Philipp Schmidt

MS365 Consultant/Solution Architect

Munich, Germany
Experience
Apr 2024 - Present
1 year 4 months
Hybrid

MS365 Consultant/Solution Architect

Freelance

Client: SME, IT service provider:

  • Setup and configuration of an M365 tenant on a hybrid basis, SSO integration for existing app infrastructure like Mattermost, Huhu, etc.
  • License consulting, Entra ID basic configuration, MFA, Conditional Access, Privileged Identity Management.
  • Intune: basic configuration, Windows 11 Autopilot, iPhone AES.

Client: regional, mid-sized manufacturing company:

  • Took over the tenant and prepared a security audit, rolled out iPhones with AES (formerly DEP) on COPE (Corporate Owned, Personally Enabled).
  • Connected external customers with enhanced security via Conditional Access.
  • Consulting on “cloud-first” strategy and migration to “cloud-only” business.
  • Connected various apps via SSO/SCIM (e.g., Atlassian, Personio, Adobe).
  • On-premises AD: security audit and project management: decommissioning local AD (migration: file servers, Navision 2016, user clients to Entra ID joined).
  • Copilot rollout with connections to external data sources (Atlassian) and Intune configuration.

Client: international, mid-sized automotive supplier:

  • Support in preparation for TISAX and ISO27001 certifications.
  • Entra ID: security audit, switched per-user MFA to Conditional Access, upgraded MFA to “phishing resistant.”
  • Intune: setup and management of Intune – integrating Windows and Apple clients, switched web enrollment to AES (formerly DEP), introduced Autopilot, took over app management, integrated Microsoft Defender on company clients, built a baseline for Windows (COBO) and iOS/Android (BYOD) devices.
  • Teams/SPO: expanded and enhanced access model and integrated SPO sites into Teams.
  • Maintenance and backup of Entra ID and Intune tenants (drift management).
  • M365 backup with Veeam.

Client: international, mid-sized manufacturing company:

  • Extended existing Conditional Access policies, designed and implemented PIM including hardware tokens for admins (YubiKey), on-premises admin tier concept.
  • NCD project: revised existing GPOs for structure, security, and compliance.
  • Project management: security audit and hardening of on-premises AD and cloud tenant, SAML VPN, PIM introduction.
  • Supported HR by implementing a booking portal and supported the System Engineering department in general administration, security, compliance, and innovation (Copilot).

Client: SME, staffing services:

  • Security audit and hardening of cloud tenant, introduced Conditional Access and passwordless MFA for all users, supported BSI security audit according to DIN SPEC 2707.
  • Introduced platform SSO and Defender for macOS and iOS devices, expanded and monitored macOS devices with Intune, ensured compliance requirements.
  • Introduced and configured Code2 signatures. M365 backup with Veeam.

Client: SME, development, medical:

  • Introduced and set up compliance and security policies for Windows 11 devices including Autopilot and WUfB.
  • Security audit and hardening of cloud tenant, introduced Conditional Access and passwordless MFA for all users.
  • Expanded and monitored macOS devices with Intune, ensured compliance requirements.
Nov 2022 - Feb 2024
1 year 4 months

Senior Microsoft 365 Consultant

Businessoft Consulting GmbH

  • Goal: implement an ITSM service desk and a Zero Trust infrastructure at Businessoft Consulting GmbH.
  • Rollout of MS365 Zero Trust for clients.
  • Mobile Device Management with Autopilot on hybrid-joined basis including compliance policies and reporting for Windows 10 and 11 devices, integration of Intune PackMgr for automatic software management and packaging.
  • Installation, configuration, and backup assurance with Cohesity and Veeam.
  • Improved workspace structure and security for clients.
  • Trained apprentices and internal staff on MS365, compliance & security.
  • Project management with Jira, knowledge management and documentation with Confluence.
  • Stakeholder info distribution with Atlas.
  • Core tasks: project management & technical implementation.
  • Implemented a Microsoft 365 Zero Trust security structure and an ISMS in a pharmaceutical startup:
  • Zero Trust aims to strengthen network security through a mix of tech, processes, and policies.
  • Includes MFA up to passwordless auth, conditional access for users and devices, mobile device management with Autopilot based on Entra ID joined, device compliance via policies.
  • Automated upgrade of devices from Windows 10 to 11 via Intune, role and permission management, integrated Defender options (Cloud, Endpoint, Identity, Apps) and Azure Information Protection.
  • Currently using Atlassian Jira for PM and introduced Confluence for building an ISMS.
May 2020 - Aug 2022
2 years 4 months

