Brandon Sardelli
Cloud / Modern Workplace Engineer
Microsoft-centric engineer with 5+ years across MSP, enterprise, and vendor delivery. At Nerdio I own customer onboarding for IT providers running Microsoft 365 at scale—research, documentation, internal tooling, and repeatable playbooks across 50+ projects and 200+ live technical sessions. I spot blockers early, test practical fixes, and hand off work that is accurate and repeatable.
Top working style skills
01 Solution-oriented
I stay action-focused. I spot challenges early and offer practical ways to keep projects moving forward.
02 Clear communicator
I work to express ideas clearly and keep ambiguity low—clarifying goals, scope, and next steps so we stay aligned with less back-and-forth.
New York, NY | Open to Remote
631-707-5433
How I deliver (Nerdio)
Research & tooling
Six-way competitive platform analysis, TypeScript automation that turns call transcripts into FAQs and partner emails, and a searchable web viewer for past onboarding sessions.
Customer onboarding
Structured rollouts for multi-tenant Microsoft partners—20+ session playbooks, security baseline guides, feature catalogs, and walkthroughs for email, file sharing, Teams, and data protection.
Security & scale
Conditional access, least-privilege roles, emergency admin access, and staged security baselines with per-client overrides and drift review before enforcement.
Rollouts & delivery
Template-tenant automation, Azure monitoring runbooks, Power Automate outreach to thousands of partners, and PDF playbooks generated from 315+ help articles.
Nerdio | Go Live Engineer (Modern Work focus)
Sep 2025 – Present
- Own end-to-end customer onboarding for IT service providers managing Microsoft 365 across many client tenants: assess their stack, configure the platform, roll out security policies in stages, validate results, and hand off to support—50+ projects and 200+ live technical sessions.
- Produce research leadership and sales actually use: side-by-side comparison of six competing platforms, vendor evaluation scorecards, and step-by-step security rollout playbooks—fact-checked against official docs and real customer calls.
- Build the documentation the field team runs on: 20+ structured summaries from live onboarding calls; getting-started guides and partner checklists; feature catalog with release status; walkthroughs for email, Teams, file sharing, and data protection.
- Ship internal tools that cut manual follow-up work: TypeScript pipeline converts meeting transcripts into FAQs, help articles, and client-ready emails; web UI to search and reuse past sessions; five documented case studies in production.
- Configure production identity and security across multi-tenant cloud environments: conditional access, least-privilege helpdesk roles, emergency admin access, and email/collaboration baselines—with per-client overrides and drift review before enforcement.
- Automate repeatable deployment patterns: gold-standard template tenants, inherited settings with customer-specific exceptions, Azure runbooks for security monitoring onboarding, and standardized remote app and policy rollout.
- Deliver partner-ready technical briefs on licensing, maintenance windows, and policy recommendations; root-caused PSA/ticketing sync issues and documented runbooks for password-reset reporting, secrets migration, and tenant health checks.
- Scale partner outreach with Power Automate Teams flows reaching thousands of providers; structured onboarding programs (up to 5 sessions per customer); Node.js crawler indexed 315+ help articles into PDF playbooks for the field team.
Experience
Centerview Partners | System Administrator · Huntington, NY
Apr 2025 – Jun 2025
- Implemented Microsoft Tunnel and analyzed complex Intune environments with CCIE engineers and CIO for multi-region infrastructure.
- Executed endpoint patch strategies during maintenance windows; MPLS WAN across seven offices.
- Documented Intune patterns; supported BGP routing and Azure networking/security tooling.
Site2 | Systems Engineer
Jul 2023 – Apr 2025
- Designed Azure hub-and-spoke with Microsoft engineers—VNets, peering, Azure Firewall, CIS benchmark policies for 15 customers.
- Intune, Autopilot, ABM, ConnectWise RMM; PowerShell automation and CIS controls via Intune and Group Policy.
- Defender, Endpoint Analytics, Entra ID, Conditional Access, Microsoft Tunnel; AVD updates and custom Endpoint Analytics dashboards.
- Led Azure data center migration—AVD, Windows Server upgrades, Cisco/Meraki/FortiGate/Azure Firewall security.
Platforms
Windows 7/10/11 · Server 2012–2025 · Linux · macOS · VMware ESXi · Azure
Security
FortiGate · Defender · Intune · Conditional Access · Arctic Wolf · SIEM · DLP · Entra ID
M365
Microsoft 365 admin · Exchange · SharePoint · OneDrive · Teams
Ops & monitoring
RMM · Zabbix · Azure Alerts · SCCM · SCVMM · Patch management · ITSM
Backup & DR
Acronis · Azure Backup · DRaaS · AvePoint · Azure Storage
Networking
Firewalls & routing · VLANs · Wireless · DNS/DHCP · ACLs
Ivionics | Systems Engineer · Hauppauge, NY
Feb 2023 – Jul 2023
- Implemented Intune and Entra Connect for hybrid identity across legal clients.
- AWS-to-Azure migrations with zero-downtime cutovers; O365 migrations and multi-client endpoint compliance.
- Escalated incident resolution; backup solutions for regulated environments.
Arbor Realty Trust | Systems Engineer · Uniondale, NY
May 2022 – Jan 2023
- Led Intune MDM and OneDrive rollout—700+ devices, white-glove onboarding, hardened endpoint posture.
- Optimized AVD images; Azure Sentinel alerting for threat detection and response.
US Ecology | Endpoint & MDM Engineer · Great River, NY
Dec 2020 – May 2022
- ManageEngine MDM for 1,600+ employees; OKTA migration support.
- 2,500+ tickets (O365, Citrix, VoIP, hardware); documented IT workflows for repeatability.