Available for Freelance & Consultancy

Daniel Gareth
Davies

Senior Systems Administrator & Azure Solutions Architect

Subject matter expert in scalable cloud architecture, identity governance & enterprise automation • 10 years experience • Los Angeles, CA

LinkedIn GitHub Microsoft Learn
UK From Hereford, UK USA Los Angeles, CA Azure Azure Instructor • SME
Daniel Davies

Who I Am

About

Currently at Reveleer & teaching at CIAT

IT Senior Systems Administrator, adjunct instructor of Microsoft Azure, and Microsoft Certified Azure Solutions Architect Expert. Subject matter expert in building scalable cloud architecture and automation — driven by a constant pursuit of self-improvement and technical excellence across 10 years of enterprise IT.

Currently at Reveleer (Glendale, CA), a healthcare AI company, where I architect and lead enterprise-wide cloud and identity solutions: migrating 800+ Windows endpoints to cloud-native Entra join with zero re-imaging, onboarding 130 users in 3 seconds via automated provisioning, and delivering $180,000 in annual cost savings through license optimisation and platform right-sizing. I also supported HITRUST R2 and E1 audits with zero findings.

Alongside my primary role, I serve as an Adjunct Instructor of Microsoft Azure at the California Institute of Applied Technology (CIAT), delivering hands-on training in Azure compute, networking, identity, and security aligned with real-world AZ-900, AZ-104, and AZ-305 objectives.

Core focus areas: cloud architecture & IaC, Zero Trust identity governance, enterprise automation & API integration, HITRUST/HIPAA compliance, and multi-cloud interoperability across Azure, AWS, and GCP.

Get in Touch View Experience

Career History

Experience

Senior Systems Administrator

Reveleer — Glendale, CA

June 2025 – Present
  • Architected enterprise-wide cloud and identity solutions, aligning Azure and Entra ID architectures with zero-trust security models, NIST-aligned controls, and multi-year technology roadmaps.
  • Engineered identity lifecycle automation reducing provisioning from ~25 min to 3 seconds per batch (130 users), eliminating 5,000+ stale objects and reducing identity attack surface by >80%.
  • Led migration of 800+ Windows endpoints from hybrid AD DS to cloud-native Entra join with near-zero downtime and no re-imaging, saving 1,000+ hours of productivity.
  • Integrated 130+ SaaS applications with SAML 2.0, OAuth 2.0, and OIDC, enforcing RBAC, Conditional Access, MFA, and compliance-driven access policies via Entra ID.
  • Assessed and optimised AWS architectures, decommissioning 130 Lambdas and redesigning VPC topology — contributing to $1.3M total in cloud cost savings.
  • Delivered $180,000 in annual savings in 2025 through Microsoft MCA to CSP migration, license optimisation, SKU rationalisation, and platform right-sizing.
  • Supported HITRUST R2 and E1 audits with zero findings, supplying architecture diagrams, controls traceability, and data flow diagrams via Thoropass.
  • Led weekly architecture design review sessions as primary technical authority across IT Operations, SecOps, DevOps, and Software Engineering.
  • Administered enterprise security platforms: Cortex XDR (EDR), Microsoft Sentinel (SIEM/SOAR), CyberArk (PAM), Check Point / Zscaler (SASE), and Cisco Meraki / Palo Alto NGFW.

Adjunct Instructor — Microsoft Azure

California Institute of Applied Technology (CIAT) — San Diego, CA

Jan 2025 – Present
  • Deliver comprehensive lectures on Azure fundamentals, administration, and architecture — aligned with AZ-900, AZ-104, AZ-500, and AZ-305 certification objectives.
  • Provide hands-on lab training covering Azure compute, networking, identity, automation, and security, drawing directly on real-world enterprise experience.
  • Mentor students on cloud career paths, exam preparation strategies, and professional development in IT and cloud engineering roles.

Senior Systems Administrator

Mission Produce — Oxnard, CA (NASDAQ-listed)

Mar 2023 – Jun 2025
  • Azure SME across four Azure subscriptions supporting ~3,500 users and ~4,000 devices globally; architected IaaS, PaaS, and identity solutions including vNETs, application gateways, automation, and governance.
  • Supported 200+ Windows and Linux VMs across on-premises and Azure, maintaining security, reliability, and cost efficiency for a NASDAQ-listed global organisation.
  • Implemented phishing-resistant authentication (PIV/FIDO2), Conditional Access, PIM, and SPF/DKIM/DMARC mail flow hardening with Proofpoint email security.
  • Designed DR and business continuity plans for on-premises infrastructure and Azure within budget constraints; integrated SIEM/SOAR and cloud-based backup solutions.

