Go to Website
  • en
  • de

Markus I.

Senior System Engineer Microsoft

Ingelheim am Rhein, Germany

Experience

Jan 2024 - May 2024
5 months

Senior System Engineer Microsoft

Technidata it-service gmbh

  • As part of the project, I was responsible for running a Citrix farm for 600 users, including optimizing the user experience and ensuring high availability. I managed and optimized the entire application environment of a large customer, evaluated and implemented application updates and ensured the compatibility and security of the deployed software.
  • Another focus of my work was the efficient management of Active Directory and core Microsoft services. I managed user accounts, implemented security policies and monitored system performance. I also administered Azure Entra ID to manage identities and access rights, implemented security policies and synchronized on-premises directories with the cloud.
  • In addition, I implemented and managed Microsoft Intune for centralized management of client devices, including configuring and managing BitLocker for disk encryption and protecting sensitive data. I managed file servers and NTFS permissions to ensure secure and efficient data access management.
  • I handled change requests and last-level support tickets efficiently to solve complex system issues and improve user satisfaction. Furthermore, I supported and advised the customer team in various areas and projects, identified improvement potentials and implemented best practices.
  • Technologies and tools used:
  • Citrix XenApp and XenDesktop
  • Microsoft Windows Server 2012R2 and 2022
  • Exchange 2016 and Exchange Online
  • Entra ID (Azure AD)
  • Entra ID Connect
  • BitLocker
  • PowerShell scripting
  • Microsoft Intune
  • LDAP (Lightweight Directory Access Protocol)
  • DNS services (Domain Name System)
  • Active Directory Certificate Services (AD CS)
Oct 2023 - Dec 2023
3 months
Germany

Active Directory Specialist

Atotech Deutschland GmbH & Co. KG

  • As part of the project, I was responsible for enterprise-level user management, including provisioning, deprovisioning and user lifecycle management across multiple geographic locations and business units. I developed and implemented complex Group Policy Objects (GPOs) to secure and manage extensive computer and user settings. I designed and managed a robust Active Directory infrastructure with multiple forests and domains, established trust relationships and optimized site topology. I also ensured the deployment and maintenance of Active Directory Federation Services (ADFS) to enable secure sharing of identity information between different organizations and cloud-based services. I coordinated directory synchronization with cloud services like Entra ID to ensure consistent identity management across on-premises and cloud platforms.
  • I ensured high availability of AD services and deployments in multiple regions and carried out comprehensive backup and disaster recovery plans. To optimize directory services, I monitored system performance, identified bottlenecks and made appropriate adjustments. I performed security audits and remediation measures by participating in security audits and compliance checks and resolving issues to ensure the security and integrity of the AD environment. For complex Active Directory issues, I took over troubleshooting at an expert level, including cross-domain authentication and forest-wide replication errors. Finally, I worked closely with IT management to plan the strategic direction of Active Directory services, taking into account company goals and integrating new technologies as well as cloud migration strategies.
  • Technologies used:
  • Active Directory Domain Services (AD DS)
  • Group Policy Objects (GPOs)
  • Azure Entra ID (Entra ID)
  • Active Directory Federation Services (ADFS)
  • PowerShell
  • LDAP (Lightweight Directory Access Protocol)
  • Active Directory Certificate Services (AD CS)
  • DNS services (Domain Name System)
  • Active Directory Sites and Services
  • Windows Server
Sep 2020 - Sep 2023
3 years 1 month

Interim Technical Lead

SHE Informationstechnologie AG

  • As part of the project, I supported the team with complex problem solving and escalations, planned and executed projects in the Microsoft environment, including Intune and Entra ID. I was responsible for the design, implementation and management of Windows servers and Windows 10/11 in VDI environments and for migrations in Windows Server, Active Directory, Exchange and Azure. I also coordinated troubleshooting and evaluated the architecture for Microsoft technologies.
  • I provided technical advice and mentoring for team members, led the Microsoft team and ensured smooth communication with other departments and customers. I also supervised the training and development of team members. In risk management, I created technical documentation and was responsible for Office 365 environments as well as Entra ID and Exchange Online. I conducted configuration reviews, managed file servers and NTFS permissions and automated processes with PowerShell.
  • Furthermore, I planned and operated Microsoft Intune for managing and securing client devices as well as Azure Entra ID for managing identities and access rights. I coordinated the migration from Skype for Business to Microsoft Teams and was responsible for the administration and troubleshooting of SharePoint and Office Apps Server.
  • Technologies used:
  • Microsoft Windows Server (2008R2 - 2022)
  • Windows 10/11
  • Microsoft 365
  • Microsoft Azure
  • Office 365
  • Exchange Online and Exchange Server
  • Microsoft Teams
  • Intune
  • BitLocker
  • PowerShell
  • Quest Kace
  • WSUS (Windows Server Update Services)
  • Entra ID
Aug 2019 - Sep 2020
1 year 2 months

