Professional Summary

Senior Cloud & Systems Engineer with 20+ years of experience designing, securing, and modernizing enterprise infrastructure across Azure, AWS, VMware/Nutanix, and Microsoft 365. I specialize in bridging on‑prem and cloud platforms using Infrastructure as Code, strong identity governance, and automation to deliver reliable, scalable, and secure hybrid environments.

My background combines deep hands‑on systems engineering (Windows Server, vSphere, identity, networking) with modern cloud architecture, cost optimization, and disciplined operational practices. I am frequently relied upon to lead upgrades, resolve complex platform issues, and translate business requirements into durable technical solutions.

Core Capabilities

  • Cloud Architecture & Modernization: Azure IaaS, AWS Architecture, landing zones, hybrid migrations
  • Infrastructure as Code: Terraform, ARM templates, repeatable cloud deployments
  • Identity & Security: Entra ID, RBAC, PIM, Conditional Access, MFA, SAML/SSO
  • Enterprise Virtualization: VMware vSphere/ESXi (7→8), Nutanix HCI lifecycle management
  • Systems Engineering: Windows Server 2012–2022, AD, DFS/NTFS, DNS/DHCP
  • Automation & Operations: PowerShell, monitoring (Rubrik, SolarWinds), backup and recovery validation
  • Networking: Core routing/switching, Palo Alto fundamentals, troubleshooting with Wireshark

Professional Experience

Senior Cloud Systems Engineer

Viejas Casino & Resort — Alpine, CA
January 2024 – Present

  • Architect and deliver hybrid cloud infrastructure across Azure and AWS using Terraform and ARM templates, enabling repeatable and governed deployments.
  • Designed Azure landing zones with network security (NSGs, Azure Firewall), storage (GPv2), and Key Vault patterns aligned with RBAC and least‑privilege principles.
  • Led cloud security initiatives including Conditional Access, Duo MFA enforcement, Entra RBAC, Privileged Identity Management (PIM), Managed Identities, and SAML‑based SSO integrations.
  • Reduced cloud costs through storage tiering strategies and GPv1→GPv2 migrations, aligning performance tiers to observed usage metrics.
  • Planned and executed VMware vCenter upgrades from 7.0 to 8.0, including certificate remediation and lifecycle validation for environments supporting 400+ virtual machines.
  • Administer and govern Microsoft 365 services, including Teams, SharePoint, Exchange Online, and Entra group lifecycle management.
  • Develop PowerShell automation for software deployment, Rubrik agent installation, Active Directory cleanup, and DNS scavenging.
  • Own platform data protection strategy using Rubrik SLAs, performing recovery testing to validate RPO/RTO for critical workloads.

Systems Engineer

San Diego Metropolitan Transit System (MTS) — San Diego, CA
October 2019 – January 2024

  • Supported and modernized a hybrid enterprise environment spanning on‑prem VMware infrastructure and Microsoft 365 cloud services.
  • Maintained approximately 300+ VMware virtual machines, managing templates, storage, vMotion, and lifecycle patching.
  • Implemented and supported hybrid identity using Azure AD Connect, password synchronization, and MFA troubleshooting.
  • Deployed and upgraded SolarWinds SAM, NPM, and IPAM to improve system visibility and capacity awareness.
  • Supported email, web, and endpoint security platforms including Barracuda, CrowdStrike, and Darktrace.
  • Planned and staged Exchange Online remote migrations to support workforce cloud adoption.

Information Systems Analyst

San Ysidro School District — San Ysidro, CA
July 2016 – October 2019

  • Supported district‑wide infrastructure including VMware ESXi, Hyper‑V clusters, DHCP failover, and WSUS/WDS for approximately 2,500 devices.
  • Led ransomware recovery efforts using Backup Exec, coordinating system restoration and validation.
  • Implemented antivirus protection across the district using ESET.
  • Managed switching and routing infrastructure and performed advanced troubleshooting using Wireshark.

Earlier Career (Progressive Responsibility)

  • Systems Administrator — Pacific World Corporation (2012–2016): Windows Server administration, Active Directory lifecycle management, Office 365, PowerShell, VPN/Citrix, RSA/Duo MFA.
  • Service Desk Engineer — Amylin Pharmaceuticals (2011–2012): Enterprise application and OS support, VPN/SSL, Citrix environments.
  • Help Desk Technician — Ashworth Inc. & GKN Aerospace (2002–2010): Enterprise support, antivirus, ticketing systems, user onboarding.

Education & Certifications

Education
A.S., Mathematics — Grossmont College
A.A., Computer Science — Palomar College

Certifications
AWS Solutions Architect – Associate (2026)
Azure Solutions Architect Expert (2025)
Azure Security Engineer (2025)
Azure Administrator (2024)
Microsoft 365 Enterprise Administrator Expert (2023)
Microsoft 365 Messaging Administrator (2023)
CCNA • Administering Windows Server 2012 • CompTIA A+ • Network+