Bruno is available for hire
Hire BrunoBruno Paul
Verified Expert in Engineering
IT Infrastructure Engineer and Developer
Dar es Salaam, Tanzania
Toptal member since June 28, 2023
Bio
Bruno is an experienced IT infrastructure engineer with 8+ years of experience designing, implementing, and managing intricate IT systems, networks, and cloud solutions. His "special sauce" lies in leveraging automation, process streamlining, and lean methodologies to drive efficient outcomes. Bruno has worked with renowned brands in the technology, government, and manufacturing sectors, ranging from startups to billion-dollar enterprises.
Portfolio
ThoughtWorks
Amazon Web Services (AWS), Google Workspace, Okta, System Integration, MDM...
SafeComs
Hyper-V, Microsoft 365, Azure, Firewalls, Virtual Desktop Infrastructure (VDI)...
SafeComs
Firewalls, Microsoft 365, Business Continuity & Disaster Recovery (BCDR)...
Experience
- Linux - 11 years
- System Administration - 11 years
- IT Networking - 11 years
- Windows Server - 11 years
- Microsoft 365 - 8 years
- Identity & Access Management (IAM) - 7 years
- SecOps - 6 years
- Amazon Web Services (AWS) - 5 years
Availability
Part-time
Preferred Environment
Linux, Amazon Web Services (AWS), Azure, Microsoft 365, Windows Server, Okta, VMware vSphere, SecOps, Windows PowerShell
The most amazing...
...project I've worked on is a large-scale infrastructure upgrade and migration from on-premise to cloud-based architecture using AWS and Okta.
Work Experience
TechOps Lead – IT Infrastructure & Operations
2020 - 2022
ThoughtWorks
- Implemented a centralized monitoring and alerting system with Zabbix on AWS, reducing the mean time to resolve (MTTR) by 50% and enhancing system stability.
- Led the deployment of a cloud-based physical access control solution integrated with Okta (as IdP) across regional offices, resulting in a 90% reduction in manual efforts by automating provisioning workflows, integrating SSO, and enhancing security.
- Configured and customized Google Workspace, tailoring settings to meet business needs and enhance collaboration efficiency.
- Managed the deployment and configuration of on-demand virtual desktop environments using Amazon WorkSpaces integrated with Okta MFA, achieving a 30% reduction in hardware costs and seamless UX.
- Optimized helpdesk (Zendesk) workflows by configuring macros, triggers, automation, and SLA policies, enhancing ticket resolution time by 40%, and ensuring SLA compliance.
- Oversaw budget forecasting and cost allocation of hardware spend. Achieved 20% cost savings without compromising service quality by optimizing IT budget, vendor relationships, contracts, and SLAs.
- Fostered the technical growth of junior team members and improved overall team productivity through effective mentoring and training.
Technologies: Amazon Web Services (AWS), Google Workspace, Okta, System Integration, MDM, Endpoint Security, MacOS, Zabbix, Nessus, Virtual Desktop Infrastructure (VDI), VoIP, ServiceNow, Automation, Firewalls, Identity & Access Management (IAM), Sumo Logic, IT Project Management, Network Security, System Administration, Asset Management, ITIL, Zendesk, Linux, SecOps, SAML, Antivirus Software, Vulnerability Management, Threat Analytics, Bash, User Acceptance Testing (UAT), VMware ESXi, Windows, Desktop Support, Network Engineering, Incident Response, Cloud, Single Sign-on (SSO), VMware vSphere, Amazon WorkSpaces, IT Service Management (ITSM)
Senior Network Systems Engineer
2017 - 2020
SafeComs
- Installed and managed customized IT infrastructure solutions involving networking, servers, VMware, storage, Microsoft Office 365, Windows, Linux, and workstation hardware and software.
- Implemented network segmentation, firewall policies, IDS (intrusion detection systems), and IPS (intrusion prevention systems), mitigating the risk of unauthorized access and network breaches.
- Configured and managed Microsoft Intune MDM and MAM to oversee a diverse fleet of 80+ devices, ensuring simplified device management, better user experience, and security compliance.
- Designed and maintained the company's RMM solution, providing real-time visibility into the internal and clients' network and endpoint health, proactively addressing potential issues and reducing the workload of the IT team by 30%.
- Addressed performance challenges in thin client offloading for demanding applications such as Dynamics NAV, Sophos, and Zoom by implementing QoS (quality of service), server-side resource upgrades, GPU acceleration, and app tuning.
- Deployed and managed multi-site disaster recovery solutions, including Acronis Backup and Synology, achieving an RTO (recovery time objective) of less than two hours for critical systems and minimizing downtime.
- Proactively contributed to the internal knowledge base and documentation, sharing best practices, troubleshooting guides, and technical insights, improving the team's overall efficiency and collaboration.
