Post Job Free
Sign in

Senior IT Infrastructure Leader and Cloud Architect

Location:
Pecan Grove, TX, 77406
Posted:
January 11, 2026

Contact this candidate

Resume:

FARHAN RASHEED KHAN

Richmond, TX *****

+1-630-***-**** - ******@****.***

PROFESSIONAL SUMMARY

Strategic and solutions-oriented IT leader with over 15 years of experience driving global infrastructure initiatives, digital transformation, and enterprise platform modernization. Proven ability to lead cross-functional teams, manage and implement scalable IT systems aligned with business objectives. Trusted advisor to executive leadership with a track record of delivering high-availability environments, cloud strategy execution, and data center modernization. SKILLS

• Operating Systems:

o Windows Server OS (2016, 2019, 2022): Expertise in Active Directory, Group Policy, DNS, DHCP, WSUS.

o Linux Administration: Strong skills in RHEL, CentOS, Ubuntu.

• Scripting and Automation:

o Proficient in PowerShell for Windows and Bash for Linux, REST API integration, and CI/CD scripting.

• Identity and Access Management:

o Entra ID (Azure AD), CyberArc, SailPoint, OKTA, PING:

• Virtualization Technologies:

o Expertise in VMware vSphere, Microsoft Hyper-V, and Proxmox.

• Application Hosting Servers

o WHM/Cpanel, Plesk, Apache, Windows IIS

• Patch Management and OS Lifecycle Management:

o Skilled in patch management processes and managing the OS lifecycle for both Windows and Linux environments.

• Performance Tuning and System Optimization:

o Focused on optimizing systems and enhancing performance for Windows and Linux servers.

• Backup and Disaster Recovery:

o Knowledgeable in strategies and tools like Veeam, Acronis for backup and disaster recovery.

• Cloud Platforms:

o Experience with Microsoft Azure, AWS, M365 Solutions, SharePoint, Azure Virtual Desktop (AVD) Teams, and inTune.

• Database & Analytics:

o Proficiency with MS-SQL, MySQL, and Power BI.

• PM Tools and Methodologies:

o Knowledge of ServiceNow, Jira, PMI Methodologies, Agile, and Waterfall.

• Firewall & Load balancer Management:

o Experience with Fortinet, SonicWall, Palo Alto, Sophos, Cisco firewalls.

• Leadership Skills:

o Proven capability in operations and stakeholder management, vendor relations, resource optimization, and mentoring.

WORK HISTORY

02/2025 to Current Cloud Architect & Manager

Fast & Secure Cloud Service LLC (MSP) – IL, USA

• Led a global team of 10+ engineers managing computing, storage, cloud, and virtualization platforms, resulting in a 15% increase in overall system efficiency.

• Implemented and maintained IT Service and Asset Management (ITSM) tools and best practices based on ITIL methodology, improving service delivery by 20% and reducing change management incidents by 10%.

• Established and managed Azure and AWS infrastructures, migrating 90% of mission-critical and business continuity workloads to the cloud, achieving a 25% reduction in infrastructure costs.

• Oversaw Azure Active Directory (Entra ID) administration, managing identity and access controls for over 5,000 users through Azure Portal, Microsoft 365 Portal, and PowerShell scripting.

• Managed global data centers and maintained disaster recovery (DR) sites, ensuring RTO and RPO compliance, minimizing downtime by 99.99%.

• Managed Azure AD Identity Management, including user provisioning for 5,000+ users, MFA configurations, SSO application onboarding (50+ applications), and Conditional Access Policies, enhancing security and simplifying user access.

• Configured SSO solutions using SAML for 100+ applications, managing IdP/SP integrations for seamless authentication and authorization.

• Configured OAuth 2.0 protocols for secure delegated access, managing client registrations, redirect URIs, and scope permissions, reducing authentication errors by 15%.

• Successfully implemented/migrated and managed Exchange Online environments, optimizing mail flow and advanced security measures including malware protection, phishing filters, and DLP policies.

• Deployed and managed Apache Tomcat application servers for Java-based applications, including installation, performance tuning, clustering, SSL configuration, automated deployments, and troubleshooting, improving application uptime and response times.

• Implemented SailPoint IdentityIQ solutions for identity governance and administration, designing provisioning workflows, access review campaigns, and role-based access models integrated with AD and cloud applications.

• Automated routine administrative tasks and deployment pipelines using PowerShell, Bash, and Python scripts, integrating with CI/CD tools and REST APIs to reduce manual effort and deployment time.

• Collaborated on cloud governance initiatives, leading clean-up projects to optimize over 100+ user accounts and maintain compliance with identity security standards.

• Engaged in Change Management processes, effectively managing over 500+ updates and modifications, minimizing operational disruptions.

