Brandon Sardelli

Experience

1. 

   Go Live Engineer (Modern Work focus) at Nerdio

   Sep 2025 - Present

   • Own go-live projects from deal close; align scope with Sales, PSMs, and Partners; run structured engagements from kickoff through support handoff.
   • Deliver Intune-focused partner education for Senior Systems Engineers, C-level suites, technical engineers, and post-sales technical staff; lead workshops on baselines, policies, and operational execution.
   • Onboard MSP partners to Nerdio Manager across multi-tenant environments; configure tenant integrations (Intune, Defender, Exchange, SharePoint), prerequisites, and API permissions.
   • Run kickoff and communication workflow: create project collaboration channels, share meeting links and documentation, capture call summaries, and maintain active feedback loops with PSMs and partners.
   • Lead discovery using standardized qualification questions on RMM/EDR stack, Microsoft licensing, Intune maturity, onboarding workflows, and security baseline readiness.
   • Guide policy rollout using Solution Baselines and Nerdio Policy Management: report-only staging, drift review, allow processing, enforcement planning, version control, and drift detection.
   • Deploy CIS Level 1 and Level 2 Intune benchmark policies and support baseline standardization across partner tenants.
   • Build enablement assets including Empower Your Helpdesk, First 30 Days with NMM (12-module guide), and M365 Partner Enablement Checklist; design a 10-module go-live playbook.
   • Build GLE Engagement Plan tool (session selector, HubSpot booking, scope/quote PDFs) and pilot engagement plans with partners to map call topics and onboarding sequence.
   • Power Automate flows for Microsoft Teams: provision channels, post messages, and partner communications—templated automation scaled to thousands of MSP partners.
   • Configure RBAC roles, Graph API permissions, and Defender/Secure Score integrations with least-privilege access.
   • Build recipe-based engagements for Autopilot V2, LAPS, Conditional Access, Update Rings, Unified Catalog, and Scripted Actions to support greenfield and brownfield deployments.
   • Launch release-campaign cadence for major platform updates with internal planning, partner training, Teams announcements, PSM alignment, and go-live meeting triggers.
   • Host 200+ partner calls in first 6 months and guide 50+ projects to completion.

2. Network Administrator at Centerview Partners · Huntington, NY

   Apr 2025 - Jun 2025

   • Short-term fill-in supporting infrastructure at a financial services firm with seven offices connected over MPLS/WAN.
   • Assisted with endpoint patch cycles and maintenance windows across a mixed on-premises and multi-cloud environment.
   • Documented Microsoft Tunnel and Intune configuration patterns for secure hybrid access to on-premises resources.
   • Shadowed CCIE-level engineers and the CIO on Azure networking, BGP routing, and WAN/MPLS design across multiple sites.
   • Monitored network and endpoint health with WhatsUp Gold; assisted with Cisco updates and endpoint troubleshooting during change windows.
3. 

   Systems Engineer at Site2

   Jul 2023 - Apr 2025

   • Managed Intune across 15 multi-tenant customers: device registration (Entra Joined, Hybrid Joined, Registered), Windows Autopilot (V2, device preparation, enrollment restrictions, dynamic groups), Configuration Profiles (Settings Catalog, ADMX), compliance policies, remediation scripts, scope tags.
   • Configured Endpoint Security baselines—Defender Antivirus, disk encryption, firewall, Attack Surface Reduction, Endpoint Detection and Response; deployed Conditional Access, Account Protection, Microsoft Tunnel (MAM) on iOS/Android; enabled Remote Help and Endpoint Analytics (audit logs, Log Analytics).
   • Deployed Win32, Microsoft Store, LOB, and WinGet applications; authored App Protection Policies; administered Windows Update for Business, Autopatch, and Defender Update Controls across tenants.
   • Built and supported Azure Virtual Desktop (single- and multi-session)—VM sizing, image management, Intune integration; executed weekly node updates and patching; migrated 15 customers to Azure data center including AVD and Windows Server upgrades.
   • Managed help desk ticket queue and escalations; performed Remote Actions (sync, wipe, retire); troubleshot MDE onboarding (Client Analyzer), device registration (DSREGCMD), ESP; operated ConnectWise RMM (ScreenConnect), 1Password, M365 admin.
   • Designed Azure hub-and-spoke with Microsoft engineers—VNets, peering, Azure Firewall, CIS benchmark policies—across 15 customers; configured Entra Connect sync, co-management, Intune connector; administered Cisco CDO, Meraki, FortiGate.

4. Systems Engineer at Ivionics · Hauppauge, NY

   Feb 2023 - Jul 2023

   • Supported MSP delivery for legal-industry clients with strict confidentiality, audit, and uptime requirements across Hauppauge and remote offices.
   • Deployed Intune and Entra Connect; configured compliance policies, Configuration Profiles, and Conditional Access for hybrid identity and endpoint governance.
   • Led AWS-to-Azure migrations using server migration tools and virtual network builds with planned zero-downtime cutovers.
   • Executed O365 and cloud mail migrations with endpoint compliance integration across multiple client tenants.
   • Administered firewalls, switches, and Meraki wireless with MFA and encryption; owned escalations, SLAs, and backup/DR across hardware, software, and cloud platforms.
5. 

   Systems Engineer at Arbor Realty Trust · Uniondale, NY

   May 2022 - Jan 2023

   • Led Microsoft Intune MDM and OneDrive rollout at a real estate investment firm—enrolled 700+ devices with white-glove, executive-level end-user support.
   • Pushed applications, integrated endpoint posture with Entra ID and Conditional Access, and maintained on-premises device inventory alongside cloud enrollment.
   • Optimized Azure Virtual Desktop images and session performance; built Windows images and deployed AVD access on macOS for hybrid workers.
   • Resolved MFA resets, OneDrive sync issues, and recurring access problems during a company-wide security hygiene push.
   • Monitored Azure Sentinel alerts—verified user location and activity as part of threat detection and response workflows.

6. Endpoint & MDM Engineer at US Ecology · Great River, NY

   Dec 2020 - May 2022

   • Operated ManageEngine MDM for 1,600+ employees across corporate HQ, field sites, and off-site offices in a regulated environmental services organization.
   • Enrolled and supported Windows, iOS, and Android devices; resolved enrollment failures, policy conflicts, and SSO/access issues tied to MDM workflows.
   • Contributed to Okta migration planning and execution; aligned mobile device policies with new identity provider requirements.
   • Imaged workstations and supported large-scale endpoint transitions with minimal disruption to plant and corporate operations.
   • Provided Tier 2 support across Office 365, Citrix VPN, VoIP, printing, and endpoint hardware; documented repeatable workflows for the help desk team.