Specializing in high-availability hybrid infrastructures and zero-downtime enterprise migrations.
Active Directory Services
Domain Infrastructure Modernization
Led the successful project to modernize core identity services by upgrading all domain controllers to Windows Server 2025 and streamlining legacy hardware footprints.
Security Policy Hardening & Optimization
Implementing standardized security baselines via Group Policy to ensure fleet-wide compliance. Expert in auditing and remediating GPO-induced network conflicts, ensuring seamless communication across all domain controllers
Advanced AD-CS Management
Architecting and managing Active Directory Certificate Services to enable secure internal PKI. I specialize in deploying digital certificates for server-to-server encryption and securing modern services like Office Online Server.
AD Security & Vulnerability Remediation
Hardening the identity perimeter by identifying and remediating Active Directory vulnerabilities. I utilize specialized scripts and hands-on lab environments to find and fix security gaps before they can be exploited.
Microsoft 365 & Azure
Enterprise Tenant-to-Tenant Migrations
Orchestrating 60-day tenant-to-tenant migration projects involving more than 800 TB of data for more than 1000 users. I specialize in ensuring data integrity and minimal user disruption during large-scale SharePoint and Exchange transitions
Modern Endpoint Management (Intune)
Leveraging Microsoft Intune for modern MDM and MAM deployment. I implement compliance policies and automated app deployment to secure corporate data across all mobile and desktop endpoints
Hybrid Identity & Access Governance
Designing secure hybrid identity architectures using Microsoft Entra ID and Connect. I implement Conditional Access, MFA, and Single Sign-On (SSO) to protect the enterprise perimeter while enabling seamless cloud access.
Modern Web Architecture
Architecting and deploying high-performance documentation platforms using Azure Static Web Apps. I specialize in enabling cloud-native hosting for technical sites with integrated SSL and automated deployment workflows
Hybrid Cloud Connectivity
Site-to-Site VPN Migration > Designing and migrating Site-to-Site VPN connections to new edge firewalls. I specialize in route-based VPN configurations that ensure zero-downtime connectivity during critical security hardware upgrades.
Cloud Governance & Cost Management
Implementing enterprise-grade resource organization through Resource Groups and Azure Tags. I specialize in utilizing Azure Monitor and cost-analysis tools to ensure infrastructure remains high-performing while maintaining budget compliance.
Let’s Connect
Whether you have a technical question regarding Active Directory, Exchange, or Azure, I’d love to hear from you.