Internal IT Consultant & IT Manager

enfas GmbH

  • Goal: ensure smooth operation of the IT system and manage IT infrastructure focusing on security, quality, service, and availability.
  • Core tasks: plan, implement, and oversee global IT infrastructure: DC/servers, networks, unified communication, workplace incl. Microsoft 365, MS Cloud, mobile device management, IT security, data protection, and backup (Veeam).
  • Execute strategic direction on new infrastructure technologies like hybrid cloud and drive necessary transformation initiatives.
  • Ensure IT security and implement suitable security measures.
  • Identify modern ICT opportunities for the company and drive innovation.
  • Support and monitor adoption of new technologies.
  • IT infrastructure: AD, security, network and patching (client/server), virtualization with VMware ESXi in clustered mode, user and device management.
  • MS365 & cloud: configured our company tenant, Entra ID (formerly Azure AD), Office 365 (Teams, SharePoint, OneDrive), Intune device management (Windows 10, iOS, Android Enterprise), Autopilot, Conditional Access and MFA with YubiKeys, compliance and security.
  • General: patch management of client devices, employee onboarding/offboarding, internal firewall maintenance and configuration, user support, backup assurance with Veeam.
  • TISAX certification: created and edited ISMS, security guidelines, and corresponding risk analyses.
  • Responsibility: consulting and supporting departments and IT communication of various innovations, and implementing efficiency measures.
Aug 2013 - May 2020
6 years 10 months

IT Consultant (IT Transformation & Management, Public Sector)

CGI Deutschland GmbH

  • Managed high-performance scanners with Kofax/VRS software connected to IDA (Fabasoft).
  • Supported specialized workstations (Cobra software and others).
Aug 2013 - May 2020
6 years 10 months

IT Consultant (Kofax 10.2.x Server/Client)

CGI Deutschland GmbH

  • Kofax 10.2.x server/client migration (replacing Kofax 9.2.x).
  • Client transformation to Windows 7 across various departments, about 250 clients during live operation.
  • Introduced remote control software and new whiteboard hardware including all phases.
  • Technical rollout and management of multifunction devices.
  • Project & rollout planning, technical planning and organization, execution of technical and organizational tasks, requirements and client management, ITIL process management, time management.
Aug 2013 - May 2020
6 years 10 months

System Engineer, Infrastructure Architect

CGI Deutschland GmbH

  • Project: DMS operations unit, public sector.
  • Upgraded Fabasoft eGov Suite 2016 and Windows Server 2016 and SQL 2016/17 in a Hyper-V and VMware cluster.
  • Supported end users in DMS, updated Fujitsu high-performance scanning software, lifted to a new architecture after hardware update.
  • Tech: Windows Server Core Services 2008R2/2012/2016, virtualization with Hyper-V and VMware, cloud portals: MS365, Azure & AWS, CA – ITCM (packaging and distribution software), Active Directory, GPO, user management, printer and rights management, Fabasoft eGov Suite 2013/2016, IT project coordination, IT transition and transformation, IT rollout (hardware, software, OS, MFD), requirements and client management.
Aug 2013 - May 2020
6 years 10 months
Remote

Test Manager, Technical Project Lead, IT Engineer

CGI Deutschland GmbH

  • CA – IT Client Manager (packaging software).
  • Testlink test management portal.
  • Mantis project portal.
  • Remote control software.
  • Mindmapping (FreeMind).
Feb 2011 - Aug 2013
2 years 7 months

Consultant, Trainer, Coordinator

Avanade Deutschland GmbH

  • Project: internal training for Avanade Germany.
  • User training for Office 365 and Windows Server 2008R2 Core Services.
  • Tech: Hyper-V 2008, Server 2008, Office 365, AD FS, AD, AD hardening, DHCP, DNS, GPO management.
  • General tech: Windows Server Core Services 2008R2/2012, VMware ESXi virtualization, Active Directory, GPO, user management, printer and rights management, IT project management, IT project coordination, IT transition & transformation management, IT rollout.
Feb 2011 - Aug 2013
2 years 7 months

