Building resilient networks, hardening systems, and diagnosing the complex — turning IT infrastructure chaos into streamlined, secure environments.
I'm a versatile IT professional with hands-on experience across the full spectrum of technology infrastructure — from pulling cable and configuring switches, to analyzing network traffic and securing enterprise environments against modern cyber threats.
My work spans network architecture, endpoint security, system administration, and incident response. I approach every challenge methodically — whether it's deploying a new network segment, troubleshooting a downed link at 2am, or locking down a misconfigured firewall rule.
I thrive in fast-paced environments where problems need solving quickly and permanently. My goal is always zero downtime, maximum security, and infrastructure that scales with the business.
Redesigned a legacy flat network for a 200-user organization into a segmented, VLAN-based architecture. Implemented redundant core switching, inter-VLAN routing, and a centralized firewall policy. Reduced broadcast domain size by 80% and improved overall throughput.
Conducted a full vulnerability assessment on a multi-site organization. Identified 40+ critical CVEs, implemented patch management workflows, configured IDS/IPS rules, and deployed endpoint protection. Produced a detailed remediation report and security policy framework.
Managed end-to-end deployment of 80+ workstations for a corporate rollout — hardware assembly, OS imaging, domain joining, software package deployment via Group Policy, and user profile migration. Completed on schedule with zero post-deployment tickets.
Led incident response for a critical WAN failure affecting 3 branch sites. Performed packet capture analysis, identified a BGP route flap caused by a misconfigured ISP handoff, coordinated with upstream provider, and restored full connectivity within 90 minutes, preventing major business disruption.
Migrated a 50-user organization from on-premise Exchange and file servers to Microsoft 365 and Azure. Configured Azure AD Connect, hybrid identity, SharePoint migration, and Intune device management. Zero data loss and minimal downtime during cutover.
Designed and deployed a secure remote access solution using SSL VPN and MFA integration for a 150-user workforce. Implemented split tunneling policies, certificate-based authentication, and usage monitoring. Achieved SOC2-compliant remote access posture.
From cable runs to core switching — full LAN/WAN architecture design, equipment procurement, configuration, and commissioning for offices of any size.
Vulnerability scanning, firewall rule reviews, access control audits, and security gap analysis — with a full written report and remediation roadmap.
Hardware builds, OS deployment, software imaging, domain integration, and asset tagging — for single workstations or 100+ machine rollouts.
Fast, methodical diagnosis of connectivity failures, latency issues, VLAN misconfigurations, and routing problems — with permanent documented fixes.
Seamless migration from on-premise to Microsoft 365, Azure, or hybrid environments — with identity, mailbox, file, and device management fully configured.
Ongoing or ad-hoc helpdesk support, preventative maintenance, patch management, and proactive monitoring — keeping your infrastructure healthy 24/7.
Available for freelance projects, consulting engagements, and full-time opportunities. Whether you need a network built from scratch, a security audit, or an IT team augmentation — let's talk.