Active Directory Specialist

Bilfinger Global IT GmbH

  • As part of the project, I provided technical support for the operation of a globally distributed Active Directory and advised on company mergers and carve-outs. I developed automation scripts to optimize Active Directory and implemented security measures for domain controllers. I was also responsible for handling 3rd level incidents and troubleshooting. I played a key role in setting up the Enhanced Security Administrative Environment (ESAE). I monitored the performance and availability of AD services, created and implemented security policies and executed disaster recovery plans for AD components.
  • In addition, I operated and managed Azure Entra ID for managing identities and access rights, implemented and managed security policies and access controls and synchronized on-premises directories with Azure Entra ID. I performed regular reviews and audits of Entra ID configuration and security, supported the implementation of multi-factor authentication (MFA) and conditional access and managed user accounts, groups and roles in Entra ID. Monitoring and troubleshooting Entra ID services to ensure high availability and performance were also part of my tasks, as well as creating and maintaining documentation and operating instructions for Entra ID.
  • Technologies used:
  • Active Directory
  • LDAP (Lightweight Directory Access Protocol)
  • PowerShell
  • Kerberos and Group Policy
  • DNS (Domain Name System)
  • Entra ID (Azure AD)
  • Windows Server (2008R2 - 2019)
Jun 2019 - Aug 2019
3 months

Systems Engineer

Klöckner Pentaplast

  • As part of the project, I provided 2nd level support for all Microsoft services, including Active Directory (AD), Microsoft Exchange and client operating systems. I supported the rollout of Windows 10 and Office 365 in the company, diagnosed and fixed system issues in a Microsoft environment and managed user accounts and permissions using AD. To ensure efficient and secure data access management, I was responsible for managing file servers and NTFS permissions.
  • I monitored system performance and implemented optimization measures, supported the planning and execution of backups and system restores and worked with the IT security team to implement security policies and procedures. Finally, I documented system configurations and update processes.
  • Technologies used:
  • Windows 10
  • Office 365
  • Active Directory
  • Microsoft Exchange
  • PowerShell
  • Windows Server
Sep 2017 - May 2019
1 year 9 months

Systems Engineer Specialist

SHE Informationstechnologie AG

  • As part of the project, I was responsible for 2nd level support for a wide range of Microsoft products and custom applications. I planned, implemented and monitored projects in the Microsoft environment, including migration projects and server upgrades. My work included designing, maintaining, operating and troubleshooting Exchange Servers (2010-2016) as well as managing hybrid scenarios and DAGs for 200-4000 mailboxes. I operated and managed Microsoft servers (2008R2 - 2019), including patch management, monitoring and performance tuning.
  • I gained experience with Skype for Business as well as SharePoint and Office Apps Server in administration and troubleshooting. I also managed and optimized Microsoft 365 services, including Exchange Online, SharePoint and Teams. Implementing and managing security policies on Microsoft servers and in the cloud was also part of my tasks. I supported and trained end users in using Microsoft 365 services and developed PowerShell scripts to automate recurring tasks and system management.
  • Additionally, I managed file servers and configured NTFS permissions for secure and efficient data management. I conducted configuration reviews to ensure compliance and system performance, coordinated and worked with other IT departments and external service providers. Furthermore, I was responsible for the administration and management of BitLocker for disk encryption and protection of sensitive data on Windows client devices, as well as managing Entra ID (Azure AD) to control identities and access rights and synchronizing on-premises directories with the cloud. Finally, I administered devices, policies and users in Microsoft Intune for centralized management and protection of client devices.
  • Technologies used:
  • Windows Server 2008R2 - Server 2019
  • Windows 10/11
  • Microsoft 365
  • Azure
  • PowerShell
  • Microsoft Exchange (Online)
  • SharePoint Online
  • Microsoft Teams
  • BitLocker
  • Entra ID (Azure AD)
  • Microsoft Intune
Mar 2017 - Sep 2017
7 months
Germany

