Extensive experience with VMware vSphere versions 6.x–8.x, including vCenter upgrades, cluster design, and VM tagging retention for streamlined management. Designed and implemented high-availability clusters, ensuring business continuity and optimal resource utilization. Proficient in troubleshooting complex virtualization issues and optimizing performance for enterprise workloads.

Managed Hyper-V virtualization environments, including cluster administration and virtual machine provisioning. Delivered cost-effective solutions for small to medium-sized deployments, ensuring reliability and scalability. Experienced in integrating Hyper-V with backup solutions and monitoring tools.

Expert in managing Microsoft 365 and Entra ID environments, including Entra Connect and Cloud Sync for hybrid identity solutions. Designed and implemented secure cloud solutions, enabling hybrid identity and seamless collaboration. Successfully deployed non-trusted forest synchronization scenarios to integrate disparate environments. Proficient in Conditional Access policies, Exchange Online, Teams, and SharePoint.

15+ years of experience managing on-premises Active Directory environments, including Group Policy Objects (GPO), DNS, DHCP, and hybrid identity configurations. Designed and implemented secure AD structures, ensuring scalability and compliance with best practices. Proficient in troubleshooting complex AD issues and integrating with Azure AD for hybrid environments.

Expert in managing Aruba switching platforms, including CX/2530/5406R/6200F models. Designed and implemented advanced network topologies with features like stacking, VRRP, and BGP routing. Delivered high-performance, resilient network solutions for enterprise environments, ensuring minimal downtime and optimal traffic flow.

Extensive experience with Cisco SD-WAN (formerly Viptela), including deployment, configuration, and optimization of secure, scalable wide-area networks. Proficient in managing Cisco routing and switching environments, including VLANs, ACLs, and advanced routing protocols such as OSPF and BGP. Delivered secure and high-performance network solutions tailored to enterprise needs.

Designed and managed wireless networks using Aruba controllers and access points. Implemented secure BYOD solutions and optimized WLAN performance for high-density environments. Proficient in troubleshooting wireless connectivity issues and ensuring seamless user experiences.

Expert in Veeam Backup & Replication, including real-world experience recovering an organization from a ransomware incident. Designed and implemented backup strategies to ensure data integrity and rapid recovery. Proficient in leveraging Veeam for immutable backups, KPI monitoring, PRTG integration, and compliance with organizational RTO/RPO requirements.

Managed HPE MSA SAN environments, including iSCSI configurations and performance tuning. Delivered scalable storage solutions for enterprise workloads, ensuring high availability and optimal performance. Proficient in troubleshooting SAN issues and integrating with virtualization platforms.

Assisted in the administration of Microsoft SQL Server environments, focusing on database availability, performance tuning, and disaster recovery. Supported the design and implementation of backup strategies to ensure data integrity and minimal downtime. Proficient in optimizing queries and managing large-scale databases as part of cross-functional teams.

Designed and implemented network segmentation strategies for OT, Quality, Guest, and Business environments, adhering to NIST SP800-82r3 and IEC 62443 standards. Delivered secure and efficient network architectures, reducing attack surfaces and improving traffic management. Proficient in integrating segmentation with firewalls and monitoring tools.

Expert in managing Microsoft Configuration Manager for over 10 years, including software deployment, patch management, and endpoint configuration. Designed and implemented SCCM solutions to streamline IT operations, ensuring compliance and efficiency across enterprise environments.

Over 10 years of experience in Windows OS deployment, including creating and managing custom images for enterprise environments. Proficient in leveraging tools like SCCM, MDT, and WDS to automate deployment processes, ensuring consistency and reducing provisioning time.

Expert in Windows Server administration with over 10 years of experience managing Active Directory, DNS, DHCP, and Group Policy. Proficient in deploying and maintaining Windows Server environments, ensuring high availability, security, and performance for enterprise workloads.

Proficient in managing Palo Alto firewalls and Panorama for centralized management, including PA-440 rulebases, segmentation, and OT/IT boundary firewalls. Designed and implemented advanced security policies to protect critical infrastructure, ensuring compliance with industry standards. Proficient in leveraging Palo Alto's application-aware traffic rules and user-based policies to enhance network security and visibility.

