Professional Summary

Cloud Engineer with deep hands‑on experience across Azure, AWS, VMware, and hybrid infrastructure. Skilled in IaC (Terraform/ARM), cloud security, cost optimization, identity governance (Entra ID/M365), automation using PowerShell, and cloud migrations including VMware‑to‑Azure. Strong track record modernizing legacy environments and supporting enterprise systems in regulated industries (gaming, transit).

Cloud & Technical Skills

  • Azure: VM, NSG, Key Vault, Storage (GPv2/Hot/Cold), Firewall, Cost Management, Azure Migrate, ARM Templates
  • AWS: EC2/Compute, VPC, IAM, HA design patterns
  • IaC & Automation: Terraform, ARM Templates, PowerShell
  • Identity: Entra ID/Azure AD, RBAC/IAM, Conditional Access, PIM, Access Reviews, SAML/SSO, Duo MFA
  • M365: Exchange Online, Teams, SharePoint, Intune, Autopilot
  • Virtualization: VMware vCenter/ESXi (7.x → 8.x), Nutanix HCI, Windows Server 2012–2022
  • Backup/Monitoring: Rubrik, SolarWinds SAM/IPAM/NPM, CrowdStrike, Darktrace
  • Networking: DNS, DHCP, Palo Alto basics, Cisco switching/UC

Professional Experience

Senior Systems Engineer
Viejas Casino & Resort — Alpine, CA
Jan 2024 – Present
  • Designed and deployed Azure/AWS IaC using Terraform and ARM; automated VM provisioning and cloud resource governance.
  • Migrated VMware workloads to Azure using Azure Migrate; built landing zones, NSGs, storage accounts, and Azure Firewall rules.
  • Implemented cloud security controls: Conditional Access, Duo MFA, RBAC, PIM, app registrations, Managed Identities, SAML SSO.
  • Optimized cloud cost via tiering analysis and GPv1 → GPv2 upgrades; tuned storage to hot/cool tiers using metrics.
  • Administered M365: Teams governance, SharePoint sites, Exchange Online policies, Entra governance.
  • Upgraded vCenter 7.0 → 8.0; refreshed certificates, improved VM uptime/security for 400+ VMs.
  • Automated cloud + AD tasks with PowerShell (GPO deployments, Rubrik agent installs, OU cleanups, DNS scavenging).
  • Implemented Rubrik SLA assignments for new cloud workloads and validated DR recovery compliance.
Systems Engineer
San Diego Metropolitan Transit System — San Diego, CA
Oct 2019 – Jan 2024
  • Supported hybrid identity: AD Connect, password sync troubleshooting, MFA in hybrid M365.
  • Performed Exchange Online migrations and enabled cloud adoption for 1,000+ users.
  • Maintained 300+ VMs across VMware; templates, vMotion, storage, lifecycle patching.
  • Implemented SolarWinds SAM/IPAM/NPM upgrades; managed CrowdStrike & Darktrace.
  • Deployed Barracuda email/web security; maintained Cisco UC/Jabber and HP iLO management.
Information Systems Analyst
San Ysidro School District — San Ysidro, CA
Jul 2016 – Oct 2019
  • Supported Hyper‑V clusters, VMware ESXi, DHCP failover, and WSUS/WDS for ~2,500 devices.
  • Recovered systems during ransomware incident using Backup Exec; deployed ESET AV.
  • Managed district-wide switching/routing; used Wireshark to diagnose rogue DHCP issues.

Earlier Career

  • Systems Administrator — Pacific World Corporation (2012–2016): AD lifecycle, O365 group mailboxes, PowerShell reporting, RSA tokens.
  • Service Desk Engineer — Amylin Pharmaceuticals (2011–2012): Enterprise support, VPN/SSL, Citrix.
  • Help Desk Technician — Ashworth Inc. & GKN Aerospace (2002–2010): Windows/Office support, AV, ticketing.

Education

  • AS Mathematics — Grossmont College
  • AA Computer Science — Palomar College

Certifications

  • AWS Solutions Architect – Associate (2026)
  • Azure Solutions Architect Expert (2025)
  • Azure Security Engineer (2025)
  • Azure Administrator (2024)
  • M365 Enterprise Admin Expert (2023)
  • M365 Messaging Admin (2023)
  • CCNA • Administering Windows Server • CompTIA A+ • Network+