About Me

Modern Workplace Engineer | Microsoft Intune & Entra ID Specialist | Hybrid Infrastructure & Security

Over 15 years of experience across the financial, technology, and professional services sectors, I specialize in engineering secure, cloud-first endpoint environments that balance high-level security with a seamless end-user experience.

My focus is on the "Modern Workplace" evolution—transitioning legacy, on-premise infrastructure into agile, Zero-Trust ecosystems. I am a subject matter expert in Microsoft Intune and Microsoft Entra ID, with a proven track record of automating device lifecycles through Autopilot and PowerShell.

What I bring to a team:
> Engineering vs. Support: I don't just maintain platforms; I evolve them. From architecting Intune compliance policies to building AWS VPCs for Citrix workloads, I focus on scalability and automation.

> Security-First Mindset: I have deep experience hardening identity perimeters using Conditional Access, MFA, and modern endpoint protection (Defender, CrowdStrike, Zscaler).

> Data-Driven Proactivity: I leverage tools like Nexthink and GitLab to identify hardware performance trends and version-control my automation scripts, reducing service desk volume and improving platform stability.

> Strategic Ownership: I have led large-scale office moves, global VDI migrations, and OS transformations (Windows 11 & macOS), ensuring technology aligns with business governance.

I am passionate about the intersection of identity and virtualization, ensuring that whether a user is on a Windows laptop, a macOS device, or an IGEL thin client, their experience is secure, consistent, and high-performing.

Core Stack: Microsoft Intune, Entra ID (Azure AD), Autopilot, AWS, VMware, Citrix Cloud, PowerShell, M365 Defender, and Okta.

Technical Skills

Automation & Scripting

BashPowerShell

Endpoint Management

Microsoft Intune / Endpoint ManagerAutopilotIGEL UEMS

Identity & Access

Azure Entra IDActive DirectorySSORBACGroup Policy

Modern Workplace Platforms

Microsoft 365Teams (incl. Telephony)Exchange Online

Endpoint Security

Microsoft 365 DefenderTrendOneCrowdStrike Falcon

Device Estates

Windows 10/11macOSiOSAndroidThin Clients (IGEL)

Virtualisation

VMware ESXiVsphereOracle VirtualBoxMicrosoft Hyper-V

ITSM & Service Delivery

ServiceNowFreshserviceITIL-aligned incident & change

Professional Experience

Senior Modern Workplace Engineer at TradingHub Ltd

2023 – 2025 | London, United Kingdom

Key Responsibilities:

  • Strategic Transformation: Transitioned the endpoint estate from legacy imaging to Microsoft Autopilot, reducing device deployment time by 60%
  • Cloud Infrastructure: Administered and scaled AWS VPCs and EC2 instances to support Citrix-hosted financial workloads for 140+ users
  • Infrastructure Reliability: Sustained 99.9% availability for the UK workforce by maintaining Citrix Virtual Desktops and VMware vSphere clusters.
  • Identity Hardening: Implemented Conditional Access policies in Entra ID to secure SaaS applications and remote access.
  • Managed Azure Entra ID for user identity, access control, RBAC, and SSO across SaaS applications.
  • Automation: Developed and maintained a library of PowerShell scripts stored in GitLab to automate application packaging and OS patching.
  • AV/Physical Security: Managed meeting room AV systems and Brivo Door Access systems alongside core IT infrastructure

Environment:

Citrix, Intune, VMware, Azure Entra ID, Microsoft 365, Windows 10/11, IGEL UEMS, Defender

Modern Workplace & Service Delivery Consultant at Mazars London

2022 – 2023 | London, United Kingdom

Key Responsibilities:

  • Enterprise Scaling & Identity: Managed a modern workplace ecosystem for 1,200+ UK users. Administered Intune configuration policies and Entra ID (Azure AD) governance, ensuring seamless identity synchronization.
  • Secure Remote Access: Operated and maintained Zscaler (ZIA/ZPA) to provide secure, cloud-native web and private access for a hybrid workforce.
  • Proactive Operations: Leveraged Nexthink and M365 Defender to monitor endpoint health, remediating hardware performance issues and vulnerabilities before user impact.

Environment:

Azure AD, Intune, Citrix Cloud, Windows 10, Microsoft 365

Infrastructure & Endpoint Engineer at Photobox Group

2018 – 2022 | London, United Kingdom

Key Responsibilities:

  • Hybrid Fleet Management: Directed the lifecycle of a 600+ device estate (Windows & macOS). Administered Okta SSO for secure identity lifecycle management and user onboarding automation.
  • Infrastructure Migration: Led the IT infrastructure engineering for a major office relocation, including the design and setup of the new comms room and physical migration of Dell PowerEdge/HP Proliant server hardware.
  • Network Foundations: Managed core network services and connectivity to ensure platform stability across multiple office floors and remote sites.
  • Endpoint Defense: Deployed and monitored CrowdStrike Falcon to establish advanced threat detection and response protocols across all managed endpoints.

Environment:

Google Workspace, Google Meet, OKTA SSO, Windows Server: ActiveDirectory, Group Policy, DHCP, DNS, Bitlocker Encryption, Microsoft Office 365: Word, Excel, OneDrive & SharePoint services, Slack, Crowdstrike Falcon Sensor, Symantec, Adobe & Creative Cloud, Atlassian: Confluence, JIRA

Education & Certifications

Coursera

Google AI Essentials

June 2025

  • Google AI Essentials

LinkedIn

IT Service Management Foundations: Change Management

February 2023

  • ITSM Foundations: Change Management

Just IT Training Ltd, London

Network Professional Programme

September 2007 - March 2008

  • Microsoft Certified Practitioner (MCP) — Windows XP / Server 2003
  • CompTIA A+ IT Technician
  • CompTIA A+ Essentials

Epping Forest College

BTEC National Certificate

September 2004 - March 2007

  • IT Practitioners