Home

samson rufai - System Engineer / Infrastructure Engineer / Cloud Engineer

[email protected]

Location: Remote, Remote, USA

Relocation: Yes

Visa: No

Resume file: Samson Rufai - Resume (1)_1762288577192.docx Please check the file(s) for viruses. Files are checked manually and then made available for download.

Samson Rufai 8324316062 | [email protected] SUMMARY OF QUALIFICATIONS Experienced IT Infrastructure Engineer with a strong background in Windows system administration and cloud technologies. Proven expertise in automating infrastructure with Terraform and PowerShell, and managing hybrid/cloud environments using Azure services. Successfully led Azure migrations and implemented security policies like MFA and IAM. Eager to leverage skills in cloud systems administration to enhance IT infrastructure efficiency and security. SKILLS Cloud Platforms & IaC: Microsoft Azure, AWS, Terraform, PowerShell, Azure CLI, Bicep, Bash, Arm Template Operating Systems & Infrastructure: Windows Server (2008 Latest), Active Directory, DNS, DHCP, Group Policy, Linux Virtualization: VMware vSphere, Hyper-V, Azure Virtual Machines, Jules CI/CD: Jenkins, Azure Devops Networking: Azure Firewalls, Load Balancing, Routing, VPNs, SonicWALL Security & Compliance: Azure PIM, Conditional Access, HIPAA, Endpoint Protection, MFA, SSO, IAM Database Management: Relational databases, MySQL, SQL Administration, Azure Data Analytics Platform deployments Backup & Storage: Azure Backup, Veeam, SAN/NAS configuration Collaboration & Tools: Microsoft 365, Exchange, Intune, SCCM, FSLogix, Zoom, Teams, Cherwell Ticketing, Zendesk, Confluence, Jira, Bitbucket Agile Methodologies: Scrum, Kanban Monitoring & Management: Azure Monitor log, Dynatrace, Grafana, Performance Tuning, Patch Management, Vendor/Stakeholder Coordination WORK EXPERIENCE JPMorgan Chase Dec 2024 - Present Infrastructure Engineer II (Lockbox) Developed Powershell scripts to automate the removal of Symantec Endpoint Protection (SEP) and enable Microsoft Defender across workstations in multiple locations, streamlining endpoint management. Created & Deployed blueprint for all servers (windows & linux), to streamline & reduce the time and process of setting up servers. Participated in monthly deployment to support changes made within the environment. Automated the process of installing applications through SCCM and leveraging AAA's jobs. Investigated infrastructure issues using Dynatrace metrics, analyzing CPU, memory, disk, and network utilization to identify and resolve performance bottlenecks Participated in the annual code2commit challenge to strengthen secure coding practice, enhance knowledge of applications security and identify vulnerabilities within codebase. Led the onboarding of external applications into the firm, ensuring compliance with security and operational standards. Serving as an SME for applications post-boarding. WPI Aug 2023 - Jun 2024 Senior System Engineer (Contract) United States Led successful migrations of Windows and Linux servers to Microsoft Azure. Monitored VMware environment health and performance, applying patches and upgrades to ensure system stability and security. Troubleshot and resolved issues related to virtual machine performance, storage connectivity, and backup operations, leading to improved system performance and user satisfaction Researched, planned, and designed Azure landing zones and subscriptions, providing detailed cost estimations for server migrations. Developed and maintained PowerShell scripts to automate identity lifecycle, reporting, and repetitive administrative tasks, improving efficiency and reducing errors. Assisted, and guaranteed the functionality, and optimal performance of Active Directory/Azure within our institution by effectively designing and managing comprehensive strategies to ensure optimal performance and availability of Active Directory and Azure services. Administered Exchange Online/Hybrid deployments, managed mail flow and DAG configurations, and integrated with M365, improving collaboration and compliance across the organization Managed IT functional areas such as Mobile Device Management using Microsoft Intune, employee lifecycle management with QuickBase and Monday.com, patch management, and ticket resolution with Cherwell and Zendesk, streamlining operations and improving efficiency Created monthly reports on system changes, upgrades, and performance, enabling stakeholders to make informed decisions and maintain system integrity Provided Tier 2/3 technical support to resolve complex hardware and software issues across Windows, Linux, and macOS platforms. Managed and maintained VMware ESXi hosts, virtual machines, and vCenter environments for optimal