Skills
Technical Skills
Cloud & Hybrid Infrastructure
Microsoft Azure | Azure Active Directory | Azure Single Sign-On | Conditional Access
Microsoft 365 | Exchange Online | SharePoint Online | OneDrive for Business
Microsoft Intune | Windows Autopilot | Mobile Device Management (MDM) | Mobile Application Management (MAM)
Microsoft Purview | Information Protection | Data Loss Prevention (DLP) | Insider Risk Management
Microsoft Defender for Endpoint | Defender for Identity | Defender for Cloud Apps
Hybrid Environments | On-premises to Cloud Migrations | Identity Synchronization
Virtualization & Storage
Hyper-V | Failover Clustering | High Availability (HA) | Disaster Recovery (DR)
Storage Area Network (SAN) | iSCSI | Fiber Channel | LUN Management | Storage Pools
VSS | Snapshots | Backup Strategies | Replication
Virtual Machine Management | Resource Optimization | Performance Monitoring
Security & Compliance
Zero Trust Architecture | Security Best Practices | Threat Protection
Information Protection | Data Classification | Sensitive Data Discovery
Endpoint Security | BitLocker Encryption | Device Compliance
Identity Security | Multi-Factor Authentication (MFA) | Privileged Identity Management
Security Policies | Compliance Frameworks | Audit & Reporting
Risk Assessment | Vulnerability Management | Security Monitoring
Networking & Infrastructure
TCP/IP | DNS | DHCP | VPN | Load Balancing
Firewalls | Network Security | Segmentation
Active Directory | Group Policy | Domain Services
Windows Server | Linux Administration | Cross-Platform Integration
Automation & Scripting
PowerShell | Scripting | Automation | Routine Optimization
Infrastructure as Code | Configuration Management
Process Automation | Efficiency Improvements
Methodologies & Best Practices
ITIL Framework | Incident Management | Change Management | Problem Management
Project Management | Technical Documentation | Architecture Planning
Agile Methodologies | Continuous Improvement
Professional Skills
Analytical Thinking | Problem Solving | Root Cause Analysis | Troubleshooting
Results Orientation | Performance Optimization | Process Improvement
Communication | Technical Writing | Stakeholder Management | Client Relations
Team Collaboration | Cross-Functional Teams | Knowledge Transfer | Mentoring
Adaptability | Fast Learning | Complex Environments | Changing Priorities
Project Execution | Planning | Implementation | Delivery | Quality Assurance
Strategic Vision | Innovation | Technology Roadmaps | Business Alignment
About
Professional Summary
I am an IT professional with 8 years of experience in Technology Infrastructure, working in complex and heterogeneous corporate environments. I have proven expertise in both on-premises and cloud solutions, including virtualization with Hyper-V, Microsoft Azure platform, and Microsoft 365, with emphasis on Exchange Online, Azure Active Directory, and Azure Single Sign-On.
Currently, I serve as a Security Architect at Stefanini (since January 2022), where I am responsible for administering, maintaining, and evolving a hybrid environment, ensuring availability, security, and performance of the platforms under my management.
I possess solid skills in environment standardization, technical architecture definition, and implementation of market best practices (such as ITIL and information security). I also work with process automation and administrative routines using PowerShell, promoting operational efficiency gains.
I am a committed, analytical, and results-oriented professional who adapts easily to different scenarios and collaborates effectively with multidisciplinary teams. I constantly seek challenges that enable both technical and strategic growth, contributing to innovation, stability, and security of IT infrastructures in the organizations where I work.
Key Projects and Achievements
EMBRAER Project – Device Delivery Modernization with Zero Touch Deployment
I led the optimization of machine delivery processes for new employees and equipment replacements. The company faced challenges with the slow traditional image cloning process performed by the Field Service team. I designed and implemented a solution based on Microsoft Intune and Windows Autopilot, integrating Microsoft 365, Microsoft Purview, and DLP policies. Device delivery time was reduced to under 2 hours, with all corporate applications, configurations, and security policies automatically applied following the Zero Trust security model.
My responsibilities included:
Registering devices in Autopilot
Creating deployment profiles and compliance policies in Intune
Applying data protection policies via Microsoft Purview (DLP)
Integrating with Azure AD and conditional authentication
Ensuring BitLocker encryption and enabling Microsoft Defender for Endpoint
SOMPO Seguros Project – Data Leakage Prevention with Microsoft Purview
I was responsible for implementing a sensitive data protection strategy focused on Data Loss Prevention (DLP) and endpoint security. The core requirement was to monitor, identify, and prevent leakage of confidential information such as client data and strategic documents.
My activities included:
Mapping and classifying sensitive data with Microsoft Purview Information Protection
Creating and publishing DLP policies for email, SharePoint, OneDrive, and local devices
Integrating with Microsoft Defender for Endpoint to apply corrective measures and automated alerts
Training the client's security team for ongoing solution management
Generating reports and performing fine-tuning based on user behavior analysis
Globo Project – Mobile Device Management with Microsoft Intune
I worked on the assessment, standardization, and management of corporate mobile devices focusing on security and compliance. The client's challenge was the lack of centralized control over smartphones and tablets used by employees and contractors.
Solutions I implemented:
Complete inventory of mobile devices used throughout the organization
Definition of security and compliance policies via Microsoft Intune for Mobile Device Management (MDM)
Creation of configuration profiles for iOS and Android, including password policies, encryption, and remote lock capabilities
Activation of Microsoft Defender for Endpoint Mobile
Implementation of Conditional Access policies integrated with Azure AD to control access to corporate resources
Leuze Electronics Project – SAN Infrastructure Architecture with Hyper-V
I participated in the construction of a high-availability storage infrastructure based on Storage Area Network (SAN). The objective was to create a robust virtualization environment with Hyper-V, ensuring performance, security, and both physical and logical equipment organization.
Key deliverables:
Planning and organizing racks with SAN switches, storage units, and servers
Configuring iSCSI Targets and Initiators on Hyper-V nodes
Creating volumes, mapping LUNs, and conducting performance testing with failover
Integrating with Active Directory domain and applying security policies for users and groups
Implementing backup and replication with VSS and periodic snapshots
Documenting the architecture with physical and logical diagrams
Profile Photo
