h
helical_sam

Usama Anwar

@helical_sam

Enterprise Security Engineer

Pakistan
English
About me
Highly skilled IT Infrastructure and Security Engineer with extensive experience designing, deploying, and managing cloud, hybrid, and on-premises enterprise environments. Proficient in Microsoft 365, Azure, Intune, Defender, firewall administration, PowerShell automation, virtualization, and ERP/cloud integrations. Demonstrated success in endpoint management, incident response, and cloud security across regulated industries. Currently pursuing advanced Microsoft and Fortinet certifications (SC-200, AZ-104, MD-102, FortiGate) to strengthen expertise in modern cloud and enterprise security. ... Read more

Skills

h
helical_sam
Usama Anwar
Offline • 
Average response time: 1 hour

See my services

Cloud Management
I will implement hybrid intune for windows with autopilot
From$55 / projectMore details
Technical Support
I will do microsoft intune app packaging, deployment
From$15 / projectMore details

Portfolio

Work experience

System and Network Security Engineer

IT Consulting and Services • Full-time

Jun 2024 - Present1 yr 11 mos

Site/Client: Mari Energies ● Deployed and managed Microsoft Defender for Endpoint for over 1,000 endpoints across hybrid environments, automating rollout via PowerShell and reducing deployment time by 70%. ● Deployed and managed Microsoft Defender for Cloud for on-premises and hybrid servers using Azure Arc, enabling centralized update management, vulnerability assessment, and advanced server protection. ● Implemented and configured Microsoft Intune Autopilot with Hybrid Entra ID (Azure AD) for zero-touch device provisioning, cutting Help Desk workload by 60% through automated enrollment and policy assignment. ● Enhanced enterprise endpoint security by deploying EDR (Endpoint Detection & Response), ASR (Attack Surface Reduction), and Device Control policies, strengthening compliance and protection. ● Monitored security alerts, performed incident response, and executed remediation actions using Microsoft 365 Defender and Defender for Endpoint, leveraging SHA-256 app controls and IoC-based web filtering to improve threat detection and response by 80%. ● Managed Intune application deployment (Win32, Line-of-Business, and Microsoft Store apps) and enforced unauthorized application removal through automated compliance policies. ● Integrated Intune and Microsoft Defender onboarding workflows, enabling automated, zero-user-interaction enrollment across all managed endpoints. Remote/Client: Continental Biscuits Limited ● Implemented and configured Microsoft Intune with Hybrid Entra ID (Azure AD) and on-premises Active Directory Group Policies to enable zero-touch device enrollment and unified endpoint management. ● Integrated Intune and Microsoft Defender onboarding workflows, enabling automated, zero-user-interaction enrollment across all managed endpoints. ● Managed and provided technical support for Microsoft Intune and Defender for Endpoint (EDR), ensuring endpoint compliance, threat monitoring, and device security across hybrid environments.