performance and availability. Conducted technical viability evaluations, provided solution estimates, and developed proposals for migrating specified workloads to Azure, facilitating informed decision-making for cloud transitions Utilize my expertise to supervise the hierarchical administration of Active Directory and Azure, by ensuring that access is both secure and streamlined: The implementation has significantly enhanced both security measures and operational efficiency. Created and updated documentation for system configurations, processes, and procedures, improving information sharing and team collaboration Oversaw on-premises Exchange 2016, O365, Zoom, and additional collaboration tools. Effectively oversaw and optimized cloud-based and on-premises collaboration platforms, enhancing productivity and communication. Participated in training programs and professional development events, staying updated on new technologies, industry trends, and best practices, which enhanced my ability to implement cutting-edge solutions Assigned and managed Privileged Identity Management (PIM) roles to enforce just-in-time access for administrators, ensuring that elevated permissions were granted only when needed and for a limited time, thereby enhancing security and reducing the risk of unauthorized access. Established and enforced Azure Conditional Access policies using Arm Template and Bicep, managing user access to cloud resources and enhancing security by preventing unauthorized access Implemented Conditional Access policies in Azure to manage user access to cloud resources, which bolstered security by preventing unauthorized access Supported migration of Windows and Linux workloads from on-premises servers to Azure VMware Solution (AVS) as part of the cloud modernization roadmap. Configured and maintained Group Policy Objects (GPOs) to enforce security baselines and streamline workstation/server configura- tions. FNZ Mar 2022 - Jun 2023 Cloud Infrastructure Engineer United States Utilized code and modern cloud-native deployment techniques to design, plan, and integrate cloud computing and virtualization systems. Migrated data from an on-premises Microsoft SQL Server environment to a modern Azure-based analytics platform, enabling advanced processing in Azure Databricks and seamless integration with downstream systems, improving data accessibility and processing speed Managed and maintained Active Directory infrastructure, including creating user accounts, managing groups and permissions, and troubleshooting issues. Identified means to reduce and control expenses by conducting cost, schedule, and contract performance analysis and improving resource allocation. Implemented scripting solutions using PowerShell to automate identity lifecycle tasks. Monitored and optimized cloud environments by implementing and managing tools such as Azure Monitor to ensure system perfor- mance and reliability. Configured and deployed FSLogix to all pooled Azure virtual desktops using Terraform. Partnered with infrastructure teams on evaluation and feasibility assessments of new systems and technologies. Implemented Infrastructure as Code practices to automate the provisioning, configuration, and management of cloud resources using Terraform. Integrated various applications with APIs and supported basic Identity and Access Management systems. Designed and architected cloud infrastructure solutions that meet the requirements of the organization or project, including selecting appropriate Azure cloud services, defining network architecture, and ensuring scalability, availability, and security. Reviewed existing systems and made recommendations for improvements, which enhanced system efficiency and reduced operational costs Collaborated with division and leadership to deliver exceptional quality of service that support business needs. Participated in meetings, committees, and continuing education to improve individual, departmental and organizational performance. Research, developed, and deployed Office 365 (O365) solutions, including delivering proof of concepts. Designed, Planned and Executed Office 365 migrations including Exchange Online, OneDrive, SharePoint Online, and Skype/MS Teams Designed and planned for Identity Management (ADFS, Azure, Other) and Directory Sync supporting O365 workloads. Worked collaboratively with internal stakeholders to maximize O365 functionality and user experience. Configured and managed authentication and authorization solutions including SAML, OpenID, and OAuth to enable secure, seamless user access across applications. Identified, analyzed, and resolved infrastructure vulnerabilities and application deployment issues. Configured PDL (Preferred Data