Systems Engineer / Network Engineer

MandM Direct Ltd — Leominster, United Kingdom

Jun 2021 – Mar 2023
  • Designed, maintained, and upgraded enterprise network and security infrastructure including Juniper SRX firewalls, Dell Force10 switches, and Cisco Meraki — supporting VPN routing, VLAN segmentation, and HA networking.
  • Administered VMware vSphere and GCP environments supporting virtualized workloads and identity services.
  • Implemented two-tier PKI architecture replacing a single-tier root CA, and enabled PIV authentication using YubiKeys.
  • Architected Proofpoint Essentials / TAP / TRAP deployment, reducing inbound spam and malicious email by ~70%.

Junior Systems Administrator

MandM Direct Ltd — Leominster, United Kingdom

Jan 2021 – Jun 2021
  • Supported enterprise systems administration across Windows Server and Red Hat Enterprise Linux, assisting with virtualisation, backups, and endpoint management.
  • Assisted in SSO modernisation migrating to Okta, and responded to endpoint security incidents using CrowdStrike Falcon.

IT Helpdesk Analyst / Junior Systems Administrator

California Lutheran University — Thousand Oaks, CA

Sep 2017 – Sep 2019
  • Provided frontline IT support across Office 365, Azure AD, and VoIP systems, resolving user and device issues via Zendesk.
  • Supported campus network infrastructure including Cisco Meraki, Catalyst, and Nexus switches, assisting with configuration updates and hardware replacements.

What I've Accomplished

Key Achievements

$1.3M Cloud Cost Savings

Assessed and optimised AWS application and network architectures, decommissioning 130 Lambdas and serverless workloads, and redesigning VPC topology in alignment with the AWS/Azure Well-Architected Framework — contributing to $1.3M total in cloud cost reduction.

Identity Provisioning at Scale

Engineered enterprise identity lifecycle governance that reduced user provisioning time from ~25 minutes to 3 seconds per batch (130 users), eliminated 5,000+ stale objects, and reduced identity attack surface and compliance risk by over 80%.

800+ Endpoints Migrated

Led migration of 800+ Windows endpoints from hybrid identity (AD DS + Entra Connect) to cloud-native Entra join with near-zero downtime and no device re-imaging — saving 1,000+ hours of productivity across the organisation.

HITRUST Audit: Zero Findings

Provided architectural leadership during HITRUST R2 and HITRUST E1 compliance assessments, supplying architecture diagrams, controls traceability, data flow diagrams, and technical evidence — achieving zero findings across both audits via Thoropass.

130+ SaaS Integrations

Architected and standardised authentication and authorisation frameworks for 130+ enterprise SaaS applications using SAML 2.0, OAuth 2.0, and OIDC — enforcing RBAC, Conditional Access, MFA, and compliance-driven access policies at scale.

$180K Annual Savings in 2025

Owned cloud financial governance at Reveleer, leading Microsoft MCA to CSP migration and implementing license optimisation, SKU rationalisation, service consolidation, and platform right-sizing — delivering $180,000 in annual cost savings in 2025 alone.

Technical Proficiency

My Skills

Constantly advancing across cloud architecture, automation, and security. Below is a summary of my core technical skill areas, developed across 10 years of enterprise IT and cloud roles:

PowerShell / Bash / Azure CLI

Expert-level scripting across PowerShell 5.1+, Bash, zsh, and Azure CLI. Designs and maintains event-driven, webhook-integrated automation pipelines for identity lifecycle management, infrastructure provisioning, and operational workflows at enterprise scale.

Azure Cloud Architecture

End-to-end design and operation of Azure IaaS, PaaS, and SaaS solutions: hub-and-spoke vNETs, private endpoints, Azure Firewall, NSGs, Log Analytics Workspaces, Automation Accounts, Azure Virtual Desktop, and multi-region highly available deployments.

Identity & Entra ID

Comprehensive Entra ID governance: RBAC, Conditional Access, PIM, MFA, SAML 2.0, OAuth 2.0, OIDC, and full identity lifecycle management. Led migration of 800+ endpoints to cloud-native Entra join with zero re-imaging and near-zero downtime.

Intune / Autopilot / MDM

Full-lifecycle enterprise MDM: Intune policy authoring, Windows Autopilot zero-touch provisioning, Platform SSO, configuration profiles, compliance policies, and phased deployment rings across macOS and Windows fleets at global scale.

Microsoft Graph & REST APIs

Production-grade integration with Microsoft Graph SDK and Azure REST APIs — authoring idempotent provisioning runbooks, ITSM webhook handlers, and managed-identity–authenticated workflows that eliminate manual intervention across the identity and application lifecycle.

