Richard Schmidt
El Paso,USA
Summary
Enterprise-scale Infrastructure and Application Architect with extensive hands-on experience in designing, modernizing, and operating global IT platforms across on-premises, hybrid, and cloud environments. Recognized for leadership in architecture design, technical execution, and cost-optimized delivery of large-scale IT initiatives supporting mission-critical business and customer-facing systems. Expertise includes application modernization, data center and cloud architecture, identity platforms, Kubernetes, virtualization, and secure infrastructure design. Proven track record of driving complex migrations end-to-end, translating business objectives into scalable technical architectures while ensuring operational excellence through robust governance, process design, and effective root-cause resolution.
Overview
19
19
years of professional experience
Work History
Senior Systems Engineer/Architect (Azure)
Railroad Retirement Board
09.2024 - Current
- Upgraded existing on prem systems to support later versions of Windows server & server role migrations, Active Directory, DHCP, DNS, RootCA/SubCA roles.
- Migrations of on prem DFS name spaces & data to Azure file shares, with DFS name spaces hosted on an Azure instance Server 2025.
- Created security standards for Debian & Red Hat enterprise based Linux distributions following the DISA STIG guidelines.
- Worked with members of the application support teams to upgrade and migrate agency applications to be supported on modern versions of Windows & IIS to be hosted in Azure.
- Created SOPs for common operating practices in supporting the following systems MoveIT FTP Exchange Hybrid tasks.
- Upgraded Exchange server 2016 to modern Exchange Server Subscription Edition.
- Upgraded VMware vSphere from version 6.7 to 8.0.3
- Public Trust certified.
Senior Systems Engineer
Optimas OE Solutions
01.2022 - 09.2024
- Architected and supported enterprise datacenter migration strategy, relocating production infrastructure from Aurora to TierPoint Franklin Park, with a geographically separated disaster recovery site in Milwaukee, ensuring business continuity for global manufacturing and supply-chain systems.
- Designed and implemented multi-site disaster recovery architecture using VMware Site Recovery Manager (SRM), enabling automated replication, failover orchestration, and recovery testing for mission-critical workloads.
- Led the re-architecture and deployment of Dell PowerEdge R650 compute platforms, aligning server profiles, storage, and virtualization standards to support new datacenter and DR locations.
- Partnered with business and IT stakeholders to design a global business process management and documentation platform using SharePoint Online, supporting standardized workflows for domestic and international teams.
- Designed a repeatable automation framework leveraging Microsoft Power Automate / RPA, reducing manual customer order processing and improving operational efficiency across business units.
- Led Active Directory architecture analysis and consolidation planning, integrating Quest Enterprise Reporter across multiple source and target domains to inventory LDAP, authentication paths, and security dependencies.
- Designed the target-state identity architecture, performing stabilization and remediation across ADDS, DNS, GPO, DFSR, and NTDS, in preparation for domain consolidation using ADMT and Quest tooling.
- Defined group policy modernization and migration strategy, auditing and rationalizing legacy GPOs to ensure compatibility, security alignment, and reduced policy sprawl in the consolidated environment.
- Planned application and platform modernization strategies for externally hosted web services, evaluating Azure PaaS (App Services) as part of a long-term cloud adoption roadmap.
- Re-architected enterprise printing services by migrating Print Node and Windows Print Server roles to modern Windows Server platforms, consolidating Zebra label and HPE printers and improving NetSuite printing reliability.
- Collaborated with application owners and external partners to translate business requirements into scalable infrastructure and application platform designs for manufacturing ERP Epicor system, balancing performance, versioning, availability, and cost.
- Performed root cause analysis on production incidents, driving systemic fixes rather than tactical remediation to improve platform stability.
- Authored technical documentation, runbooks, and architectural guidance, and delivered knowledge transfer sessions to engineering and operations teams.
Principal Escalations Engineer
US-Cloud
07.2021 - 12.2022
- Served as a Principle escalation point for enterprise customers, supporting global Microsoft environments across Azure, Microsoft 365, Active Directory, Windows Server, SQL Server, SharePoint, Teams, and System Center.
- Designed and implemented standardized operational processes and SOPs to streamline client onboarding, case triage, and escalation workflows, improving consistency, predictability, and service quality across shifts.
- Architected a high-urgency intake and response model that treated all incoming cases as critical by aiming in reducing initial response SLA to under three minutes per case and materially outperforming Microsoft Premier Support benchmarks.
- Developed repeatable onboarding frameworks that reduced time-to-value for new clients by standardizing environment discovery, documentation, and support readiness across tenants and hybrid infrastructures.
- Authored technical runbooks, troubleshooting playbooks, and service delivery documentation to enable faster resolution, reduce variance between engineers, and improve knowledge transfer for new hires.
- Analyzed cross-client incident trends and systemic failure patterns to proactively address recurring architectural issues, driving long-term platform stability rather than reactive ticket resolution.
- Partnering with service leadership to define SLA, SLO, and KPI metrics, aligning operational performance with contractual commitments and customer expectations.
- Provided architectural guidance for migrations and upgrades, building support plans that accounted for risk, dependencies, rollback strategies, and long-term operational impact.
- Acted as a trusted technical advisor to enterprise customers, helping them optimize adoption of Microsoft cloud and hybrid platforms while reducing operational cost and complexity.
- Collaborated across global shifts to drive continuous service improvement, providing structured feedback on customer experience, unresolved risks, and process gaps.
- Supported change management initiatives by helping clients and internal teams adopt new platforms, workflows, and operational standards without service disruption.
- Regularly engaged stakeholders to articulate service offerings, architectural recommendations, and resolution strategies, reinforcing US-Cloud’s value proposition as a premium alternative to Microsoft Premier Support.
Senior Systems Architect (Tanzu/AKS)
Health Trio
01.2020 - 11.2021
- Served as a core architect supporting enterprise healthcare application platforms used by 30+ million members, with systems required to scale reliably during peak end-of-year health plan enrollment and renewal periods.
- Designed and implemented application modernization and support frameworks to upgrade legacy applications to Java 11, coordinating across development, infrastructure, security, and operations teams to ensure compatibility, performance, and regulatory compliance.
- Architected the containerization and application platform strategy using Docker and Kubernetes, with clusters managed by Rancher, enabling consistent deployment, scaling, and lifecycle management across environments.
- Supported a phased cloud migration strategy, stabilizing and modernizing on-premises Kubernetes platforms as a precursor to future migration into Azure, reducing risk during critical enrollment windows.
- Led core infrastructure modernization, upgrading unsupported operating systems to Windows Server 2019, ensuring platform stability and vendor support alignment.
- Designed and implemented disaster recovery architecture using Zerto replication, ensuring high availability and rapid recovery for mission-critical healthcare applications.
- Performed enterprise Active Directory recovery during a critical production outage caused by network isolation, restoring authentication services and preventing prolonged application downtime.
- Modernized the virtualization platform by upgrading to VMware vSphere 7.x with Tanzu, enhancing application awareness and orchestration capabilities for containerized and virtualized workloads.
- Architected and deployed high-performance storage platforms using NetApp AFF A800 arrays across dual Tucson datacenters, supporting hybrid iSCSI and Fibre Channel workloads with enterprise throughput and resilience.
- Upgraded compute and networking infrastructure, including Dell PowerEdge R740xd, Cisco UCS firmware and OS, and Nexus 9000 TOR switching, to support increased application density and container workloads.
- Designed operational workflows and documentation standards using Jira and Confluence, improving cross-team visibility, change coordination, and release management.
- Implemented PagerDuty-based alerting and on-call orchestration, improving incident response times and operational readiness during high-volume enrollment periods.
Senior Systems Architect — Internal & Customer Hosting Platforms
Column Technologies
08.2017 - 12.2019
- Served as a senior architect responsible for designing, operating, and modernizing hybrid IaaS and SaaS platforms supporting both internal enterprise systems and externally hosted customer applications delivered through Column’s private cloud offerings.
- Architected and implemented enterprise identity and access platforms across 13 subsidiary companies, designing standardized Active Directory group models integrated with Azure AD Sync to support multi-tier SharePoint Online and internal business applications.
- Designed and implemented identity lifecycle automation using SailPoint IdentityIQ, enabling role-based entitlements and “day-one access” provisioning across critical systems based on company, department, and role.
- Integrated Okta Single Sign-On as a central access layer for internal and customer-facing platforms, improving security posture while simplifying user access across:
- Microsoft 365 (13 tenants)
- Microsoft Dynamics AX ERP
- Salesforce
- ServiceNow
- Jira / Confluence
- AWS and Azure portals
- Endpoint security and backup platforms
- Defined and enforced secure infrastructure and application deployment standards for Windows and Linux workloads, incorporating Rapid7 InsightVM scanning, CIS benchmarks, and client-specific regulatory requirements.
- Designed HIPAA-aligned Linux hosting standards (RHEL / CentOS) with full disk encryption at boot and volume-level encryption to meet healthcare and university compliance requirements.
- Architected multi-tenant database platforms using SQL Server and PostgreSQL, enabling cost-effective shared hosting models for customers with licensing or budget constraints.
- Partnered with product development teams to design and host multi-tier, customer-facing SaaS applications, including investigative and case management platforms built on BMC backends with custom application layers.
- Acted as technical lead for client-facing cloud and hosting engagements, working directly with customer IT teams (Chicago BIA, COPA, FD, OIG, University of San Francisco, Eaton, Jackson Hewitt, Royal Caribbean, Omnicom) to design:
- Secure IaaS environments
- IPsec and VTI site-to-site VPN integrations
- Hybrid access to hosted SaaS platforms
- Led datacenter modernization efforts across two Column facilities, upgrading VMware vSphere from 6.0 to 6.7 U3 and Veeam 9.5, improving resiliency and lifecycle management for hosted workloads.
- Re-architected network topology and routing, eliminating firewall bottlenecks by redesigning host networking and gateway routing from perimeter firewalls to top-of-rack switching, supporting over 73 VXLANs with improved throughput and segmentation.
- Served as a key technical contributor in capital planning and pricing strategy, helping design a $1.9M infrastructure investment with a 3-year ROI model, aligning compute, storage, networking, and growth projections to customer demand.
- Architected next-generation datacenter consolidation into two 42U racks, selecting and designing platforms including:
- Cisco ASA 2010
- Nexus 9300
- Dell S5148F
- Dell PowerEdge R740xd
- Dell Compellent SANs
- F5 Load Balancers
- VxRail Ready Nodes for rapid expansion
- Planned and executed customer-safe migration strategies, including DNS, VPN, and NAT transitions, following documented deployment methodologies to minimize client impact during production cutovers.
Senior Systems Administrator VMware SME
CARDINAL INTELLECTUAL PROPERTIES
05.2016 - 08.2017
- Created Deployment Standards for each of Cardinals-IP sub companies/domains for vSphere operating environments implementing security baselines & benchmarks from Nessus vulnerability scanner.
- Migrated 11 Physical servers from windows server 2003 to 2016 VM in a newly built vSphere Dell VRTX blade Cluster.
- Created and implemented a backup and data restore process using Veeam Availability Suit to Azure cloud for yearly end & monthly backups following the NIST Standards.
- Repaired miss configurations of VMware VUM created Host and VM tags and baselines to standardize tools integration and Host ESXI versioning to 6.5 VC 6.5 baselines.
- Migrated 97 VMS to VMware tools Version 10.2 Compatibility version 9.
- Scripted Deployment for VM upgrades to VMNET 3 and SCSI Para virtual drivers to improve disk IOPs network throughput 30% improvement of utilization overall.
- Assisted in the planning & retention process for Email Migration to Office 365 for Cardinal Law group and Cardinal-Holding Sub Company domains.
- Performed operational support to back fill for Dev ops Engineer role and to assist with updating server and application components list to update Dev Teams Wiki Sites during transitioning period.
- Migrated Dev teams test & stage environments to a better suited vSphere cluster to separate test stage from production.
- Created new GPO policies to improve access level rights between Domains separated user accounts to be used when security elevation is needed on a task from normal user accounts for Dev Team and IT Admins
- Perform weekly maintenance of application deployment tools TeamCity Octopus Deploy SOLOR
- Integrated key Dev systems into the IT support workflow and creating alerting from Orion and logging with Gray log, creating new log streams.
- Worked Closely with dev team management during the Deployment & configurations of Chef and Puppet for testing if it meets company requirements.
Senior Systems Engineer (Contractor)
TEAM LOGIC IT
01.2016 - 05.2016
- Configured and installed new Networking equipment for various client networks using Cisco/Meraki and Ubiquity networking equipment.
- Created system image standards to assist in new client onboarding and system refreshing process.
- Configured VCSA 6 within our internal network with distributed content libraries to deploy over WAN to client networks with content subscriptions to deploy templates for new server builds.
- Migrated DHCP AD DNS Print server file server roles from server 2003 to 2016 for one of our largest clients Olympic Controls
- Implemented V Cloud Director suit for Rabine Group multi-site VM data centers with NSX networking security.
- Created process for AD policies and permission rules discovery due to the high level of permissions issues and security concerns at Rabine
- Configured a new host to lighten the load placed in the Schaumburg data center.
- Configured and implemented MDM and contact management system for Food for thought in HQ with Meraki systems manager.
- Installed HA RDS/TS services for remote office users to access internal resources from the web.
- Monitored backup process for various customer's networks and would report issues to external management teams with remediation's.
- Installed and configured Datto backup appliance with cloud-based backup subscriptions.
Senior Systems Administrator (Contractor)
AKIRA CHICAGO
01.2014 - 12.2015
- Supported 40 + users in a Citrix VDI environment hosted on 4 high density VMware ESXI HP Gen 8 host.
- Developed a deployment plan and implemented Xen App 7.5 as a hosted Service for user with more demanding user applications to prevent VDI systems from being over utilized.
- Created centralized file storage systems with user AD group authentication for different business groups.
- Implemented in store traffic counters with MAC address-based scanning of customer's mobile devices for in store push down advertising as well as royalty program for returning customers.
- Real time analytics on conversion rate information in a single pane of glass web dashboard
- Assisted with the JDS X store POS software Upgrade on store registers and upgraded office 2007 to 2013.
- Installed physical Vera Phone devices with on screen changeable advertising by season and to ensure PCI secure authentication for credit card transactions in all stores.
- Developed a baseline image on Ubuntu for remotely managed Xibo video image deployments for all stores distributed via CMS & STS VPN.
- HQ Office Chicago
Systems Administrator (Contractor)
MODIS
09.2013 - 01.2014
- Supporting Systems configurations and builds with SCCM 2012 software package & Delivery.
- Supporting failed packages and recreating batch script for proper delivery of software.
- Modifying and rebuilding task sequences for proper MS Bit Locker Encryption & image deployment tasks.
- Improved based image and updated primary source images to be deployed.
- Improving Network communication from SCCM site servers to endpoint Devices.
- Client Sites
Endpoint Mobility Engineer (Contractor)
ANIXTER CO
12.2012 - 08.2013
- Configured and implemented BYOD Policy's and Enterprise security for mobile iron implementation/Roll out.
- Streamlined support model for MDM Management communication to customer and helpdesk processing.
- Transferred infrastructure of Black Berry Enterprise servers (BES 5 10) to VMware ESX Based Host for system consolidation and fail over.
- Assisted in re-creating BOYD policies within Mobile Iron to redefine needed security restriction to only business-related applications during the role out of the new iPads and iPhone to corporate users and executives.
- Supported and deployed various mobile devices during the upgrade and refresh process for new mobile devices provisioned by each business groups.
- Established services from service provider pools for new users moving to mobile platforms.
Systems Administrator (Contractor)
G.W.W GRAINGER
03.2010 - 11.2012
- Maintained/upgraded II campus locations from Novel I print to Active Directory printing environment.
- Helped maintain & roll out new Lexmark MFD Printers & administrated printing Q.
- Worked with networking team in rolling out and developing Corp wireless profiles.
- Assisted Tier 3 teams with software packaging and image refresh/management.
- Migrated SQL Container data for upgrade from Altiris 6.9 to 7.1
- Configured & Built Proliant G8 servers for supporting new SQL and Altiris platform.
- Provided User support on all company software and hardware.
- Assisted & planned employee moves to new opening company locations and updated employee directory.
- Created software instructions to assist users in self-help job aids.
- Assisted in the Build out of Wi-Fi and routing network in the 500 w Madison building for the Ecommerce group.
- Created custom PKI certs for Meraki based Wi-Fi SSID to quick provision mobile devices in off campus AP in remote locations.
- Deployed pure charge station with Apple configurator with a mobile laptop with all relevant mobile iron profiles and Meraki ecommerce grope profiles for IOS DEV teams during the release of the Grainger shop app and keep stock team QR code replenish app.
- HQ Office
Education
Bachelor of Science - Information Technology/Networking
DeVry University
Chicago, IL09.2014
Skills
- Teamwork and Collaboration
- Customer service expert
- System optimization
- Technical Writing
- System Performance Assessments
- Troubleshooting Network Issues
- Interpersonal Skills
- Quality controls
- Attention to Detail
- Account Administration
- Network Troubleshooting
- Microsoft Windows and Office
- Access Management Software
- Server maintenance
- Security Protocols
- LAN/WAN
- Backup and recovery
- Debugging
- Technologies
- Hardware troubleshooting
- Technical Analysis
- Inventory Procedure Documentation
- Incoming Call Management
- Desktop support
- Technical Documentation
- Organizational Skills
- System Configuration
- Data Recovery
- Security Certification
- Database Management
- UNIX Shell Scripting
- Hardware Configuration
- Hardware and Software Configuration
- Mac systems
- Project Management
- O365 Teams Call Center Operations
- Documentation Development
- Virtualization
- ITIL Knowledge
- A Certification
- System Administration
- Emergency Service Coordination
- Microsoft Certification
- Root Cause Analysis
- Incident Response
- DevOps principles
- Storage virtualization
- Python Programming
- Docker Mastery
- Scripting Languages
- AWS Expertise
- Kubernetes Management
- Data Migration
- Azure Proficiency
- API Integration
- Security best practices
- Containerization Technologies
- SQL Expertise
- Cost Optimization
- Cloud Architecture Design
- VPN configurations
- Supervision and leadership
- Conflict Resolution
- Multitasking Abilities
- Firewall Management
- Connectivity Resolution
- WAN Acceleration technologies
- Server Hardware
- Network Firewall Management
- Cisco router and switch security
- EIGRP routing
- ITIL Processes
- MPLS VPN implementation
- Load Balancing
- VMware XenServer and Hyper-V
- Automation Management
- Azure MFA/Okta/Duo 2FA MFA
- Log Auditing and analysis
- Resource planning and design
- Cylance/Sentinel 1 device behavior analysis development
- Docker image creation
- Docker Swarm
- Kubernetes
- SIM log retention and offloading
- Red Hat Open-Shift
- Azure Ai Foundry
- AI LLM system integrations
- Epicor ERP Management & upgrades
LANGUAGES
English Bilingual or Proficient (C2)
Spanish Advanced (C1)
AUTOMOTIVE BUILDING
In my free time I enjoy building and restoring cars, both for friends and family. I specialize in Subaru, LS based GM engine swaps & 13bREW Wankel rotary engines from Mazda.
Timeline
Senior Systems Engineer/Architect (Azure)
Railroad Retirement Board
09.2024 - Current
Senior Systems Engineer
Optimas OE Solutions
01.2022 - 09.2024
Principal Escalations Engineer
US-Cloud
07.2021 - 12.2022
Senior Systems Architect (Tanzu/AKS)
Health Trio
01.2020 - 11.2021
Senior Systems Architect — Internal & Customer Hosting Platforms
Column Technologies
08.2017 - 12.2019
Senior Systems Administrator VMware SME
CARDINAL INTELLECTUAL PROPERTIES
05.2016 - 08.2017
Senior Systems Engineer (Contractor)
TEAM LOGIC IT
01.2016 - 05.2016
Senior Systems Administrator (Contractor)
AKIRA CHICAGO
01.2014 - 12.2015
Systems Administrator (Contractor)
MODIS
09.2013 - 01.2014
Endpoint Mobility Engineer (Contractor)
ANIXTER CO
12.2012 - 08.2013
Systems Administrator (Contractor)
G.W.W GRAINGER
03.2010 - 11.2012
Bachelor of Science - Information Technology/Networking
DeVry University