Infrastructure Platform & Security Engineer

Deep Shah

Infrastructure Platform & Security Engineer

Infrastructure Platform & Security Engineer with deep expertise in Microsoft Azure, Intune, Active Directory, and Windows Server environments. Passionate about building resilient, secure, and scalable infrastructure platforms — from cloud architecture and endpoint management to cybersecurity operations and platform engineering.

Download Resume Email LinkedIn GitHub

Microsoft AzureEntra IDIntuneSentinelFortiGatePowerShell

Scroll

Expertise

Technical Skills

Specializing in Microsoft Azure, enterprise security, and cross-platform endpoint management.

Microsoft Azure

95%

SentinelAzure ADB2CVMsStorageDNS ZonesVirtual WANPiMSSO

Cybersecurity

85%

SIEMIncident ManagementMicrosoft DefenderNetwork SecurityThreat Management

Microsoft Intune

90%

Windows AutopilotAndroid Zero-touchApple Zero-touchEnterprise Mobility

Scripting & Auto

80%

PowerShellBashPython

Firewall Admin

75%

FortiGateIP SubnettingVLANACLWANVPN

Virtualization

70%

VMware ESXi

Career

Professional Journey

Building resilient infrastructure and security platforms across enterprise environments.

Architect and maintain secure, highly available Azure infrastructure platforms for a national financial association. Drive platform engineering initiatives across cloud, on-premises, and hybrid environments while leading security operations, endpoint management, and infrastructure automation to support enterprise-grade compliance and operational resilience.

Architected and maintained Azure cloud infrastructure, improving platform availability and reducing operational overhead through automation and IaC best practices.

Led security operations including SIEM monitoring, incident response, and vulnerability management to safeguard critical financial systems.

Engineered enterprise endpoint management solutions via Microsoft Intune and Autopilot, ensuring zero-touch provisioning and policy compliance across all devices.

Designed and deployed Azure Virtual Desktop (AVD) infrastructure with FSLogix profile containers, enabling secure and seamless remote workforce access.

Strengthened hybrid network security posture through firewall policy management, VPN configurations, and identity governance with Entra ID and Privileged Identity Management (PIM).

Lead the management, design, and maintenance of Azure infrastructure, enhancing scalability and security. Collaborate on cybersecurity strategies, support on-premises infrastructure, and architect Intune solutions for enterprise endpoint management.

Optimized Azure infrastructure to improve scalability and enhance security protocols.

Implemented Intune solutions, streamlining endpoint management and improving compliance.

Contributed to on-premises and cloud network security by coordinating cybersecurity initiatives.

Streamlined device enrollment, reduced setup times, and improved security compliance across 500+ devices. Led disaster recovery sessions, deployed and secured systems, and managed SIEM for enhanced threat detection.

Reduced setup time by 30% through streamlined enrollment of devices.

Decreased unauthorized access incidents by 15% through account management.

Led disaster recovery sessions improving recovery objectives by 20%.

Managed macOS and Windows systems, reduced incidents through JAMF PRO and SCCM, and improved system uptime by 15%.

Achieved 95% first contact resolution rate.

Reduced incident reports by 20% through effective macOS management.

Provided IT support to staff and patrons, resolving 100+ issues weekly and ensuring smooth library operations.

Resolved 100+ issues weekly with a 98% satisfaction rate.

Reduced equipment shortages by 15% through inventory management.

Work

Featured Projects

Enterprise infrastructure initiatives delivered at scale.

01Canadian Bankers Association

Azure Virtual Desktop (AVD) Infrastructure Implementation

Designed and deployed a scalable AVD infrastructure. Integrated Hydra AVD Manager for administration and FSLogix profile containers for a seamless, consistent user environment. Delivered a secure, cost-optimized, and highly available remote work solution.

Azure Virtual DesktopHydra AVD ManagerFSLogixAzure ADAzure StorageAzure Monitor

02Castrol - Wakefield Canada Inc

Azure AD B2C Integration - Infrastructure Technical Lead

Spearheaded the integration of Azure AD B2C. Conducted thorough research, implemented a successful Proof of Concept (PoC), and presented the showcase to stakeholders. Driving the transition to QA and production.

Azure AD B2CEntra ID

03Castrol - Wakefield Canada Inc

Mulesoft Integration Platform Implementation

Managed the infrastructure transition from Boomi to Mulesoft. Key achievements include IPsec VPN setup linking on-premises infrastructure to Mulesoft, Single Sign-On (SSO) configuration using Entra ID, and custom domain implementation.

MulesoftIPsec VPNEntra IDSSL Certificates

04Castrol - Wakefield Canada Inc

Intune - Windows Autopilot

Implemented Windows Autopilot for efficient, streamlined setup and pre-configuration for new devices, simplifying the entire Windows device lifecycle and reducing deployment effort.

Microsoft IntuneWindows AutopilotAzure AD

05Castrol - Wakefield Canada Inc

Intune Zero touch deployment for Android And IOS

Combines Samsung Knox and Apple Business Manager for seamless deployment from purchase to repurposing. Ensures devices arrive with enforced management settings.

Microsoft IntuneSamsung KnoxApple Business ManagerAndroid Zero-touchiOS Zero-touch

Credentials