applications & Tools: Vista, EHRM, Alexas
Achievements
Automated Vista Databases (Cache/IRIS) conversion project via Ansible Tower
Automated Venafi certificate management update Linux Environments
Automated Citrix Xenserver CVAD, ADM, MCS, SDKs
Mitigation vulnerability CVE/Mirte ATT&ACK – CVE2021-44228, 45046
Solution Architect March 2021 – September 2021
Deloitte (PPP, Eckerd, CDC) Costa Mesa, CA
Facilitated technical projects across government, education, and financial sectors, including PPP support using Salesforce (nCino) for major banks, CDC system support with emphasis on CSIS Registry Plus and HL7 standards, and an OnBase-Banner integration College infrastructure. Delivered secure, scalable solutions through Azure and AWS frameworks, IAM/PAM controls, and compliance with ITIL and SOC 2. Managed proof-of-concept engineering, system migrations, and automation initiatives while collaborating across business units using agile and Kanban methodologies.
Skills
Salesforce / nCino: Workflows, Lightning, Apex, SOQL, APIs, AppExchange, PPP/SBA solutions
Cloud & Automation: Azure, AWS, scripting, S3, CI/CD, POC builds
Systems Support: CSIS, OnBase-Banner, HL7, diagnostics, environments
Security & Compliance: SOC 2, ITIL, HIPAA, IAM, PAM, SSL, SSO, OAuth2.0, SAML2.0
Project Management: Agile, Kanban, cross-team coordination, wireframes
Monitoring: Event Viewer, Azure Monitor, log analysis, RCA
Achievements
Develop wireframes prototypes (using Salesforce sandbox or wireframe tool) for SFDC solutions for BBVA and Synovus, nCino
Delivered proof-of-concept and led OnBase system migration with Banner integration at Eckerd College, completing the project ahead of schedule in under six weeks through rapid coordination, agile planning, and targeted prototyping.
Supported HL7 database migration and CSIS Registry Plus enhancements for the CDC, ensuring seamless data integration and compliance through efficient technical support, system optimization, and cross-team collaboration.
Sr. Solution Architect Sr. Business Systems Analyst November 2014 – February 2021
TD BANK Mount Laurel, NJ
Designed, supported, and modernized enterprise financial systems, with a focus on automation, system reliability, cloud integration, and secure data management. Led the design and optimization of commercial lending platforms, including Salesforce/nCino, Filenet MRA, and Moody's integrations, while supporting PPP/SBA initiatives during COVID-19. Spearheaded infrastructure upgrades, DRE redesign, certificate lifecycle automation, and the integration of asset management with AD. Delivered high-availability environments across Windows, VMware, Azure, AWS, and Dev/Test pipelines. Provided technical leadership across DevOps, QA, and cybersecurity, driving compliance with NIST, ISO 27001, HIPAA, and SOC 2.
Achievements
Implemented LiveSpread for real-time financial risk assessments and automated reporting.
Deployed Salesforce/nCino PPP solutions, accelerating SBA loan processing during the pandemic.
Transitioned DRE from Active/Passive to Active/Active, enhancing resilience and uptime.
Migrated 3 call centers to Windows 10, expanding user capacity and improving endpoint stability.
Automated SSL certificate lifecycle management and endpoint compliance using scripting and policy-based enforcement.
Standardized Dev/Test labs and created reusable deployment and remediation scripts.
Tools & Technologies
Cloud & Infrastructure: VMware vSphere, AWS, Azure, AD, O365, SCCM, MDT, Intune, Citrix
Automation & DevOps: PowerShell, Python, Bash, Terraform, JSON, CI/CD, Ansible, Postman, GitHub, IBM Eclipse
Security & Compliance: IAM/PAM, SAML, OAuth, ACF2, NIST 800-53, ISO 27001, HIPAA, SOC 2, GRC, DLP (Symantec/McAfee), Nessus
Applications & Tools: Salesforce, nCino, Filenet, Moody’s, Lotus Notes, SharePoint, Fiddler, ServiceNow, JIRA, Confluence
Project Delivery: Agile, Scrum, Waterfall, SDLC, ITIL, BRD/FRD, Risk Assessment, RACI Matrix, BPMN/Visio
Education & certifications
Bachelors of science, Rutgers University Camden, NJ
Certificate in Cybersecurity, Massachusetts Institute of Technology Boston, MA
MCSE, VCP, CCNA, CCNP, Security+, CISSP*
Clarence and background
Public Trust Security, Secret Clearance, eQIP, SF-86, and Federal Vetting Processes, FBI, school board background / Fingerprinting
Contact this candidate