Mission
Architecting secure, high-performance systems while working closely with users and leadership to translate expectations into reliable, scalable solutions.
Summary
- Cloud Security & Platform Engineer with 8+ years optimizing enterprise infrastructure, securing hybrid workloads, and automating deployments. Proven record of cutting recovery times by 80% and sustaining 99.99% uptime. Deep cross-platform expertise across Windows, Linux (Red Hat, OpenSUSE, Debian), and Unix (FreeBSD, macOS), unifying diverse environments into secure, high-performance systems. Hands-on ransomware response experience, from detecting intrusions to executing clean recovery with zero data loss, giving practical insight into reducing MTTR under pressure.
Professional Experience
MSP (2012-Present)
Systems Engineer
Progressed through roles: Intern (part time) Help Desk Engineer
Service Desk Engineer Systems Engineer
- Migrated 1000+ users to Exchange Online and SharePoint
- Online from on-premises, implementing secure hybrid coexistence and ensuring zero downtime during cutover.
- Optimized SQL Server and PostgreSQL workloads, reducing backup times and improving application query performance across multiple client environments.
- Designed and supported smaller VMware Horizon VDI clusters, and deployed large-scale FSLogix profile container environments supporting 250+ remote users.
- Deployed and managed workloads across Azure and AWS, integrating Conditional Access, IAM, and hardened VM baselines aligned with NIST CSF / CIS Benchmarks.
- Applied compliance-aligned configurations (NIST CSF, CIS Benchmarks, Zero Trust) to secure hybrid infrastructure; ensured audit readiness even in non-regulated industries.
- Integrated Windows Server AD with Linux backends and Mac design studios, ensuring seamless authentication, high-performance file access, and secure cross-platform workflows.
- Contained ransomware with 0 data loss; deployed hardened
- Zero Trust policies.
- Reduced application latency by 60% via caching, storage redesign, and CPU affinity tuning.
- Designed ZFS/VMware clusters with sub-ms latency supporting
- $100M+ clients.
- Delivered 99.99% uptime and 40Gb/s throughput across enterprise systems.
Core Skills
- Cloud & Security: Azure (Entra ID, Conditional
- Access, Intune, Defender, Sentinel, Key Vault,
- Exchange/SharePoint Online), AWS (IAM,
- GuardDuty, EC2, VPC, workload hardening),
- Cloudflare Zero Trust, CrowdStrike, SentinelOne,
- Microsoft Defender, SD-WAN (Cisco, VeloCloud)
- Virtualization & Platforms: VMware, Hyper-V,
- Proxmox, KVM, Horizon VDI, Citrix, Kubernetes,
- Docker, Podman, Linux (Red Hat, Rocky,
- Ubuntu), Windows Server, macOS integration
- Backup & Storage: Veeam, Datto, ZFS,
- TrueNAS, Dell/EMC storage, VMware vSAN,
- Storage Spaces Direct, RAID design
- Networking & Automation: Cisco networking,
- WireGuard, OpenVPN, Unifi, ZSH, Bash,
- PowerShell, Git, Python, Ansible (in progress),
- Terraform (in progress), SQL Server, PostgreSQL,
- MySQL, Wazuh, ELK
- (Elasticsearch/Logstash/Kibana), Security Onion
Key Achievements
- 3×application performance improvement through architecture redesign.
- MTTR reduced by 75% with automated baselines and anomaly detection.
- Pursuing RHCSA and AZ-104 certifications this quarter, with plans for Kubernetes, RHCE, OpenShift and Cloud Security certifications to formalize existing production-level expertise.
