Download PDF

Jason D. Meisels

Creator of FedRAMP Secure Multi-Tenant/Multi-Vendor Hybrid Cloud Environments

Security Clearances

U.S. Department of Defense (DoD) Secret (NACLC) - Active
U.S. Department of Labor (DoL) Position of Public Trust - Active
U.S. Department of Justice (DoJ) Position of Public Trust 6C (NACI/MBI) - Active

Summary

Seasoned Enterprise Architect and leader with deep technical expertise in both identity and access management (IDAM) and data center consolidation utilizing virtualization (cloud, grid, and high-performance computing). Broad theoretical and hands-on practical experience to design, implement, and support both the technical and managerial aspects of multitenant (government and commercial) single-tenant and multitenant cloud enterprise computing environments. Specialties include: high-security computing environments, Software Defined Data Centers (SDDC/SDN/SDS), storage architectures, enterprise applications, knowledge management and search, wireless and mobile devices; and secured VoIP, e-mail, and instant messaging services.

Open to long term FTE direct hire or contract opportunities, with a preference for FTE direct hire opportunities in the Centreville ( Fairfax County ), VA/Washington DC area, but will consider other locations.

Work History

Apr 2016Dec 2016

Director of Cloud Services

Zolon Tech, Inc.
  • Provided Systems Engineering and Technical Assistance (SETA) and thought leadership as a Cloud and Identity Management Security Architect to the US Department of Labor OASAM OCIO’s Chief Technology Officer, in both the DOL’s Identity Management efforts and Cloud Computing efforts, and is responsible for finalizing the DOL’s Functional Requirements Document (FRD) and developed the High Level Architecture (HLA) for the DOL OCIO’s CISO Identity Management project that drove the recent Identity Management product and integrator procurements just put out to bid through the US Department of Homeland Security’s (US DHS) Continuous Diagnostic and Monitoring (CDM) Blanket Purchase Agreement (BPA). Final architecture was based upon RadiantLogic RadiantOne FID Virtual Directory Services (VDS), SailPoint IdentityIQ, PingIdentity PingFederate (SSO) Server, CyberArk Privileged Identity Management, and Axiomatics Policy Server (APS).
  • Developed the DOL OCIO’s Functional Requirements Document (FRD) for private, public, and hybrid cloud Common Operating Environment (COE) initiative to transform an earlier datacenter consolidation effort (DOL DCCI) using virtualization into a FedRAMP-compliant business model for the department in order to reign in cloud sprawl by various agencies procuring cloud services outside of the department’s formalized management goals. 
  • Responsible for Subject Matter Expertise for various commercial and government customer efforts, including development efforts for DoD DIA, DoD DISA, DOI USBR, DOL, DoS, HHS, and USDA.
Aug 2012Mar 2016

Chief Technical Officer

Clear Government Solutions, Inc.
  • Managed the development of a cloud computing platform to provide the U.S. Federal Government cloud computing services via a $5 Billion Dollar Blanket Purchase Agreement for Infrastructure as a Service (IaaS), including all awarded lots of Cloud Storage (Lot 1), Virtual Machine (Lot 2), and Web Hosting (Lot 3).
  • Assessed a FedRAMP compliant System Security Plan (SSP) which aligns to the technical architecture and business processes required to achieve FedRAMP Joint Authorization Board (JAB) Provisional Authority To Operate (P-ATO) authorization, which also achieved a Defense Information Systems Agency (DISA) Provisional Authority as well.
  • Created the architecture of the FedRAMP NIST Rev 3 to NIST Rev 4 transition, which includes application whitelisting, PKI infrastructure using SafeNet Hardware Security Modules (HSM), HSPD-12 PIV/CAC/CIV support using ActivIdentity, Identity Federation using RadiantLogc VDS, and designing and implementing other security technologies including McAfee Network Security Platform with VMware NSX. Responsible for the transition to additional technologies include VMware vCloud Director 8, VMware vCenter 6, vRealize Operations (vROPS), and VMware vSphere ESXi 6.0.
  • Wrote for VMware, Inc., the VMware Product Applicability Guide (PAG) for FedRAMP 2.0, as well as a VMware, Inc. internally distributed document titled VMware Architectural Design Guide (ADG) for FedRAMP 2.0.
Sep 2007Aug 2012