Systems Engineer Specialist

Sika Automotive Deutschland GmbH (Damals faist chemtec)

  • As part of the project, I conducted analysis and optimization of the existing Active Directory infrastructure and implemented best practices. I advised the IT manager on topics like security, network structure and optimizing IT processes. My tasks included 2nd level incident and change handling, including troubleshooting and implementing changes in production. I also monitored and optimized the Kaspersky Antivirus solution, including regular updates and configuration adjustments.
  • I operated and managed file servers and set NTFS permissions to ensure secure and efficient data access control. In collaboration with the security team, I carried out security audits and hardening measures. Finally, I created technical documentation and work instructions for the IT team.
  • Technologies used:
  • Active Directory
  • Kaspersky Antivirus
  • Windows Server
  • PowerShell
Oct 2016 - Feb 2017
5 months
Germany

IT Coordinator

Handwerkskammer rheinhessen

  • As part of the project, I took on the role of technical IT manager, coordinated between different departments and was responsible for strategic planning. I held overall operational responsibility for the IT infrastructure at up to five locations, including network, servers and security. I designed and planned a private cloud infrastructure as part of the construction of a new education center, set up, maintained and operated Exchange 2016 with up to 500 mailboxes and implemented various work packages from the private cloud project, including server configuration, data migration and security policies.
  • In addition, I conducted risk analyses, developed emergency plans for critical IT systems and implemented ITIL-based processes for incident, problem and change management. I was responsible for budgeting and cost control for IT projects and operating expenses as well as for selecting and managing external service providers and suppliers for IT-related services. I provided 2nd and 3rd level support for all IT-related requests and issues, managed file servers and implemented NTFS permissions to optimize the security and efficiency of data access.
  • I also supported and maintained around 80 specialized applications, including updates and user training, and carried out regular audits to check compliance with policies.
  • Technologies used:
  • VMware vSphere
  • Windows Server 2012/2016
  • XenDesktop/XenServer
  • Failover Cluster
  • SQL Server
  • Exchange Server
  • System Center Suite
  • Various specialized applications

Summary

Markus Ickenroth is an experienced Senior Systems Engineer with a focus on managing Microsoft-based IT infrastructures. He has in-depth knowledge of:

  • Windows Server
  • Active Directory
  • Microsoft Exchange Server

In addition to his deep technical knowledge in the above areas, Markus Ickenroth has extensive skills in cloud computing, especially in:

  • Microsoft Azure
  • Microsoft 365

He combines technical know-how with strong methodological skills in ITIL and strong analytical abilities. His problem-solving skills and reliability make him a valuable team member in complex IT projects. His soft skills include, among others:

  • Teamwork
  • Customer focus
  • Resilience
  • Reliability

Languages

German
Native
English
Advanced

Certifications & licenses

Microsoft Certified: Azure Fundamentals AZ-900

Microsoft

Microsoft Certified: Windows Server Hybrid Administrator Associate

Microsoft

Upgrading Microsoft Certified System Engineer to 2012R2

Microsoft

VMware Certified Professional on vSphere 4

VMware

CompTIA Security+

CompTIA

Microsoft Certified System Engineer on Windows 2000

Microsoft

Cobit Foundation

ITIL v3 Foundation

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Christian F.

Architecture Management

View Profile
Stephan P.

IT Generalist + SCCM + Intune

View Profile
Philipp S.

MS365 Consultant/Solution Architect

View Profile
Alagi M.

Project Manager & IT Security Architect Logging & Monitoring for QRadar & Splunk, ISO 27001

View Profile
Samir S.

Project Manager in the Cybersecurity Department for 2 operational companies of the RWE Group

View Profile
Peter V.

IT Consultant

View Profile
Dirk B.

Senior Consultant

View Profile
Andreas F.

IT Project Manager, Business Analyst, Senior Consultant

View Profile
Andreas E.

IT Consulting / Entrepreneur

View Profile
Thomas R.

Tender for Workplace Services and M365

View Profile
Ralf B.

Consultant

View Profile
Mark O.

Consultant Intune, Dynamics, Ivanti MobileIron

View Profile
David B.

Acting Partner

View Profile
Florian B.

Jitsi - Video conferencing system with AI-powered simultaneous translation (Prototype)

View Profile
Jin-ho Y.

Server Migration Consultant

View Profile
fratch Part of Bitkom logo
linkedIncrunchbaseyoutube
  • English
  • Deutsch

2025 © FRATCH.IO GmbH. All rights reserved.