Deployed and managed EDR solutions to enhance endpoint security, including tuning detection rules and creating response playbooks. Proficient in leveraging EDR platforms for real-time threat detection, incident response, and forensic analysis. Successfully reduced incident response times and improved overall endpoint security posture.

Led audit preparation efforts for OT environments, including compliance documentation and readiness assessments. Collaborated with third-party auditors to ensure adherence to industry standards and regulatory requirements. Proficient in creating detailed compliance documentation and addressing audit findings to improve security posture.

Designed and implemented Zero Trust architectures for OT and IT networks, emphasizing identity-first security principles. Proficient in integrating Zero Trust frameworks with existing infrastructure to enhance security and reduce attack surfaces. Delivered comprehensive solutions that align with organizational goals and industry best practices.

Expert in leading incident response efforts, including managing a full-scale ransomware recovery. Directed cross-functional teams to contain, eradicate, and recover from security incidents, ensuring minimal downtime and data loss. Developed and implemented incident response playbooks, improving organizational readiness and reducing response times.

Proven leadership in managing security analysts and fostering a high-performing team culture. Developed and tracked OKRs and KPIs to measure and improve security posture. Directed strategic initiatives to align security operations with organizational goals, ensuring proactive threat management and compliance with industry standards.

Expert in creating custom PowerShell GUI toolkits, developing reusable modules, and leveraging advanced functionality such as direct .NET calls for high-performance scripting. Extensive experience with Freshservice API, Veeam KPIs, PRTG API, Azure API, USMT, and Active Directory automation.

Developed robust applications using C# and .NET frameworks, including WPF desktop apps, Windows Services, and custom tooling. Delivered solutions such as internal IT automation tools, data processing pipelines, and user-friendly interfaces leveraging WebView2. Proficient in .NET 8 for modern, high-performance applications, ensuring scalability and maintainability.

Created utility scripts and automation workflows to streamline IT operations and data manipulation tasks. Experience includes developing tools for log analysis, API integrations, and data transformation pipelines. Proficient in leveraging Python libraries such as Pandas and Requests to solve complex problems efficiently. Additionally, developed lightweight Flask web applications for internal tools, enabling user-friendly interfaces for automation and data visualization.

Designed and developed web applications using PHP, with a focus on rapid application development frameworks like CodeIgniter. Delivered solutions for internal tools and client-facing applications, emphasizing maintainable code and efficient database interactions. Experience includes creating dynamic web interfaces and backend logic for business-critical systems.

Expert in designing and managing configuration files for automation workflows, application settings, and infrastructure as code. Proficient in creating structured, human-readable configurations for tools like Ansible, Hugo, and custom applications. Ensured consistency and scalability in automation pipelines by leveraging YAML and JSON for dynamic configurations.

Designed and implemented REST API integrations for automating workflows and connecting disparate systems. Proficient in handling authentication flows (OAuth2, API keys) and building client-side tooling for APIs such as Freshservice, Azure, and Veeam. Delivered solutions that streamline data exchange, improve operational efficiency, and enable seamless system interoperability.

Designed and developed internal tools to enhance IT operations and improve efficiency. Examples include automation scripts, monitoring dashboards, and user-friendly interfaces for complex workflows. Focused on delivering tailored solutions that address specific organizational needs, reduce manual effort, and improve overall productivity.

LotusDocs, shortcodes, YAML-driven content, multilingual support

Rack layouts, diagrams, fiber topologies, BOM creation

Runbooks, procedures, simulation plans

Leading IT teams, mentorship, technical coaching

IT, OT, Quality, Production, Engineering

Contract negotiation, third-party coordination

Phased rollouts, risk mitigation, stakeholder communication

Operational efficiency, documentation-first culture

Hardware lifecycle, capacity planning, forecasting

Identity systems, productization, naming

Subscription pricing, labor models, profitability analysis

Client proposals, IT operations manuals, runbooks