Technologies: Hyper-V, Microsoft 365, Azure, Firewalls, Virtual Desktop Infrastructure (VDI), Network Engineering, Windows Server, Linux, System Center Configuration Manager (SCCM), Microsoft Intune, Python, Automation, Endpoint Security, Identity & Access Management (IAM), ServiceNow, IT Project Management, Windows PowerShell, Bash, Network Security, System Administration, Asset Management, ITIL, Nessus, MacOS, Windows, MDM, LDAP, Databases, Amazon Web Services (AWS), SecOps, Antivirus Software, Vulnerability Management, Threat Analytics, Debian, Ubuntu, VMware vCenter, VMware vSphere, User Acceptance Testing (UAT), VMware ESXi, System Center Operations Management (SCOM), Microsoft Deployment Toolkit (MDT), Remote Desktop Services, Nagios, Desktop Support, Business Continuity & Disaster Recovery (BCDR), Incident Response, VoIP, System Integration, Cloud, Acronis, Single Sign-on (SSO), Zabbix, IT Service Management (ITSM), Azure Active Directory, Windows 10
Infrastructure Support Engineer Intern
2017 - 2017
SafeComs
- Installed, configured, and supported end user workstations and laptops running Windows, Mac, and Linux systems.
- Resolved over 100+ user-reported service, system, and network-related incidents, escalating when appropriate.
- Tracked and updated the inventory for IT hardware and software assets.
- Documented network configurations, procedures, and troubleshooting steps, contributing to creating and maintaining an organized knowledge base for future reference.
Technologies: Firewalls, Microsoft 365, Business Continuity & Disaster Recovery (BCDR), Endpoint Security, Windows Server, Linux, Nagios, Windows PowerShell, Network Security, System Administration, Bash, Asset Management, ITIL, Windows, MDM, Antivirus Software, Automation, Desktop Support, Hyper-V, IT Networking, VoIP, Virtual Desktop Infrastructure (VDI), MacOS, Cloud, Acronis, VMware vSphere, VMware vCenter, VMware ESXi, Windows 10
Technical Support Engineer
2016 - 2017
RFS Financial Services
- Provided L1 and L2 technical support to clients with 300+ employees, resolving over 30 weekly helpdesk tickets with an average resolution time of 15 minutes.
- Installed, configured, and upgraded routers, switches, patch panels, VoIP, servers, storage, printers, workstations, peripherals, services, settings, and directories.
- Performed daily system monitoring verifying the integrity and availability of all hardware and IT systems.
- Managed new user onboarding training and off-boarding, including account creation and deletion, password resets, organizational unit (OU) move, software provisioning, and security access levels.
- Created and maintained a self-service troubleshooting reference manual allowing users quick solutions to common issues, which resulted in a 40% reduction in service desk requests.
Technologies: Desktop Support, VoIP, Linux, Endpoint Security, Identity & Access Management (IAM), Windows Server, Microsoft 365, Zendesk, Network Security, System Administration, Asset Management, ITIL, IT Project Management, MacOS, Windows, MDM, Firewalls, Antivirus Software, Vulnerability Management, Automation, Microsoft Intune, Microsoft Deployment Toolkit (MDT), System Center Configuration Manager (SCCM), Business Continuity & Disaster Recovery (BCDR), IT Networking, Google Workspace, VMware ESXi, VMware vSphere, Windows 10
System Administrator
2012 - 2013
PNP
- Provided onsite support to 200+ users, resolving various technical problems ranging from hardware, software, network printers, and connectivity, resulting in a 95% resolution rate.
- Created and maintained user accounts, devices, groups, and OUs in Active Directory.
- Tested applications and hardware before being put into production.
- Monitored and maintained Windows and Linux servers.
- Conducted regular system backups and disaster recovery tests.
Technologies: System Administration, IT Networking, Windows Server, Windows PowerShell, Business Continuity & Disaster Recovery (BCDR), ITIL, Windows 10
Experience
HA Virtual Desktop Infrastructure (VDI) Implementation
I led a project to revamp the endpoint management infrastructure for a large manufacturing company with thin and thick SOE windows endpoints.
The project involved constructing and deploying a highly available Virtual Desktop Infrastructure (VDI) solution using Microsoft Remote Desktop Services (RDS) on Windows Server 2019. This solution featured a load-balanced RDS farm with redundant connection brokers and session hosts, ensuring high availability and secure remote access.
To enhance security, I integrated smart card authentication via Group Policy Objects (GPO) in Active Directory (AD), limiting access to critical resources to authorized users only. I also improved efficiency by utilizing System Center Configuration Manager (SCCM) and Microsoft Deployment Toolkit (MDT) for software deployment, imaging, patch management, and inventory tracking. This automation led to a 40% reduction in deployment time.
To ensure optimal performance and firmware updates, I implemented the Dell Wyse Management Suite for managing Dell thin clients. Further, System Center Operations Manager (SCOM) enabled proactive monitoring and alerting, allowing the team to identify and resolve potential issues before they could impact users.
