Available for opportunities

George Albanese

Endpoint Automation Engineer

I design and operate endpoint platforms, identity governance frameworks, and production automation for distributed workforces. Currently managing 585+ devices, 20 Conditional Access policies, and full identity lifecycle automation across Windows, macOS, iOS, and Android.

IntuneEntra IDConditional AccessPowerShellGraph APIDefenderJamf ProAzure Automation
View My Work Resume LinkedIn ↗
10+
Years in IT
585+
Devices Managed
20
CA Policies Built
80
Config Profiles
// about

Who I Am

I'm an endpoint automation engineer with over a decade of progressive IT experience, from museum helpdesk intern to owning the entire endpoint and identity platform for a distributed organization. My career has spanned clinical healthcare IT, white-glove executive support at Brookfield Properties, MSP operations, and now full-stack endpoint engineering.

At my current organization — a mid-sized B2B SaaS company — I own modern device management across 585 devices spanning Windows, macOS, iOS, and Android. I designed the entire Conditional Access framework from scratch, built HR-driven identity lifecycle automation, implemented the endpoint security stack (ASR, BitLocker, Defender EDR, LAPS), and operate production automation pipelines that save measurable time on every hire and termination.

What sets me apart isn't just the breadth — it's the depth of ownership. I don't implement solutions designed by others. I architect them, build them, operate them, and iterate on them. Every Conditional Access policy, every compliance baseline, every automation runbook in my environment exists because I designed it.

// career path
2022–Now
Endpoint Automation Engineer — B2B SaaS (Remote)
2019–2022
Technical Support Specialist I — Brookfield Properties (NYC)
2018–2019
System Analyst II — NYC Health + Hospitals (Bellevue)
2017–2018
Analyst → Solutions Architect — ASI / Network Access Corp
2014–2016
IT Support & Internships — Pittsburgh Tech / AMNH
// by the numbers

Impact at Scale

Real numbers from a production environment I built and operate.

📱
585+
Devices Managed
Intune (Windows/iOS/Android) + Jamf (macOS)
⚙️
80
Configuration Profiles
Security baselines, compliance, app config
🔐
20
Conditional Access Policies
Designed & built entire framework from scratch
📦
117
Apps Deployed
Managed via Intune app catalog
7
Compliance Policies
Per-enrollment-type differentiation
~15 min
Saved per Onboard
HR-driven automation pipeline
🔄
~10 min
Saved per Offboard
Jira-triggered termination workflow
🌐
6
Platforms Covered
Windows, macOS, iOS, Android, W365, BYOD
// core competencies

Technical Scope

The tools and platforms I work with daily to manage, secure, and automate a distributed endpoint environment.

💻

Endpoint Management

Microsoft Intune Jamf Pro Autopilot Autopatch LAPS DFCI Config Profiles Compliance Policies App Deployment Proactive Remediations
🔐

Identity & Access

Entra ID / Azure AD Conditional Access SSO / MFA Certificate-based Auth App Protection (MAM) Entra ID Protection Identity Lifecycle RBAC
🛡️

Endpoint Security

ASR Rules BitLocker Defender for Endpoint Defender EDR Defender AV Windows Firewall SmartScreen Threat Defense

Automation & Scripting

PowerShell Microsoft Graph API Azure Automation Runbooks SQL Azure Blob Storage WinGet REST APIs
📋

Service Management

Jira / JSM ServiceNow Confluence Virtual Service Agent Dayforce (HRIS) Remedy Git
☁️

Platforms

Windows 10/11 macOS iOS / Android Microsoft 365 Exchange Online SharePoint Google Workspace Teams W365 Cloud PC
// credentials

Certifications

Earned

🔒
CompTIA Security+
CompTIA
🌐
CompTIA Network+
CompTIA

In Progress

💻
MD-102
Endpoint Administrator
Microsoft
🔐
SC-300
Identity & Access Administrator
Microsoft
☁️
AZ-104
Azure Administrator
Microsoft
// let's connect

Get In Touch

I'm open to endpoint engineering, cloud delivery, and IAM/security roles. Prefer remote. Happy to discuss how my experience fits your team.

George.Albanese@outlook.com LinkedIn ↗
📍 Norwalk, CT · 🏠 Remote preferred · 📞 917-657-0636