Skip to main content
curtcomputes

CV

I am currently looking for new roles / opportunities.

SUMMARY
#

Systems Administrator with hands-on expertise across IT infrastructure, cloud platforms, and security-focused technologies. Skilled in architecting and managing scalable environments using Azure, Microsoft 365, Intune, Defender, and modern networking, alongside strong experience in hypervisor management, virtualisation, containerisation, network segmentation, and storage systems. Adept at designing, automating, and optimising high-availability solutions including cloud deployments, endpoint management, backup architecture, and identity security. Focused on delivering secure, reliable, and efficient systems through best-practice frameworks and automation. Passionate about using modern technologies to solve complex problems, strengthen infrastructure, and drive meaningful operational improvements.

TECHNICAL SKILLS
#

  • Cloud & Modern Workplace: Azure (Containers, VM management, autoscaling environments), Azure Landing Zone principles, Microsoft 365, Intune, Defender, Entra ID, Conditional Access
  • Infrastructure & Virtualisation: Proxmox clusters, High-Availability setups, Azure Stack HCI, Hypervisor management, VM lifecycle management, storage systems
  • Networking: VLANs, firewall configuration, DNS management, VPN configurations, Zero-Trust network deployments
  • Automation & Scripting: PowerShell, Ansible, Python, Bash, REST APIs, Kaseya/Action1 automation
  • Backup & Storage: Backup architecture design, NAS management, cloud backups, Veeam
  • Linux & Server Administration: Ubuntu/Debian server management, SSH hardening, kernel tuning, service deployment
  • Process & Delivery: Workflow optimisation, cost-saving initiatives, cross-functional collaboration, technical documentation

PROFESSIONAL EXPERIENCE
#

Petalite
#

Systems AdministratorAugust 2025 – December 2025

Brought in to drive IT transformation, strengthen security, stabilise core infrastructure, and support a cloud deployment programme while managing day-to-day operations.

  • Delivered a complete 3-2-1-1-0 backup and recovery platform for all company and M365 data, including immutable replicas, cloud offload, automated lifecycle management, and a self-service recovery portal.
  • Deployed an automated patching, software distribution, and vulnerability-management platform, implementing patch policies, deployment rings, and estate-wide reporting.
  • Implemented Conditional Access policies and MFA enforcement across cloud and SaaS applications.
  • Fully onboarded Microsoft Intune and Defender, creating compliance policies, device baselines, and integrated endpoint protection.
  • Designed and deployed a secure, autoscaling Azure development environment using Azure Container Instances.
  • Architected a full Azure cloud foundation including subscription design, landing zones, governance, identity, connectivity, IoT onboarding, and operational models.
  • Introduced a unified IT Asset Management system with Entra ID SSO, RBAC, lifecycle alerts, and consolidated tracking.
  • Supported the migration and upgrade of a critical business application to a secure, dedicated server.

SSP (Select Service Partner)
#

2nd Line Support SpecialistJanuary 2024 – July 2025

  • Delivered high-quality 2nd line support, resolving escalations and improving system reliability.
  • Led automation initiatives for daily checks, service restarts, and maintenance tasks.
  • Reduced operational costs by 20% through ITSM workflow optimisation and automation.
  • Automated a privilege-campaign rollout across 250+ POS devices using PowerShell and Kaseya, saving 40+ hours of work.
  • Created dynamic M365 licence-cost reports for senior stakeholders.
  • Automated resolution of 950+ Active Directory account issues during an HR system rollout, avoiding £18,000 in external fees.

TECHNICAL SKILLS
#

Azure, Microsoft 365, Intune, Defender, Proxmox, Docker, PowerShell, Python, Bash, VLANs, WireGuard, Wazuh SIEM, CrowdSec WAF, Authentik SSO, NAS/Backup systems, Linux (Ubuntu/Debian), Windows.

TECHNICAL PROJECTS
#

Enterprise Backup & Recovery Architecture
#

  • Designed and implemented a full 3-2-1-1-0 backup solution for all company and M365 data, including immutable replicas, cloud offload, lifecycle automation, and a self-service recovery portal.

Automated Patch, Vulnerability & Software Deployment
#

  • Deployed a platform to standardise patching and software distribution across the estate. Built update rings, automated reporting, and vulnerability scanning to eliminate security backlogs.

Azure Cloud Development Environment
#

  • Designed and deployed a secure, autoscaling Azure environment using containerised workloads. Enabled cost-optimised scaling and restricted access to authorised devices.

Intune, Defender & Identity Security Implementation
#

  • Delivered Intune from the ground up: compliance policies, device baselines, configuration profiles, and endpoint protection. Implemented Conditional Access and MFA enforcement.

High-Availability Proxmox Cluster
#

  • Configured a 3-node cluster with automated failover and HA workloads across dedicated VLANs.

Network Security & Segmentation
#

  • Implemented multiple VLANs with strict firewall rules and built an exposed public-facing VLAN with WAF protection, SSH hardening, and restricted access.