Brandon Sardelli

Cloud / Modern Workplace Engineer

Microsoft-centric engineer with 5+ years across MSP, enterprise, and vendor delivery. At Nerdio I own customer onboarding for IT providers running Microsoft 365 at scale—research, documentation, internal tooling, and repeatable playbooks across 50+ projects and 200+ live technical sessions. I spot blockers early, test practical fixes, and hand off work that is accurate and repeatable.

Top working style skills

  • 01 Solution-oriented

    I stay action-focused. I spot challenges early and offer practical ways to keep projects moving forward.

  • 02 Clear communicator

    I work to express ideas clearly and keep ambiguity low—clarifying goals, scope, and next steps so we stay aligned with less back-and-forth.

New York, NY | Open to Remote

brandon.sardelli@gmail.com

631-707-5433

brandonsardelli.com | LinkedIn | GitHub

How I deliver (Nerdio)

Research & tooling

Six-way competitive platform analysis, TypeScript automation that turns call transcripts into FAQs and partner emails, and a searchable web viewer for past onboarding sessions.

Customer onboarding

Structured rollouts for multi-tenant Microsoft partners—20+ session playbooks, security baseline guides, feature catalogs, and walkthroughs for email, file sharing, Teams, and data protection.

Security & scale

Conditional access, least-privilege roles, emergency admin access, and staged security baselines with per-client overrides and drift review before enforcement.

Rollouts & delivery

Template-tenant automation, Azure monitoring runbooks, Power Automate outreach to thousands of partners, and PDF playbooks generated from 315+ help articles.

Nerdio | Go Live Engineer (Modern Work focus)

Sep 2025 – Present

  • Own end-to-end customer onboarding for IT service providers managing Microsoft 365 across many client tenants: assess their stack, configure the platform, roll out security policies in stages, validate results, and hand off to support—50+ projects and 200+ live technical sessions.
  • Produce research leadership and sales actually use: side-by-side comparison of six competing platforms, vendor evaluation scorecards, and step-by-step security rollout playbooks—fact-checked against official docs and real customer calls.
  • Build the documentation the field team runs on: 20+ structured summaries from live onboarding calls; getting-started guides and partner checklists; feature catalog with release status; walkthroughs for email, Teams, file sharing, and data protection.
  • Ship internal tools that cut manual follow-up work: TypeScript pipeline converts meeting transcripts into FAQs, help articles, and client-ready emails; web UI to search and reuse past sessions; five documented case studies in production.
  • Configure production identity and security across multi-tenant cloud environments: conditional access, least-privilege helpdesk roles, emergency admin access, and email/collaboration baselines—with per-client overrides and drift review before enforcement.
  • Automate repeatable deployment patterns: gold-standard template tenants, inherited settings with customer-specific exceptions, Azure runbooks for security monitoring onboarding, and standardized remote app and policy rollout.
  • Deliver partner-ready technical briefs on licensing, maintenance windows, and policy recommendations; root-caused PSA/ticketing sync issues and documented runbooks for password-reset reporting, secrets migration, and tenant health checks.
  • Scale partner outreach with Power Automate Teams flows reaching thousands of providers; structured onboarding programs (up to 5 sessions per customer); Node.js crawler indexed 315+ help articles into PDF playbooks for the field team.

Experience

Centerview Partners | System Administrator · Huntington, NY

Apr 2025 – Jun 2025

  • Implemented Microsoft Tunnel and analyzed complex Intune environments with CCIE engineers and CIO for multi-region infrastructure.
  • Executed endpoint patch strategies during maintenance windows; MPLS WAN across seven offices.
  • Documented Intune patterns; supported BGP routing and Azure networking/security tooling.

Site2 | Systems Engineer

Jul 2023 – Apr 2025

  • Designed Azure hub-and-spoke with Microsoft engineers—VNets, peering, Azure Firewall, CIS benchmark policies for 15 customers.
  • Intune, Autopilot, ABM, ConnectWise RMM; PowerShell automation and CIS controls via Intune and Group Policy.
  • Defender, Endpoint Analytics, Entra ID, Conditional Access, Microsoft Tunnel; AVD updates and custom Endpoint Analytics dashboards.
  • Led Azure data center migration—AVD, Windows Server upgrades, Cisco/Meraki/FortiGate/Azure Firewall security.

Platforms

Windows 7/10/11 · Server 2012–2025 · Linux · macOS · VMware ESXi · Azure

Security

FortiGate · Defender · Intune · Conditional Access · Arctic Wolf · SIEM · DLP · Entra ID

M365

Microsoft 365 admin · Exchange · SharePoint · OneDrive · Teams

Ops & monitoring

RMM · Zabbix · Azure Alerts · SCCM · SCVMM · Patch management · ITSM

Backup & DR

Acronis · Azure Backup · DRaaS · AvePoint · Azure Storage

Networking

Firewalls & routing · VLANs · Wireless · DNS/DHCP · ACLs

Ivionics | Systems Engineer · Hauppauge, NY

Feb 2023 – Jul 2023

  • Implemented Intune and Entra Connect for hybrid identity across legal clients.
  • AWS-to-Azure migrations with zero-downtime cutovers; O365 migrations and multi-client endpoint compliance.
  • Escalated incident resolution; backup solutions for regulated environments.

Arbor Realty Trust | Systems Engineer · Uniondale, NY

May 2022 – Jan 2023

  • Led Intune MDM and OneDrive rollout—700+ devices, white-glove onboarding, hardened endpoint posture.
  • Optimized AVD images; Azure Sentinel alerting for threat detection and response.

US Ecology | Endpoint & MDM Engineer · Great River, NY

Dec 2020 – May 2022

  • ManageEngine MDM for 1,600+ employees; OKTA migration support.
  • 2,500+ tickets (O365, Citrix, VoIP, hardware); documented IT workflows for repeatability.

Download resume variants