Mehdi Rezaei

Dallas, Texas · (425) 606-9496 · mehdi.rezaei2004@gmail.com · LinkedIn Profile

I am a Results-driven IT professional with over 14 years of hands-on experience in designing, implementing, and managing complex IT infrastructures and cloud environments. Specialized in cloud computing platforms and Identity and Access Management (IAM) solutions such as Azure and AWS, with demonstrated proficiency in scripting languages including PowerShell, Python, and Bash for automation and process optimization.

Highly skilled in the administration of Active Directory, ADLDS, ADFS, and Azure AD, as well as managing hybrid environments involving Windows and Linux servers. Expertise extends to DNS, DHCP, GPO, and a comprehensive suite of Microsoft services, including Office 365, Exchange Online, Intune, SCCM, and SSO. Adept at leveraging virtualization platforms such as VMware, Citrix, Hyper-V, and EMC storage solutions (VNX and Isilon) to enhance system performance and scalability.

Extensive experience in identity integration and federation using Radiant Logic, as well as implementing and optimizing enterprise applications such as ServiceNow (including flow design), Workday automation, Okta, and Varonis. Proficient in security program integration and management, including tools like Splunk, Rapid7, and Secret Server, with a strong emphasis on monitoring, troubleshooting, and incident response.

Knowledgeable in containerization technologies like Docker and Kubernetes, and experienced in Agile development practices. Proven ability to drive digital transformation, streamline processes, and improve operational efficiency while maintaining a strong focus on security and compliance.

Dynamic and detail-oriented professional with a passion for adopting cutting-edge technologies to deliver innovative solutions and enhance organizational performance. Recognized for leadership in implementing cloud and IAM strategies, fostering collaboration across teams, and mentoring others to achieve success in evolving IT landscapes. .

Experience

Senior IT Engineer IV

Signet Jewelers - Irving, TX

Rehired on Aug 2020 - Present

  • As Senior IT Engineer IV, I lead a team overseeing Microsoft services, including Azure Entra ID, Windows Servers, Active Directory, DNS, DHCP, and Group Policies. My responsibilities encompass strategic leadership, technical direction, and ensuring operational excellence.
  • As an architect and consultant for the Employee Services Automation team, I designed and consulted on streamlining employee services, with a focus on optimizing onboarding processes using Workday API, ServiceNow Flow, Varonis, and Active Directory Automation scripts.
  • Developed and implemented a comprehensive Identity and Access Management (IAM) strategy to enhance security and compliance across the organization, leveraging Azure AD, AD LDS, ADFS, and Radiant Logic solutions.
  • Led successful implementation and troubleshooting of high-impact projects, such as DNS modernization, IP Overlap resolution on servers, mailbox standardization, PowerShell remote remediation, SCCM tenant consolidation, and API-based script deployment for Windows and Linux patching.
  • Contributed to the configuration and utilization of Azure AD and its seamless synchronization with on-premises Active Directory across 6 forests and 150,000 objects.
  • Architected and deployed Azure AD (Entra ID) solutions, ensuring seamless synchronization with on-premises Active Directory environments.
  • Configured, monitored, and maintained Azure Storage Accounts, Virtual Networks, App Services, Web Apps, and VMs.
  • Managed and supported Windows virtual machines: configuring, ensuring optimal performance, security, and availability.
  • Expertly managed and configured Active Directory Federation Services (ADFS) to enable secure, federated identity management across multiple systems and applications.
  • Managed Azure IaaS and PaaS resources such as SQL Database, Service Bus Queues, Event Hubs, and Automation Accounts.
  • Designed high availability solutions by leveraging Load Balancers, Availability Sets, and Traffic Manager profiles in Azure environments.
  • Developed and implemented automation scripts for Azure services using PowerShell, Python, and Bash.
  • Orchestrated the seamless transition of all objects from the old Azure tenant to a newly designed Azure tenant, effectively facilitating their merger.
  • Contributed to various projects related to Windows Servers, spanning versions 2003, 2008, 2012, 2016, and 2019, demonstrating expertise across multiple platforms.
  • Collaborated with the AWS team to migrate and troubleshoot half of our servers to AWS, ensuring a smooth transition and optimal performance.
  • Created and configured IAM roles and policies to grant the necessary permissions for AppStream 2.0 to authenticate users via SSO.
  • Configured the SSO URL and any required parameters in the AppStream 2.0 settings to redirect users to the IdP for authentication.
  • Engineered automated tools using PowerShell and Python to enhance operational efficiency for Client Support and Corporate Help Desk teams.
  • Managed and troubleshot Radiant Logic FID and ICS servers and configured RadiantOne VDS.
  • Led the migration project, replacing Radiant Logic with AD LDS as the new directory service.
  • Played a key role in decommissioning nearly 12 Active Directory domains, overseeing the seamless transfer of linked servers to the new primary domains for the company.
  • Performed performance monitoring, analysis, and reporting using SolarWinds, Nagios, and Splunk.
  • Designed and implemented automated processes for provisioning mailboxes, leveraging Exchange Online for efficient mailbox management.
  • Engaged in projects focused on upgrading and decommissioning legacy OS versions like Windows Server 2003, 2008, and 2012, ensuring a smooth transition to modernized operating systems.
  • Collaborated on the relocation and upgrade of VMware vCenter while also contributing to the configuration of vRealize Operation Manager and VMware Aria for enhanced virtualization infrastructure.
  • Led the relocation and upgrade of Signet's primary DHCP server.
  • Generated reports summarizing engineering results for internal review.
  • Managed multiple vCenters with high availability clusters including host, storage, and network components.
  • Trained staff on how to use various computer systems effectively.
  • Managed the development and implementation of infrastructure automation solutions using AWS technologies such as EC2, S3, ECS, EKS, Lambda, and CloudFormation as well as configuring AWS NetApp.
  • Developed scripts in Python or Bash to automate routine tasks related to AWS Cloud operations.
  • Configured, maintained, and monitored SAN Storage Area Network systems specifically EMC and Pure Storage, to ensure the availability of mission-critical applications.
August 2020 - Present