The project involved constructing and deploying a highly available Virtual Desktop Infrastructure (VDI) solution using Microsoft Remote Desktop Services (RDS) on Windows Server 2019. This solution featured a load-balanced RDS farm with redundant connection brokers and session hosts, ensuring high availability and secure remote access.
To enhance security, I integrated smart card authentication via Group Policy Objects (GPO) in Active Directory (AD), limiting access to critical resources to authorized users only. I also improved efficiency by utilizing System Center Configuration Manager (SCCM) and Microsoft Deployment Toolkit (MDT) for software deployment, imaging, patch management, and inventory tracking. This automation led to a 40% reduction in deployment time.
To ensure optimal performance and firmware updates, I implemented the Dell Wyse Management Suite for managing Dell thin clients. Further, System Center Operations Manager (SCOM) enabled proactive monitoring and alerting, allowing the team to identify and resolve potential issues before they could impact users.
Server Consolidation and Virtualization
I consolidated and virtualized six physical servers into two highly efficient and scalable physical hosts using VMware vSphere for a medium-sized company.
The main objectives were to enhance performance, reduce infrastructure costs, and minimize the hardware footprint. I deployed ESXi hypervisors and used the vCenter server for centralized control and monitoring. I also utilized VMware DRS and vMotion to efficiently optimize resource utilization and achieve workload balancing across the two new hosts. Finally, to ensure robust disaster recovery capabilities, I implemented VMware high availability (HA) and vSphere Replication, enabling swift recovery in case of hardware or software failures.
The main objectives were to enhance performance, reduce infrastructure costs, and minimize the hardware footprint. I deployed ESXi hypervisors and used the vCenter server for centralized control and monitoring. I also utilized VMware DRS and vMotion to efficiently optimize resource utilization and achieve workload balancing across the two new hosts. Finally, to ensure robust disaster recovery capabilities, I implemented VMware high availability (HA) and vSphere Replication, enabling swift recovery in case of hardware or software failures.
Amazon WorkSpaces Deployment with Okta MFA
I worked on a project that involved deploying and configuring virtual desktop environments using Amazon WorkSpaces integrated Okta MFA to allow end users to sign into Amazon WorkSpaces using factors registered with their Okta profile. The objective was to achieve cost savings and improve flexibility by moving towards a virtualized desktop infrastructure.
I led the deployment process, including hardware and specs evaluation, the configuration of Amazon WorkSpaces, Okta radius server agent, AWS inbound rules, pilot testing, and performance optimization. By implementing virtual desktops, we achieved a 30% reduction in hardware costs while maintaining a seamless user experience.
I led the deployment process, including hardware and specs evaluation, the configuration of Amazon WorkSpaces, Okta radius server agent, AWS inbound rules, pilot testing, and performance optimization. By implementing virtual desktops, we achieved a 30% reduction in hardware costs while maintaining a seamless user experience.
Education
2013 - 2017
Bachelor's Degree in Computer Science
Shobhit University - India
2012 - 2013
Higher Diploma in Business Information Technology
NCC Education - United Kingdom
Certifications
FEBRUARY 2023 - FEBRUARY 2025
Okta Certified Professional
Okta
APRIL 2018 - OCTOBER 2019
Acronis Backup Cloud
Acronis
OCTOBER 2016 - OCTOBER 2019
Cisco Certified Network Associate Routing and Switching
Cisco
Skills
Tools
Google Workspace, Zabbix, Hyper-V, System Center Configuration Manager (SCCM), Microsoft Intune, Nagios, Microsoft Deployment Toolkit (MDT), VMware vSphere, Amazon WorkSpaces, Nessus, Sumo Logic
Platforms
Windows Server, Linux, Amazon Web Services (AWS), Azure, MacOS, Zendesk, Windows, Debian, Ubuntu
Paradigms
ITIL, Automation, User Acceptance Testing (UAT), Object-oriented Programming (OOP)
Storage
Databases, Azure Active Directory
Languages
Python, C, C++, Java, Bash, SAML, HTML, CSS
Frameworks
Windows PowerShell
Other
Microsoft 365, Endpoint Security, IT Project Management, System Administration, Desktop Support, Antivirus Software, IT Networking, Windows 10, Firewalls, Okta, Cloud Computing, Identity & Access Management (IAM), Single Sign-on (SSO), LDAP, Network Security, Acronis, Cloud, System Integration, MDM, Virtual Desktop Infrastructure (VDI), VoIP, ServiceNow, Business Continuity & Disaster Recovery (BCDR), Network Engineering, Asset Management, Remote Desktop Services, System Center Operations Management (SCOM), VMware ESXi, VMware vCenter, SecOps, Threat Analytics, Incident Response, eCommerce, IT Service Management (ITSM), Microprocessors, Neural Networks, Artificial Intelligence (AI), Software Engineering, Web Development, Vulnerability Management
Collaboration That Works
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
1
Share your needs
Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2
Choose your talent
Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3
Start your risk-free talent trial
Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.
Top talent is in high demand.
Start hiring