• Implemented compliance, security, and software deployment policies using Microsoft tools such as SCCM and Intune, maintaining a 99%+ compliance rating. 02/2022 to 02/2025 Sr. Azure Security and IAM Engineer Northen Trust Bank – IL, USA

• Oversee Azure Active Directory (Azure AD) administration, managing identity and access controls through Azure Portal, Microsoft 365 Portal, and PowerShell scripting.

• Implement Identity and Access Management (IAM) strategies for Single Sign-On

(SSO) and Multi-Factor Authentication (MFA) solutions to enhance security across the organization.

• Manage Azure AD Identity Management for over 50K global users, including user provisioning, MFA configurations, SSO application onboarding, and establishing Conditional Access Policies to ensure secure access to applications.

• Configure SSO solutions for above 1500 applications using SAML for multiple applications, managing the integration between Identity Providers (IdP) and Service Providers (SP) to ensure seamless user authentication and authorization.

• Led the registration of applications with IdPs, establishing SAML endpoints, and defining assertion attributes, ensuring accurate user data is transmitted.

• Configure OAuth 2.0 protocols for secure delegated access, facilitating smooth user experiences across applications by managing client registrations, redirect URIs, and scope permissions.

• Developed and implemented the authorization code grant flow, allowing users to obtain access tokens to interact securely with APIs and services.

• Collaborate on cloud governance initiatives, leading clean-up projects to optimize user accounts and maintain compliance with identity security standards.

• Engage in Change Management processes to manage updates and modifications in systems and protocols effectively.

03/2021 to 03/2022 Sr IT Operations Manager (IT/OT) ACET Solutions (MSP) – Houston, USA

• Managing Multiple Enterprise IT Projects and IT/OT Cyber Security.

• Configuring Virtualized environment for SCADA and Operational applications.

• Experience working with Azure AD administration and Azure subscription access control using Azure Portal, Microsoft 365 Portal, PowerShell, and Graph Services

• Leads the development of the IT infrastructure strategy roadmap and ensures its integration with IT Operations, InfoSec and enterprise strategic plans for customers.

• Migration and Maintaining issues on O365 and Azure Cloud Emails and installations related.

• Vendor Risk Management and Purchasing Management.

• Architect, configure, and document core Microsoft Azure cloud services including virtual machines, firewalls, networking/DNS, storage, and monitoring across the organization.

• Architect, configure, and document additional Microsoft Azure cloud services including VDI, Azure Files, Service Health, Azure AD DS/GP/Hybrid, etc. across the organization.

• Architect, configure, and document Microsoft Intune systems management infrastructure across the organization and assist with initial cutover/rollout from SCCM.

• Orchestrate and perform migration plans from new/old on-prem systems to newer Azure services.

• Good knowledge and Experience on MFA and SSO.

• Work closely with IT Security team and provide Azure Security Center technical details and recommendations based on security best practices and recommendations from this team.

• Hands on Experience on NextGen Firewalls for VPN and SD-WAN (Sonicwall, FortiNet, Sophos, PaloAlto)

• Hands on Experience on CISCO Networks (Routers, Switches, Firewall, Wireless and Call Manager)

• Hands on Experience on HPE Aruba Networks for Wireless and Switches.

• Experience on Network Management tools (Ansible, ManageEngine, SolarWind).

• Weekly presentation of Company's top management for project status and forecasting.

04/2009 to 12/2020 IT Infrastructure Manager (Cloud / On-Premise) AL MUTLAQ UNITED COMPANY (MSP) – Dammam, Saudi Arabia

• Architect, configure, and documentation Microsoft Azure cloud and O365 services including virtual machines, firewalls, networking/DNS, storage, and monitoring across the organization.

• Migration and Maintaining issues on O365 and Azure Cloud Emails and installations related.

• Architect, configure, and document additional Microsoft Azure cloud services including VDI, Azure Files, Service Health, Azure AD DS/GP/Hybrid, etc. across the organization.

• Orchestrate and perform merger and acquisition (M&A) migration plans from new/old on-prem systems to newer Azure services.

• Work closely with IT Security team and provide Azure Security Center technical details and recommendations based on security best practices and recommendations from this team.

• Architect, configure, and document Azure Backup and Azure Site Recovery policies and procedures across the organization. Schedule and perform testing against these solutions.

• Architect, configure, and document Microsoft Group Policy across the organization.

• Monitor IT Administrators and Analysts and provide guidance, advice, feedback, and support of their IT cloud services

• Management of Customer Projects and Vendor/Suppliers relations ensuring highest satisfaction.

• Team Management, of multiple Nationalities.

• KPI base incentive system for Project Team.

• Planning and Implementing Business Continuity Planning (BCP) and Disaster recovery Planning (DRP)

• Implementing IT Cyber Security Policies and Procedures.

• Hands on Experience on NextGen Firewalls for VPN and SD-WAN (Sonicwall, FortiNet, Sophos, PaloAlto)

• Hands on Experience on CISCO Networks (Routers, Switches, Firewall, Wireless and Call Manager)

• Hands on Experience on HPE Aruba Networks for Wireless and Switches.

• Experience on Network Management tools (ManageEngine, SolarWind). 07/2008 to 04/2009 IT Infrastructure Manager

ARBAH CAPITAL – Dammam, KSA

• Created IT Processes/Policies of ID Management, Patch Management, Network Management, Change Management and IT Policies in accordance with Saudi Tadawul Security Audit.

• Managing IT team consist of Security Specialists, Unix Administrators, IBM WAS/MQ Admin, Windows/Exchange Admin, Desktop Support Team.

• Successfully Audit Cyber Security for Capital Markets Authority of Saudi Arabia.

• As IT Infrastructure Manager, Managing IT Team

• Experience on Network Management tools (ManageEngine, SolarWind).

• Supervision of all Networking Hardware like Routers, Switches, Firewalls and IPS.

• Supervision of All Hardware Servers.

• Supervision of all Microsoft Servers like Ms. Exchange 2007, Ms Active Directory, DNS, DHCP Etc.

• Supervision of HP-Unix Systems.

• Supervision of Blue Coat Administration.

• Supervision of Iron Port Administration.

• Future planning of Network Infrastructure.

• Planning and implementation of Active DR Site.

• Log review and tracking incidents.

• IP Telephony:

• IP Telephony Configuration/Administration.

• IP Telephony Unified Messaging System.

• IPCC Technical Administration.

• Call Center Voice Recording Technical Administration.

• Change Request Approval / Review.

02/2003 to 07/2008 Networking Project Team Lead

AL MUTLAQ UNITED COMPANY – Dammam, Saudi Arabia

• Support and administration of company wide Windows Server environment which consists of approximately 500 Windows 2000/2003 servers.

• Implement Backup Exec 9.1 and upgrade to NetBackup 5.1 MP4 and Responsible on Backups and Restore of all the servers with NetBackup 5.1 MP4 on the network.

• Implement and manage Symantec Antivirus 10.0.1 Company wide.

• Product Demonstration, Presentation on customer site and designing Solutions according to the customer needs.

• Testing of new products and give trainings to filed Engineers.

• Communicating with customers when it is required as a Pre-Sales Engineer.

• Project Management of Wired and Wireless Networks.

• Network Management, Design, and Execution, of Local Inter office Network with VPN links of 5 Branches.

• VoIP Implementation & Configuration in all Branches.

• Implementation of Local Mail server. And remote Administration of Dedicated Web Hosting Server in USA.

• Installation and Implementation of ISA Server. Using Domain Login Access rights & Surf Control for reporting and Web Filtration.

• Implementation of Symantec Corporate Antivirus. With Central Quarantine.

• Implementation of SUS (Ms Software Update Server).

• Configuration and installation wireless network access points and Client adapters.

• Wired & Wireless Print Servers of different brands.

• Implementation of Ms SQL Server 2000.

• Developed Office Custom Web Base Time & Attendance Application with Human Resource Management.

• Trouble shouting of Handheld Devices (Pocket PC & Win CE), Tablet PC.

• Implement and manage Microsoft Operation Manager 2005 for server monitoring.

• Maintain Compellent SAN with 33 terabytes storage of data including server objects.

• Implement the Public Folder archival procedure and maintain the Exchange 2003 Public Folder database defragmentation by running exchange tool.

• Migration of Exchange 2000 to Exchange 2003 using Bind View BV Admin software.

• Setup Patch Management software server for corporate wide delivery of Microsoft Hot fixes and Service Packs.

EDUCATION

01/2001 Master's Degree: Computer Science, Management Info System Preston University - Karachi

01/1999 Bachelor's Degree: Computer Science

University of Karachi - Karachi

CERTIFICATION

• Cisco Certified IP Communications Express Specialist.

• Cisco Certified Network Professional (In Progress)

• Cisco Certified Voice Professional (In Progress)

• Cisco Certified Network Associate (CCNA).

• Building Cisco Multilayer Switched Networks (BCMSN).

• Cisco Implementing Quality of Service (QOS 642-642)

• Securing Network with PIX and ASA (642-523 SNPA)

• Troubleshooting Cisco Unified Communications Systems (642-426 TUC)

• Wireless LAN Specialization Exam for Account Managers v3.0 (646-401)

• Cisco Sales Expert (646-201)

• HP Accredited Sales Professional.

• Project Management Professional (PMP)

• Microsoft Certified Professional. (MCP)

• Microsoft Azure Administrator. (AZ-104)

LANGUAGES

English

Full Professional

Urdu

Native or Bilingual

Arabic

Limited Working

#HRJ#a9d48551-5293-411d-b8b7-f4eda85abae6#



Contact this candidate