Harshavardan Pallamreddy
Dallas,TX
Summary
IT Infrastructure and Cloud Specialist with 10+ years of experience in Active Directory, Azure Entra ID, Azure cloud solutions, and enterprise identity management. Seeking a challenging role where I can leverage my expertise in AD migrations, Azure Entra Connect, ADFS, and secure Azure tenant deployments to design and implement scalable, compliant, and secure infrastructure solutions aligned with business goals and Microsoft best practices.
Seasoned IT Infrastructure Specialist with good experience in Active Directory, Azure architecture, and hybrid identity management. Proven expertise in planning and deploying secure, scalable Azure tenants aligned with Microsoft best practices. Specialized in Azure Entra ID hardening through implementation of Conditional Access, identity protection policies, blocking legacy authentication, and enforcing Multi-Factor Authentication across all user roles. Good at configuring role-based access control (RBAC), securing privileged identities, and integrating on-prem Active Directory with Azure using Entra Connect. Skilled in using Microsoft Defender for Cloud, Secure Score, and Purview to continuously assess and improve tenant security posture. Demonstrated success in managing AD migrations, deploying ADFS for SSO, and automating identity lifecycle management with PowerShell. Strong focus on compliance, audit readiness, and governance through Azure Policy, Blueprints, and structured resource hierarchies. Committed to delivering resilient and compliant cloud infrastructure solutions tailored to enterprise needs.
Overview
14
14
years of professional experience
1
1
Certification
Work History
Sr . Infrastructure Engineer
Immense Brains LLc
03.2025 - Current
- Successfully created and configured a new Microsoft Azure tenant from scratch to establish a secure, scalable cloud foundation for enterprise adoption.
- Established the Azure Active Directory as the identity backbone, configured custom domain names, and verified DNS for email and SSO readiness.
- Enabled Multi-Factor Authentication for all users using Conditional Access policies to meet baseline security requirements and reduce identity risks.
- Created initial administrative roles and enforced RBAC following the principle of least privilege to segment duties and reduce risk exposure.
- Deployed Azure Entra ID Connect on-premises to synchronize Active Directory with Azure AD, enabling hybrid identity with password hash sync and SSO.
- Configured Microsoft Defender for Cloud and enabled security recommendations across Azure services to ensure ongoing compliance with Microsoft Secure Score.
- Audited and optimized 3-node Azure Local cluster setups to enhance performance, resilience, and maintainability in connectivity-constrained environments.
- Developed detailed technical documentation and deployment playbooks for global rollout of Azure Local clusters, ensuring repeatability and operational efficiency.
- Led or supported global deployments of hybrid Azure infrastructure across multiple sites, adhering to enterprise standards and project timelines.
- Automated cluster installation, configuration, and lifecycle updates using infrastructure-as-code practices to streamline provisioning and reduce manual intervention.
- Created management groups, subscriptions, and resource group based on business units to enforce governance, policy inheritance, and cost segmentation.
- Implemented Azure Policy and Blueprints for resource tagging, location restrictions, and compliance with internal governance standards.
- Enabled Identity Protection and Conditional Access to detect risky sign-ins, enforce compliant device usage, and block legacy authentication protocols.
- Set up Microsoft Purview compliance portal, including Data Loss Prevention (DLP) and audit logging for data protection and regulatory readiness.
- Integrated Azure Monitor, Log Analytics, and Activity Logs for operational visibility, alerting, and diagnostics across the newly created tenant.
- Performed post-deployment security assessment and validation using Microsoft Secure Score and Identity Secure Score, achieving over 90% compliance.
Sr . Infrastructure Engineer
Cognizant Technologies
11.2021 - 02.2025
- Company Overview: CoreLogic, Inc. is an Irvine, CA based leading information services provider of financial, property, and consumer information, analytics, and business intelligence. The company analyzes information assets and data to provide clients with analytics and customized data services. The company also develops proprietary research, and tracks current and historical trends in a number of categories, including consumer credit, capital markets, real estate, fraud, regulatory compliance, natural hazards, and disaster projections. The company reported a full 2020 revenue of $1.6 billion. As of 2021, CoreLogic is a Fortune 1000 company.
- Performed the hardening of Microsoft Entra ID environments by aligning configurations with Microsoft security best practices and Zero Trust architecture principles.
- Implemented and managed robust Multi-Factor Authentication (MFA) policies, including enforcement through Conditional Access rules to mitigate unauthorized access threats.
- Designed and maintained Conditional Access Policies based on user risk, device compliance, and location to ensure adaptive and secure access controls across enterprise workloads.
- Configured and governed Privileged Access Management (PAM) features such as Privileged Identity Management (PIM) to limit standing access and enforce just-in-time elevation for critical administrative roles.
- Performed comprehensive security assessments of Entra ID environments, identifying configurations, excessive permissions, and vulnerabilities using tools like Microsoft Secure Score, Defender for Identity, and Entra Permissions Management.
- Collaborated with security and compliance teams to enforce identity governance policies, including access reviews, role-based access control (RBAC), and entitlement management.
- Automated the remediation of common security configuration using Power Shell scripts and Microsoft Graph API, enhancing overall identity hygiene and consistency.
- Ensured compliance with industry frameworks (NIST, CIS Controls, ISO 27001) through gap analysis and targeted configuration adjustments in the Entra ID platform.
- Delivered detailed reports and security posture summaries to stakeholders, highlighting current risks, remediation progress, and actionable recommendations.
- Performed troubleshooting and upgrade tasks to keep Entra Connect up-to-date and secure.
- Integrated Microsoft Defender and Wiz.io into Azure Local clusters to ensure ongoing compliance with internal security frameworks such as CIS and NIST.
- Managed and supported both containerized workloads (Kubernetes/Docker) and legacy VM infrastructures within hybrid environments using Azure Arc.
- Collaborated with enterprise security and networking teams to securely integrate on-prem Azure Local clusters with centralized Azure tenants and Entra ID.
- Planned and deployed solutions with considerations for data locality and minimal internet access, enabling reliable hybrid cloud capabilities in remote or restricted environments.
- CoreLogic, Inc. is an Irvine, CA based leading information services provider of financial, property, and consumer information, analytics, and business intelligence. The company analyzes information assets and data to provide clients with analytics and customized data services. The company also develops proprietary research, and tracks current and historical trends in a number of categories, including consumer credit, capital markets, real estate, fraud, regulatory compliance, natural hazards, and disaster projections. The company reported a full 2020 revenue of $1.6 billion. As of 2021, CoreLogic is a Fortune 1000 company.
Senior Systems Engineer
CGI
08.2016 - 11.2021
- Company Overview: Medisch Spectrum Twente (MST) is one of the largest top clinical teaching hospitals. Approximately 3500 employees are committed to promoting health in the Twente region in close cooperation with its regional care partners. MST is one of the eleven trauma centers in the Netherlands and organizes the ROAZ (Regional Consultation Acute Care Chain) in the Euregio. We are extra proud of the special topcare provided by our centers. In some cases, patients from all over the Netherlands are referred to us.
- Created and managed users, groups, and roles in Azure AD, including assigning licenses, configuring conditional access policies, and MFA enforcement.
- Configured custom sync rules in Azure Entra Connect to filter specific OUs, attribute mappings, and prevent accidental deletions during sync cycles.
- Enabled Single Sign-On (SSO) for cloud applications by deploying ADFS farm with WAP, managing certificates, relying party trusts, and claims rules.
- Integrated ADFS with on-prem AD for federated authentication of Office 365 and custom SaaS applications, implementing high availability and Web Application Proxy.
- Deployed Azure Entra Connect in staging mode to validate sync rules and minimize impact during cutover, followed by soft match and hard match identity alignment.
- Configured Azure Entra Connect for directory synchronization and password hash sync between on-prem AD and Azure AD, ensuring secure and seamless hybrid identity.
- Developed pre- and post-migration checklists, including DNS replication checks, replication latency, login testing, and attribute comparison using PowerShell.
- Generated detailed migration status reports and user readiness audits, using PowerShell and Quest cmdlets for tracking migration phases and remediation steps.
- Executed end-to-end domain migration lab simulations prior to production rollout, including GPO export/import, SID history validation, DNS and DHCP reconfiguration.
- Performed domain consolidation project post-acquisition, migrating 5000+ users and groups across multiple forests using a mix of ADMT and PowerShell automation.
- Performed Active Directory domain migration from legacy 2008 R2 forest to a new 2019 forest using ADMT, including user SID history, password migration, and service account testing.
- Executed cross-forest migration projects using Quest Migration Manager, performing staged mailbox and user migrations with coexistence strategies and rollback plans.
- Medisch Spectrum Twente (MST) is one of the largest top clinical teaching hospitals. Approximately 3500 employees are committed to promoting health in the Twente region in close cooperation with its regional care partners. MST is one of the eleven trauma centers in the Netherlands and organizes the ROAZ (Regional Consultation Acute Care Chain) in the Euregio. We are extra proud of the special topcare provided by our centers. In some cases, patients from all over the Netherlands are referred to us.
Technical Specialist
HCL Technologies, India.
05.2011 - 08.2016
- Company Overview: Johnson & Johnson (J&J) is an American multinational pharmaceutical, biotechnology, and medical technologies corporation headquartered in New Brunswick, New Jersey, and publicly traded on the New York Stock Exchange. Its common stock is a component of the Dow Jones Industrial Average, and the company is ranked No. 40 on the 2023 Fortune 500 list of the largest United States corporations. Johnson & Johnson has a global workforce of approximately 130,000 employees.
- Managed and maintained multi-site Active Directory infrastructure, including FSMO roles, OU structure, replication health, and site configurations to ensure high availability and scalability.
- Implemented GPO-based hardening policies for workstations and servers aligned with CIS benchmarks and industry compliance frameworks.
- Configured and administered DNS zones, forwarders, and scavenging settings to optimize name resolution and reduce stale records.
- Deployed and supported enterprise Print Service using Group Policy Printer Deployment and Print Management Console across multiple departments.
- Designed and managed DFS Namespaces and Replication, optimizing branch office file access and ensuring data availability with minimal latency.
- Installed and managed Microsoft Certificate Authority for internal PKI and website binding.
- Led domain controller upgrades and AD migrations from Windows Server 2008/2012 to 2016/2019, including schema extensions, domain prep/forest prep, and replication validation.
- Automated AD user lifecycle management (provisioning, group assignment, deprovisioning) using PowerShell and system-integrated scripts.
- Enabled advanced auditing and centralized event log forwarding to SIEM for tracking privileged access, directory changes, and account lockout patterns.
- Configured DHCP failover, ensuring IP address continuity across redundant scopes and remote branch offices.
- Developed compliance reporting scripts in PowerShell to export AD, GPO, and Certificate Authority data for SOX, PCI, and internal audits.
- Resolved domain-wide replication, trust, and authentication issues, using tools like DCDIAG, REPADMIN, Netlogon logs, and Event Viewer.
- Johnson & Johnson (J&J) is an American multinational pharmaceutical, biotechnology, and medical technologies corporation headquartered in New Brunswick, New Jersey, and publicly traded on the New York Stock Exchange. Its common stock is a component of the Dow Jones Industrial Average, and the company is ranked No. 40 on the 2023 Fortune 500 list of the largest United States corporations. Johnson & Johnson has a global workforce of approximately 130,000 employees.
Education
Bsc - Electronics and Computers
S V University
Skills
- Windows Server 2008-2022
- Active Directory
- DNS
- DHCP
- DFS
- ADFS
- RDS
- Security Policies
- Patch Management
- Vulnerability Scanning
- Nessus
- Tenable
- Windows Server Deployment
- Administration
- SCOM
- SCCM
- VMware ESXi
- VCenter
- Hyper-V
- Nutanix
- Cisco UCS
- Cloud Computing
- Azure
- Azure Entra ID
- M365
- Intune
- Azure Arc
- ITSM Ticketing Tools
- ServiceNow
- BMC Remedy
- Networking
- Firewall
- LAN
- Disaster Recovery support
- Storage
- SAN/NAS
- RAID Configurations
Certification
- Azure Administrator Associate
- Microsoft Certified Solutions Expert
- AWS Certified Solutions Architect
Timeline
Sr . Infrastructure Engineer
Immense Brains LLc
03.2025 - Current
Sr . Infrastructure Engineer
Cognizant Technologies
11.2021 - 02.2025
Senior Systems Engineer
CGI
08.2016 - 11.2021
Technical Specialist
HCL Technologies, India.
05.2011 - 08.2016
Bsc - Electronics and Computers
S V University
Similar Profiles
CORTNIE BOYDCORTNIE BOYD
IT Customer Support at Immense Impact LLCIT Customer Support at Immense Impact LLC
Lee HengLee Heng
Professional Civil Engineer at IMMENSE TEAM CONSTRUCTION & BUILDING CO., LTD.Professional Civil Engineer at IMMENSE TEAM CONSTRUCTION & BUILDING CO., LTD.
Vikas SharmaVikas Sharma
Mental Health Support Worker at Immense CareMental Health Support Worker at Immense Care
Charmagne N. GelseyCharmagne N. Gelsey
Payroll Conversion Consultant at EmpowerPayroll Conversion Consultant at Empower
Hope RodriguezHope Rodriguez
Claims Adjuster at GEICOClaims Adjuster at GEICO