Senior Member of the Professional Staff

SRA International, Inc.
  • Technical Lead for SRA's Leveraged IT Services (LITS), providing architectural engineering for the deployment of Microsoft PKI Services, Microsoft System Center Configuration Manager 2010, and Lync 2010 for the entire corporate infrastructure, providing IT support of over 7,900 employees, and 4,500 contractors.
  • Technical Lead for the U.S. Army National Guard Bureau EOSS NOSC and Chief Architect for the U.S. Army PEO EIS/PM P2E Enterprise Service Desk (AESD), acting in the capacity of the chief architect for the prime contractor on the AESD project, in coordination with the other prime and subcontractors on the project, with the responsibilities for the DoDAF referenced development of the NIPRnet-hosted virtualized private cloud infrastructure (Enterprise Support Management System (ESMS)) based upon VMware vSphere 4.x to host the development, test, and production environments for the toolsets used by both of the service desks including BMC Software's Remedy ITSM 7.6 and supporting platform components (such as ProAnalytics, BladeLogic, etc.), CA Unicenter, and NetCracker J2EE OSS Framework, which was fully compliant with DoD DISA Security Technical Implementation Guides (STIGs) in order to achieve Authority To Operate (ATO). Design elements of the ESMS virtualized private cloud infrastructure were also used by U.S. Army's Information Technology Agency (ITA) in the Pentagon to deploy ESMS on SIPRNet. Additionally, was managing a team of up to 12 subcontractors and interfaced with their management chain at one point on this effort.
  • Was involved with engineering and architecture tasks for SRA's Information Assurance Training Development team, implementing the virtualization of the entire development, quality assurance, and production environments utilizing VMware vSphere 4.x.
  • Successfully completed architecture tasks for U.S. Department of Homeland Security's SCVAM First Responder Credential Verification (FRCV) demonstration project which was based upon
  • Key contributor in development of various RFI and RFP documents (both IdM/IAM related and non-IdM/IAM related) to federal client agencies and organizations, including the Federal Aviation Administration, the National Reconnaissance Office, and the Executive Office of the President.
  • Achieved on time architecture tasks for U.S. Department of Justice's Justice Management Division (JMD) Justice Consolidated Office Network's (JCON) Enterprise-Wide Infrastructure Architecture (EIA) part of the JCOnext service delivery platform.
  • Diagnosed Microsoft Identity Integration Server (MIIS) 2003 metadirectory service synchronization issues with Microsoft Active Directory Application Mode (ADAM), which was used to synchronize both native Microsoft Exchange Server Global Address Lists (GAL) and other mail server platforms from various US DOJ components to other government agencies.
  • Responsible for development of the interim U.S. Department of Justice's Justice Management Division (JMD) Justice Consolidated Office Network's (JCON) Enterprise-Wide Infrastructure Architecture (EIA) Patching Solution utilizing Microsoft Windows Software Update Service (WSUS) to operate in a strict controlled secure environment. Researched and developed strategies for future EIA Patching Solution's requirements to implement NIST Security Content Automation Protocol (SCAP) based processes and tools for FISMA compliance.
  • Developed and maintained a US DOJ EIA Lab environment using Windows Server 2003 R2 development servers virtualized on a VMware Infrastructure 3.0 platform running on HP blade and rack servers utilizing dual and quad core 64-bit CPUs attached via iSCSI to Network Appliance (NetApp) storage with various Microsoft technologies such as Exchange 2007 Server and SQL 2005 Server. Configured and managed both the USDOJ EIA Production and Lab environments.
Jun 2006Dec 2012

Infrastructure Architect (Part Time)

FIDO.GOV - Federal Interagency Databases Online
  • Responsible for the development, implementation, and operations of a new security architecture front-ended with Cisco PIX Firewall Appliances, utilizing Microsoft Windows Server 2008 R2 and CentOS Linux.
  • Responsible for the development, implementation, and operations of an Interactive Voice Response (IVR) system developed on the Asterisk/Trixbox CE platform which was designed to do data collection of alternative fuel use of government agency employees as mandated by executive order. First customer to use the system was the U.S. General Services Administration.
  • This site is provides hosting for several federal interagency database applications, including a project status database that requires every head of every federal agency or department to enter project status details weekly, which then produces a weekly report that is inspected by the President (POTUS), The White House staff and Congress.
Jan 2007Sep 2007

Head of Business Solutions Group

IceWarp, Inc.
  • Responsible for heading up the consulting services group of an internationally recognized mail server software developer.
  • Responsible for developing consulting services best practices, contracts, and business development for new and existing customers with emphasis on migration of internet service providers and enterprise customers from Microsoft Exchange Server and other mail platforms to IceWarp Merak Mail Server.
  • Responsible for creating new Microsoft Windows Server 2003 R2 infrastructure and network management to replace existing Windows 2000 insecure infrastructure. Responsible for implementing new VPN and network infrastructure.
Sep 2006Dec 2006