IT Consultant, Documentation, Scripting

Avanade Deutschland GmbH

  • Project: mobile client desktop virtualization with XenDesktop for Allianz AG.
Feb 2011 - Aug 2013
2 years 7 months

IT Consultant, Tech & Support Coordinator, 2nd/3rd Level Support

Avanade Deutschland GmbH

  • Project: ABS virtualization for Allianz AG.
Feb 2011 - Aug 2013
2 years 7 months

IT Consultant, User Trainer, UAT Manager, 2nd/3rd & Early Live Support

Avanade Deutschland GmbH

  • Project: client transformation for Thomas Cook AG (4,000 clients, international project).
  • Tech: Active Directory, GPOs, Windows 7, SCCM 2007.
Oct 2008 - Jun 2010
1 year 9 months
Munich, Germany

Project Lead/Consultant

primion Technology AG

  • Project: setup of an access control system in a new building for Wacker Chemie AG.
  • Technical planning, implementation, and configuration of the access control system, user training.
  • Role: IT consultant for access and time recording.
Oct 2008 - Jun 2010
1 year 9 months
Adrian, United States

Project Lead/Consultant, Trainer

primion Technology AG

  • Project: user training and product rollout of ZKSWin for Wacker Chemie AG.
  • Role: IT consultant for access and time recording.
Jul 2008 - Sep 2008
3 months
Munich, Germany

Client Support & Server Administrator

arxes NCC AG

  • Managed services operation for client: Clarins.
  • Client support, server administration, and data backup.
Nov 2007 - May 2008
7 months

System Engineer, Coordinator, Trainer, Rollout Manager

Siemens AG

  • Project: integration and rollout management for Siemens AG (international, 30,000 clients).
  • Employed via staffing provider Hofmann.
  • Tech: Siemens‐modded XP, Server 2000, Active Directory, VPN security & certificates, MS Outlook & Exchange.
Mar 2007 - Sep 2007
7 months

1st/2nd Level Help Desk

Dresdner Cetelem Kreditbank

  • Temporary assignment via Adecco.
Mar 2007 - Sep 2007
7 months

Desktop Service Staff (C-level)

Kabeldeutschland AG

  • Temporary assignment via DIS AG.
Oct 2005 - Feb 2007
1 year 5 months
Hallbergmoos, Germany

IT Administrator & User Helpdesk

Merial GmbH

  • 1st/2nd/3rd level support for hardware, desktops, laptops, servers, and mobile contracts.
Aug 2003 - Oct 2005
2 years 3 months
Munich, Germany

Network & PC Assistant

Lufttechnik Rudolf GmbH

Aug 2001 - Aug 2003
2 years 1 month
Feldkirchen, Germany

Trainee IT Specialist in System Integration

brainworks computer technologie GmbH

  • Includes training: Linux-based firewall, MacOS X administration.
  • Final qualification: IT specialist in system integration, IHK Munich.
Languages
German
Advanced
English
Advanced
Education
Aug 2001 - Aug 2003

brainworks Computer Technologie GmbH

IT Specialist in System Integration · IT Specialist in System Integration · Feldkirchen, Germany

Oct 2000 - Jun 2000

Fachoberschule Reinhard & Drexel

University Entrance Diploma · Munich, Germany

Oct 1998 - Jun 1998

Hamilton High School

High School Diploma · United States

...and 1 more
Certifications & licenses

Amazon Web Services Training Day 2016

Amazon Web Services

AWS Certified Solutions Architect – Associate

Amazon Web Services

BEM Guide

First Aid and Fire Safety Helper

Advanced Training in Project Management

IHK

ITIL V3 Foundation

AXELOS

Microsoft Certified: Azure Fundamentals

Microsoft

Microsoft Certified: Power Platform Fundamentals

Microsoft

Microsoft Certified: Security, Compliance, and Identity Fundamentals

Microsoft

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions