I'm Walter
Senior Azure + Identity/Security Engineer — 20+ years designing, operating, and securing Active Directory / Entra ID and Azure infrastructure.
Core Capabilities
Active Directory & Hybrid Identity Security
What I do: Design, operate, harden, and modernize directory services from legacy AD to Entra-first.
Scope: 20+ years • 100–5,000+ users • hybrid + cloud-native
Common outcomes:
- Reduce identity attack surface (tiering, admin separation, CA, MFA)
- Stabilize authentication (DNS hygiene, replication health, GPO cleanup)
- Modernize: GPO → Intune, AD Connect → Entra patterns
Tools: AD DS, Entra ID, AD Connect, GPO, Intune, Defender for Identity, PowerShell
Compliance: SOX, HIPAA, CJIS, GLBA — designed to meet auditor scrutiny in regulated environments.
Modern Workplace Security
What I do: Deploy and secure cloud-native endpoint management with Intune, Autopilot, and Microsoft Defender.
Scope: 500+ device deployments • Windows/macOS/iOS • compliance-driven environments
Common outcomes:
- Zero-touch deployment with Autopilot
- Security baseline enforcement (CIS, NIST, CJIS)
- Conditional Access integration for device compliance
Tools: Microsoft Intune, Autopilot, Defender for Endpoint, Compliance Policies, Configuration Profiles
Compliance: CIS Benchmarks, NIST SP 800-171, CJIS Security Policy — endpoint hardening for regulated industries.
Azure Platform Engineering
What I do: Build secure, scalable Azure infrastructure from landing zones through production operations.
Scope: 6 Azure subscriptions • 500+ server migrations • zero-downtime deployments
Common outcomes:
- Azure landing zone design + governance framework
- VM/AVD/Windows 365 implementation
- Network security (NSGs, ASGs, Azure Firewall, Private Endpoints)
Tools: Azure Resource Manager, Azure Policy, Bicep/ARM templates, Azure Monitor, Cost Management
Compliance: SOX-compliant change management, audit logging, and access controls for publicly traded companies.
Remote Workforce Infrastructure
What I do: Design and implement Azure Virtual Desktop and Windows 365 for secure remote access.
Scope: 99.9% uptime • FSLogix profiles • conditional access integration
Common outcomes:
- Reliable remote access replacing legacy VPN/RDS
- Session host optimization and cost management
- Monitoring and capacity planning
Tools: Azure Virtual Desktop, Windows 365, FSLogix, Azure Files, Azure Monitor
Compliance: Secure remote access meeting HIPAA, CJIS, and financial services data protection requirements.
Regulated Industry Experience
Most of my career has been spent in environments where security isn’t optional — where a misconfigured permission or missed audit log has regulatory and legal consequences. I’ve designed and operated identity, endpoint, and cloud infrastructure under some of the most demanding compliance frameworks in existence.
🏦 Financial Services & Insurance
Active Directory and Azure infrastructure for publicly traded companies under SOX, GLBA, and SEC requirements. Audit trails, privileged access management, and change control processes built to withstand external auditor review.
Frameworks: SOX, GLBA, SEC Regulation SP Clients: UPC Insurance (NYSE-listed), Slide Insurance
🏥 Healthcare & Medical Research
Identity and cloud infrastructure in HIPAA-covered environments requiring strict access controls, audit logging, and Business Associate Agreement (BAA) compliance. Experience dating to my role as IT Director at a major Medical Research Institute.
Frameworks: HIPAA, HITECH Focus: PHI access controls, audit logging, BAA-compliant Azure services
🚔 Law Enforcement (CJIS)
Consulting engagements with Regional Sheriff offices — one of the most demanding security environments in the public sector. CJIS Security Policy requires advanced authentication, encryption, audit controls, and personnel security screening that goes far beyond typical enterprise requirements.
Frameworks: CJIS Security Policy (FBI), NIST SP 800-53 Focus: MFA, audit logs, encrypted data at rest/transit, access control
“I’ve spent 20+ years in environments where compliance isn’t a checkbox — it’s engineered into every layer of the architecture. Whether it’s a SOX audit, HIPAA risk assessment, or CJIS compliance review, I’ve been there and built the controls to pass.”
Recent Work
500+ Server Migration
Led complete Azure migration for publicly-traded insurance company. Zero downtime across 6 Azure subscriptions.
Modern Workplace
Deployed Microsoft Intune, Autopilot, and cloud-native endpoint management for enterprise organizations.
99.9% Uptime
Improved remote access reliability through Azure Virtual Desktop and Windows 365 implementation.
Core Services
Azure Cloud Migration
Complete end-to-end Azure migration services from assessment through production deployment.
- Discovery and readiness assessment
- Azure architecture design and planning
- VMware/Hyper-V to Azure migration
- Azure Virtual Desktop implementation
- Security and compliance setup
Proven Results: Successfully migrated 500+ enterprise servers with zero downtime
Modern Workplace with Intune
Transform your endpoint management with Microsoft Intune and Modern Workplace solutions.
- Microsoft Intune deployment
- Windows Autopilot implementation
- Device management (configuration, security, compliance)
- Microsoft Defender integration
- Application deployment automation
Perfect For: Organizations transitioning from on-premises management to cloud-native
Identity & Access Management
Expert Active Directory and Entra ID (Azure AD) design, migration, and management.
- Active Directory health assessment
- Azure AD/Entra ID implementation
- Hybrid identity with Azure AD Connect
- SSO and MFA implementation
- Security and compliance monitoring
Experience: 20+ years managing enterprise directory services
Let’s Work Together
Available for Azure migration projects, Modern Workplace implementations, and IT infrastructure consulting.