Senior Network Consultant

Omicron Consulting, Inc.
  • Was a subcontractor for Microsoft Consulting Services, was responsible for designing and implementing Microsoft Identity Integration Server 2003 metadirectory service in a 22,000 employee client firm, which is one of the nation's largest sporting goods retailers. Designed and implemented a multi-factor challenge/response password reset process that replaced the Microsoft-provided MIIS 2003 Password Management service.
  • Created an application availability and performance monitoring model which tracks over 250+ applications, for one of the largest international pharmaceutical companies.
Apr 2001Jul 2006

Business Support Services - Senior Analyst

Unisys Corporation
  • Was responsible for research and engineering support of new Microsoft and related technologies, which are targeted to the objective of developing high availability/scalability infrastructure design for both internal and customer-facing projects. Involved in technologies such as Active Directory, Microsoft Active Directory Application Mode (ADAM), Microsoft Windows Server 2003 R2 Active Directory Federation Services (ADFS), Microsoft Identity Integration Server 2003, Microsoft Exchange 2000 Instant Messaging, Microsoft Live Communications Server 2005, and Oracle Internet Directory (OID).
  • Responsibilities also include providing third tier engineering support for the internal company multimaster Microsoft Windows Active Directory architecture comprised of 40,000 (approx.) workstations and 9,000 (approx.) servers, and was one of five enterprise administrators in the company, providing oversight and guidance to the four IT Theater organizations supporting North America, Latin America, Asia Pacific, and Europe, Africa, & Middle East (EAME).
Nov 1998Apr 2001

Software Engineer Manager 2

Unisys Corporation - World-Wide eNTerprise NT Services (WWENTS)
  • Was responsible for engineering support, system integration, and high availability/scalability infrastructure designed for both internal and external projects.
  • Responsibilities also included the development and management of Unisys's e-Zone demonstration systems and the Application Development Center of Excellence in Blue Bell, PA, which demonstrated Unisys product integration with Siebel eBusiness Customer Relations Management systems. Was responsible for system maintenance and configuration of the Application Development Center of Excellence's ES7000 32-way server running Microsoft Windows 2000 Server Datacenter Edition.
  • Was responsible for the development and demonstration of the world's largest biometrically-enhanced Windows 2000 Active Directory (50+/- Million Objects) for Unisys's Data Center of The Next Millennium demonstration at COMDEX/Fall 1999 in Las Vegas, NV (see http://web.archive.org/web/20000831045759/http://www.unisys.com/events/comdex99/). Presented a seminar to over 400 attendees on the topic of Deploying Windows 2000 Professional at COMDEX/Fall 1999 in Las Vegas, NV (see http://web.archive.org/web/20000521184854/http://methvin.com/proj/w2kcdx.htm).
  • Was responsible for the high availability/scalability infrastructure design and capacity planning for Unisys's e-@ction Community Helper/LocalLife seed project initially for the city of West Chester, PA (see http://web.archive.org/web/20010209111825/http://www.westchester.locallife.com/WestChester/default.asp), but to be deployed nationwide. Was responsible for the initial consultation for Active Directory deployment by the Republic of France's Ministry of Finance.
  • Was primarily responsible for the integration of Unisys's e-@ction Customer Profitability Solution with Siebel eFinance 2000 Customer Relations Management system, for resale to client organizations. Developed storage system performance benchmarking, and developed several whitepapers and presentation to developers on security technologies and other services and technologies provided within Microsoft Windows 2000.
  • Developed experience on Microsoft .NET technologies for the ability to support internal product development and integration.

Certifications

2010Present

Security+

CompTIA

Good-for-Life (GFL) Certification

2010Present

ITIL v3 Core Foundation Certified

OGC
2010Present

VMware Certified Professional (VCP4)

VMware, Inc.

Official VMware Training delivered to U.S. Army National Guard Bureau provided by VMware Education

1996Present

Microsoft Certified Product Specialist (MCPS)

Microsoft Corporation
Jan 2005Present

Six Sigma Green Belt

Unisys Corporation - Unisys University
Jan 2004Present

Six Sigma White Belt

Unisys Corporation - Unisys University
Jan 2001Present

Certified Siebel CRM Consultant

Siebel Corporation
Jan 2001Present

Certified Siebel eBusiness Application Integrator

Siebel Corporation
Jan 1996Present

SalesLogix Business Partner - Enterprise Level

SalesLogix, Inc.
Jan 1993Present

Certified AT&T UNIX Systems Support Engineer

AT&T

Education

S.A.

Trenton State College

Advanced Computer Architecture, Compiler Development & Lexical Analysis, Set Theory Mathematics.

Awards and Honors

SRA International, Inc. - Project of the Year Award - 2010
UNISYS Corporation - Achievement Award for Excellence - December 2000
UNISYS Corporation - Achievement Award for Excellence - November 1999
LANDA - Local Area Network Dealer's Association - Certificate of Appreciation

Clubs and Organizations

IODD - Institute of Database Developers - http://www.iodd.com
LANDA - Local Area Network Dealer's Association
ABCD - Association of Business Computer Dealers
ACM - The Association of Computing Machinery

Training

Amazon Web Services - AWS Solutions Architect - Associate Certification Pending

Certified Information Systems Security Professional - CISSP Certification Pending

Skills

Operating Systems

Microsoft Windows Server
2016 - 2012 R2 - and older
Microsoft Windows
Version 10 and older
Apple OS/X

LINUX
RedHat RHEL CentOS Ubuntu

UNIX
AT&T - BSD
Sun Solaris
OpenSolaris

Cloud & Virtualization

VMware vSphere ESXi
6.x 5.x 4.x

Microsoft Azure
Microsoft Hyper-V
Amazon Web Services - AWS
RedHat KVM OpenXen
Citrix Xen
UbuntuOne
Oracle VirtualBox

Cloud Management

VMware vCenter VMware vCloud Director - vCD VMware vRealize Automation - vRA
VMware vRealize Configuration Manger - vCM VMware NSX VMware Horizon
VMware View
VMware Virtual SAN - vSAN VMware Site Recovery Manager - SRM vRealize Orchestrator - vRO
VMware Cloud Foundry OpenStack
Open Source and VMware Supported
OpenNebula NebulaOne

Application Virtualization & PaaS Containerization

VMware ThinApp
(aka Thinstall)
Microsoft App-V
(SoftGrid)
Spoon
Camayo
Microsoft Windows Containers Docker
RedHat OpenShift

Equipment

Intel
2-way to 32-way Servers

Dell BladeSystems
Dell Rack Servers
HP BladeServers
HP Rack Servers
Cisco UCS Blade Servers
Cisco UCS Rack Servers
IBM Blade Servers
IBM Rack Servers
Apple
(6502/68000/PowerPC/x64)

Networking

Layer 2 and 3 Switches
Cisco, Dell, HP

Infiniband Firewalls
Barracuda, Fortinet, Cisco, Juniper

VPNs
Barracuda, CheckPoint, Fortinet,
Cisco, Juniper, SonicWall

Load Balancers
F5, HALON
Fiber Channel Switches
Brocade

Microsoft Unified Access Gateway - UAG
Microsoft Threat Management Gateway - TMG

Layer 7 Appliances
Proxy Servers
Reverse Proxy Servers
HAProxy, Squid

Storage

Dell
EqualLogic, Compellant, zNAS

HP

StorageWorks EVA, VSA

NetApp

ZFS
Nexenta, NexentaStor, FreeNAS

EMC
ViPR, Symmetrix, Clarion, ATMOS

CleverSafe
Object Storage

NAS
QNAP, Synology, Drobo

Cloud Storage Gateways
CTera, Avere Systems

Applications - Development Languages

Scripting
PowerShell/bash/csh/ksh
xBase
Microsoft Visual FoxPro / Clipper / dBase
Microsoft SQL
Microsoft Access

Internet & Database Services

Microsoft Internet Information Server - IIS Microsoft Exchange Server
2016 - 2013 - 2010
Microsoft Skype for Business
2016 - Lynx - LCS
IceWarp Mail Server Lotus Notes 5.x
Lotus Notes Domino 4.x

Identity Management Services

Microsoft Identity LifeCycle Management Server - MILM - ILM - FIM
Microsoft Identity Integration Server - MIIS

RadiantLogic Virtual Directory Server - VDS
RadiantOne
SailPoint IdentityIQ

CyberArk

ManageEngine
Password Manager Pro
Axiomatics Policy Server

Network Management Tools

Microsoft System Center Configuration Manager - SCCM Microsoft System Center Operations Manager - SCOM Event Logging
Splunk, Sawmill, LogFusion, VMware vRealize Log Insite - vLI

Customer Relations Management / Sales Force Automation

Microsoft CRM Siebel eBusiness SugarCRM SalesLogix / SupportLogix
MultiActive Maximizer Onyx Pivotal

Service Desk

BMC Remedy ITSM

Microsoft System Center Service Manager - SCSM

ManageEngine
ServiceDesk Plus

VoIP/PBX

Digium Asterisk 3CX SIPfoundary

Vertical Markets Knowledge

Accounting Finance
Retail Banking, FX and IMM Trading
Data Conversion & Cleanup
(Normalization and Modeling)
Extract, Transform, Load (ETL)
Government Insurance Internet Commerce
E-Commerce
Legal Point-Of-Sale Customer Relations Management - CRM
Sales Force Automation - SFA
Telephony Multimedia & Audio-Video Systems - IPTV Videoconferencing