Location) using Azure Sync services with PowerShell to migrate user data to different locations. Collaborated with IT teams and stakeholders to ensure cloud infrastructure meets business needs and requirements Ensured security and compliance of cloud infrastructure, including data privacy, access controls, and disaster recovery by following least privilege processes, implementing Azure PIM (Privileged Identity Management), and IAM (Identity and Access Management). Developed and implemented automation processes that streamlined and automated the deployment and configuration of cloud resources using PowerShell scripts and detection methods in Microsoft Intune. Created and maintained documentation related to cloud infrastructure design, configurations, procedures, and troubleshooting guides. Shared knowledge and best practices with team members and stakeholders on Confluence. Configured SSO (Single Sign-On) using Azure SAML 2.0, improving user authentication security and streamlining access management RedPoint Global Dec 2020 - Feb 2022 System Engineer United States Automated Active Directory tasks, such as user provisioning, group management, and reporting, using PowerShell scripting, resulting in reduced manual workload and increased efficiency Created, modified, and disabled user accounts, managed group memberships and permissions within Active Directory, ensuring secure and efficient access control Configured and managed Group Policies to enforce security settings, deploy software, and control user environments within Active Directory, enhancing system security and user productivity Managed and maintained Active Directory infrastructure, including creating user accounts, managing groups and permissions, and troubleshooting issues using tools like Confluence, resulting in a stable and reliable system environment Configured and managed Microsoft Teams, including user and team management, guest access, channels, meetings, and collaboration settings, leading to improved team communication and collaboration Handled user provisioning and management in Microsoft 365, including user licensing, user roles, security groups, and identity synchronization with on-premises Active Directory (AD) using Azure AD Connect. Configured Microsoft Exchange rules on Exchange Server to optimize email flow and enhance communication efficiency Troubleshot and resolved issues related to Azure services, performed diagnostics, utilized Azure support channels, and stayed updated with Azure service updates and announcements. Implemented an external email warning system using color code patterns, increasing awareness among staff members before clicking on or responding to any external emails. Configured and integrated Monday.com for the onboarding and off boarding procedures, creating more awareness for all department heads, operations, and IT departments in terms of alerting and tracking. Coordinated between business customers, IT support teams, and vendors to ensure seamless communication and project alignment Developed and communicated creative solutions to clients through conference calls, onsite meetings, and written deliverables, enhancing client satisfaction and project outcomes Provided clear communication of deployment statistics and numerical data related to goal completion, improving transparency and decision-making processes Tracked, ordered, and managed a wide variety of IT assets, ensuring optimal resource allocation and reducing downtime Wrote detailed reports and summaries for IT management concerning daily IT infrastructure activities, time management, and productivity, leading to improved resource matching and operational efficiency Ensured timely configuration of IT assets, including staging, building out, upgrading, and imaging, which facilitated seamless equipment replacement activities Tracked asset management system daily to ensure accurate reflection of work performed, enhancing operational efficiency Used defined processes and workflows to track IT asset status and document activities on QuickBase, which ensured accurate reporting. Created and managed user mailboxes, distribution lists, and shared mailboxes in Exchange, improving communication efficiency EDUCATION Western Governor University Salt Lake Utah Dec 2026 Bachelor & Master of Science, Information Technology (BSIT to MSITM) Delaware Institute of Technology Lagos Nigeria 2014 Associate of Science, Computer and Information Technology CERTIFICATIONS Microsoft Azure Fundamentals AZ-900 Microsoft Azure Cloud Security Posture Management (CSPM) AWS Certified Cloud Practitioner ITILV4 HIPAA Keywords: continuous integration continuous deployment active directory information technology microsoft mississippi Arizona