Senior IT Engineer V

Cognizant (Contract) - Teaneck, NJ
  • Focused on Intune deployment projects during COVID-19.
  • Developed and maintained systems in a multi-platform environment.
  • Provided technical guidance for advanced system administration tasks.
  • Configured Active Directory roles and policies for Intune projects.
April 2020 - August 2020

IT Engineer IV

Signet Jewelers - Akron, OH
  • Developed SCCM tenants, implementing Intune and Endpoint Management solutions.
  • Built AD group management platforms with Varonis Dataprivilege.
  • Streamlined file server optimization, ensuring SOX and PCI compliance.
  • Managed advanced storage systems, including EMC VMAX and Pure Storage.
September 2019 - April 2020

Systems Administrator

Amazon (Contract) - Bellevue, WA
  • Created AWS Route53 configurations to route traffic between regions.
  • Integrated applications with domain controllers for LDAP lookups.
  • Configured IAM roles and monitored cloud operations for optimal efficiency.
January 2019 - September 2019

System Engineer

Pioneer Data Systems - Tehran, Iran
  • Designed, implemented, and managed VMware environments.
  • Configured backup strategies with Veeam Backup and Symantec Backup Exec.
  • Performed AD authentication silos design and Windows Server upgrades.
January 2014 - January 2018

Network Administrator

Zaman ISP
  • Supported and maintained LAN/WAN networks.
  • Configured Cisco Switches and Routers for efficient operations.
  • Performed Active Directory migrations and troubleshooting.
January 2011 - January 2014

Education

Khajeh Nasir Toosi, Tehran, Iran

Master
Artificial intelligence

GPA: 3.23

October 2014 - October 2016

Azad University, Malayer, Iran

Computer Engineering

GPA: 3.56

October 2005 - October 2010

Skills

Skills
  • AWS
  • Azure
  • IAM
  • Cloud Computing
  • Automation
  • Windows Server
  • PowerShell
  • Database Management
  • Networking
  • Linux RedHat
  • Python
  • Docker
  • Identity Management
Workflow
  • Cloud Computing: Strong expertise in Azure and AWS, with hands-on experience in configuring, deploying, and managing cloud-based solutions, including Azure Entra ID.
  • Operating Systems: Comprehensive knowledge of Windows Server and Linux RedHat.
  • Directory Services: Deep knowledge of Active Directory (AD), AD Lightweight Directory Services (ADLDS), LDAP, and integration with SaaS IAM solutions. Proficient in authentication protocols such as SAML, LDAP, and OAuth.
  • Office 365 and Microsoft Services: Extensive experience with Office 365, Exchange Online, Microsoft Intune, System Center Configuration Manager (SCCM), and Single Sign-On (SSO) solutions.
  • Scripting and Automation: Expert in PowerShell and Python, leveraging REST APIs for large-scale projects and automation solutions.
  • Network Services: Extensive experience with DNS, DHCP, Group Policy Object (GPO), VPN configuration, IP Address Management (IPAM), and network security protocols.
  • Virtualization: Extensive experience with VMware, Citrix, and Hyper-V.
  • Database and Storage: Experienced in database administration, managing physical servers (Dell), and storage systems (Dell EMC VMAX, Pure Storage).
  • Infrastructure Management: Skilled in designing, implementing, and managing enterprise-level infrastructure solutions, including high availability, disaster recovery planning, and scalability enhancements.
  • Cybersecurity: Familiar with vulnerability assessment, threat detection, and incident response tools like Rapid7 and Secret Server.
  • Identity Management: Led integration and management of identity data using Radiant Logic's RadiantOne FID platform, enhancing authentication and authorization processes by virtualizing and federating identity information from LDAP, AD, and other sources.
  • Monitoring and Troubleshooting: Proficient with Nagios, SolarWinds, and Splunk for proactive system health monitoring and rapid issue resolution.
  • Development Methodologies: Proficient in Agile development methodologies and system development.
  • Machine Learning and AI: Knowledgeable in machine learning and AI.
  • Containerization: Familiar with Docker and Kubernetes.
  • Collaboration and Communication: Strong collaboration and communication skills, with a proven track record of working effectively in cross-functional teams to achieve project objectives and deliver high-quality results.

Interests

Beyond my work as an IT professional, I enjoy exploring nature and outdoor activities. I find peace in hiking and spending time in natural environments. When indoors, I immerse myself in the world of technology, continuously learning about advancements in cloud computing, automation, and cybersecurity.

I am passionate about scripting and automation, often experimenting with new tools and frameworks to enhance productivity. Additionally, I enjoy reading about innovations in identity management, containerization, and machine learning. When I need a break, I relax by watching documentaries and sci-fi series, or by exploring culinary arts in my kitchen.

Awards & Certifications

  • AWS Solution Architect Associate- 2024
  • Microsoft Identity and Access management – SC-300 - 2024
  • SQL Server Certification from Bellevue College (Bellevue, WA) - 2017
  • Python from Coursera - 2018
  • VMware VCP 6.0 - 2019
  • Signet Agility Advancement Badge