About Me

Modern Workplace Engineer | Microsoft Intune & Entra ID Specialist | Studio IT Professional

15 years of infrastructure evolution across finance, technology, and professional services. I specialize in the design of secure, cloud-first endpoint environments where high-level security and seamless user experience are not mutually exclusive.

My focus is the Modern Workplace. I transition legacy on-premise infrastructure into agile Zero-Trust ecosystems, leveraging deep expertise in Microsoft Intune and Entra ID to automate the device lifecycle. My approach extends to specialized Studio IT Management, where I architect high-performance workflows for Adobe Creative Cloud across hybrid macOS and Windows hardware, ensuring professional-grade peripherals and local assets are seamlessly integrated into the cloud perimeter.

I don’t just maintain platforms; I architect them for scale. Whether deploying Autopilot globally, hardening identity with Conditional Access, or version-controlling automation in GitLab, my methodology is rooted in systems engineering rather than support. I bridge the gap between complex virtualization (AWS, Citrix, VMware) and the creative end-user, ensuring that identity-driven access remains consistent, high-performing, and invisible.

Technical Skills

Automation & Scripting

BashPowerShell

Endpoint Management

Microsoft Intune / Endpoint ManagerAutopilotIGEL UEMS

Identity & Access

Azure Entra IDActive DirectorySSORBACGroup Policy

Modern Workplace Platforms

Microsoft 365Teams (incl. Telephony)Exchange Online

Endpoint Security

Microsoft 365 DefenderTrendOneCrowdStrike Falcon

Device Estates

Windows 10/11macOSiOSAndroidThin Clients (IGEL)

Virtualisation

VMware ESXiVsphereOracle VirtualBoxMicrosoft Hyper-V

ITSM & Service Delivery

ServiceNowFreshserviceITIL-aligned incident & change

Professional Experience

Senior Modern Workplace Engineer at TradingHub Ltd

2023 – 2025 | London, United Kingdom

Key Responsibilities:

  • Strategic Transformation: Transitioned the endpoint estate from legacy imaging to Microsoft Autopilot, reducing device deployment time by 60%
  • Cloud Infrastructure: Administered and scaled AWS VPCs and EC2 instances to support Citrix-hosted financial workloads for 140+ users
  • Infrastructure Reliability: Sustained 99.9% availability for the UK workforce by maintaining Citrix Virtual Desktops and VMware vSphere clusters.
  • Identity Hardening: Implemented Conditional Access policies in Entra ID to secure SaaS applications and remote access.
  • Managed Azure Entra ID for user identity, access control, RBAC, and SSO across SaaS applications.
  • Automation: Developed and maintained a library of PowerShell scripts stored in GitLab to automate application packaging and OS patching.
  • AV/Physical Security: Managed meeting room AV systems and Brivo Door Access systems alongside core IT infrastructure

Environment:

Citrix, Intune, VMware, Azure Entra ID, Microsoft 365, Windows 10/11, IGEL UEMS, Defender

Modern Workplace & Service Delivery Consultant at Mazars London

2022 – 2023 | London, United Kingdom

Key Responsibilities:

  • Enterprise Scaling & Identity: Managed a modern workplace ecosystem for 1,200+ UK users. Administered Intune configuration policies and Entra ID (Azure AD) governance, ensuring seamless identity synchronization.
  • Secure Remote Access: Operated and maintained Zscaler (ZIA/ZPA) to provide secure, cloud-native web and private access for a hybrid workforce.
  • Proactive Operations: Leveraged Nexthink and M365 Defender to monitor endpoint health, remediating hardware performance issues and vulnerabilities before user impact.

Environment:

Azure AD, Intune, Citrix Cloud, Windows 10, Microsoft 365

Infrastructure & Endpoint Engineer at Photobox Group

2018 – 2022 | London, United Kingdom

Key Responsibilities:

  • Hybrid Fleet Management: Directed the lifecycle of a 600+ device estate (Windows & macOS). Administered Okta SSO for secure identity lifecycle management and user onboarding automation.
  • Infrastructure Migration: Led the IT infrastructure engineering for a major office relocation, including the design and setup of the new comms room and physical migration of Dell PowerEdge/HP Proliant server hardware.
  • Network Foundations: Managed core network services and connectivity to ensure platform stability across multiple office floors and remote sites.
  • Endpoint Defense: Deployed and monitored CrowdStrike Falcon to establish advanced threat detection and response protocols across all managed endpoints.

Environment:

Google Workspace, Google Meet, OKTA SSO, Windows Server: ActiveDirectory, Group Policy, DHCP, DNS, Bitlocker Encryption, Microsoft Office 365: Word, Excel, OneDrive & SharePoint services, Slack, Crowdstrike Falcon Sensor, Symantec, Adobe & Creative Cloud, Atlassian: Confluence, JIRA

Education & Certifications

Coursera

Google AI Essentials

June 2025

  • Google AI Essentials

LinkedIn

IT Service Management Foundations: Change Management

February 2023

  • ITSM Foundations: Change Management

Just IT Training Ltd, London

Network Professional Programme

September 2007 - March 2008

  • Microsoft Certified Practitioner (MCP) — Windows XP / Server 2003
  • CompTIA A+ IT Technician
  • CompTIA A+ Essentials

Epping Forest College

BTEC National Certificate

September 2004 - March 2007

  • IT Practitioners