Microsoft 365 & Security

Global Administrator across Exchange Online, Teams, SharePoint, and Defender for M365. Operates Microsoft Sentinel as primary SIEM/SOAR platform; implements mail-flow hardening (SPF/DKIM/DMARC), Proofpoint email security, and phishing-resistant authentication.

Windows Server & Active Directory

Deep expertise across Windows Server 2012–2022 and Server Core, ADDS/ADFS/ADCS, GPO design, multi-domain forests, and PKI modernisation — including full legacy AD DS sunset and migration to cloud-native identity.

IaC & DevOps Tooling

Infrastructure-as-Code using Terraform, Ansible, ARM templates, and Bicep. Git/GitHub-based version control and configuration management underpinning repeatable, auditable deployments aligned with DevSecOps and FinOps principles.

Multi-Cloud (AWS / GCP)

Cross-platform cloud operations spanning AWS and GCP: VPC topology design, Lambda decommissioning, site-to-site IPSec VPNs, private endpoints, and secure multi-cloud routing. Contributed to $1.3M in total AWS cloud cost reduction.

VMware / Virtualisation

Administration of VMware ESXi and vSphere environments supporting production virtualised workloads, identity services, and infrastructure operations. Hyper-V experience in Windows Server environments.

Python / JavaScript / Web

Develops automation tooling, internal operational dashboards, and lightweight web applications in Python, JavaScript, and HTML5/CSS. Applies scripting proficiency to bridge infrastructure operations with programmatic interfaces.

Linux (RHEL / Ubuntu)

Administration of Red Hat Enterprise Linux and Ubuntu Server in enterprise environments — supporting virtualised workloads, infrastructure services, and shell-based automation alongside Windows-centric ecosystems.

Verified Credentials

Certifications

CompTIA

CompTIA A+

✓ Pass 2020
CompTIA

CompTIA Network+

✓ Pass 2020
Cisco

Cisco CCNA

✓ Pass 2022
Fundamentals

AZ-900 — Azure Fundamentals

✓ Pass 2023
View Credential
Fundamentals

SC-900 — Security, Compliance & Identity Fundamentals

✓ Pass 2025
View Credential
Associate

AZ-104 — Azure Administrator Associate

✓ Pass 2024
View Credential
Expert

AZ-305 — Azure Solutions Architect Expert

✓ Pass 2024
View Credential
In Progress

AZ-500 — Azure Security Engineer Associate

Studying 2026

Currently preparing for this exam, building on hands-on experience with Microsoft Sentinel, Defender for Cloud, Conditional Access, PIM, and HITRUST compliance work.

Tools & Platforms

Software & Technology

Microsoft Entra ID CyberArk PAM Okta Microsoft Intune Windows Autopilot NinjaOne RMM Cortex XDR Microsoft Sentinel CrowdStrike Falcon Check Point Harmony SASE Zscaler ZDX / ZPA / ZIA Mimecast Proofpoint TAP / TRAP Rapid7 SIEM Cisco Meraki Palo Alto NGFW Juniper SRX Solarwinds NCM / SAM / IPAM Torii (SaaS Governance) FreshService ITSM ServiceNow Jira / Confluence / Atlassian Azure Virtual Desktop Windows 365 Cloud PC Twilio Flex GoTo Connect Thoropass (HITRUST) Sophos Central ManageEngine Endpoint Central Quest KACE UEM AlertLogic

Available for Hire

Freelance Work

Front-end Development

Front-end

HTML5 / CSS3 and JavaScript development. Custom IT dashboards, internal tooling, and responsive web interfaces built with modern standards.

Scripting & Automation

Automation & Scripting

Expert PowerShell and Bash scripting for enterprise automation. Microsoft Graph API integration, Azure REST API calls, and bespoke scripts supporting thousands of users.

IT Consultancy

IT Consultancy

Strategic roadmap consulting for Azure migration, identity management, security compliance, and IT operations. Helping businesses modernise their infrastructure with confidence.

0

Years Experience

0

Endpoints Migrated to Cloud-Native

0

SaaS Apps Integrated

In the Community

Spotlight & Connect

Faculty Spotlight — CIAT
Daniel Davies Faculty Spotlight — CIAT

The California Institute of Applied Technology spotlights my work as an Adjunct Instructor of Microsoft Azure, bridging real-world enterprise experience with hands-on cloud education. Watch on YouTube →

LinkedIn

Follow me on LinkedIn for regular posts on Azure architecture, identity governance, enterprise automation, and cloud engineering insights drawn from day-to-day work in production environments.

View Full Profile & Posts Read My Blog

Let's Talk

Contact