Skills
What I use day to day, what I can pick up, and what's on the shelf.
Five-dot scale, calibrated against actual production use, not survey-fill-in proficiency. If something here matters to a role you have in mind, ask. Context usually matters more than the rating.
Microsoft hybrid infrastructure
Where I've spent the most time. Hybrid Azure + on-prem identity, network, endpoint, and ITSM at enterprise scale.
- Microsoft Azure ••••• Hybrid architecture, automation, security, monitoring
- Microsoft 365 administration ••••• Exchange, SharePoint, Teams, OneDrive, governance
- Hybrid AD + Entra ID ••••• AD Connect, dynamic groups, Conditional Access, PIM
- Intune device management ••••◦ Policies, app packaging, compliance
- Cisco Meraki (MX/MR/MDM) ••••◦
- Site-to-site VPN architecture ••••◦
- Windows Server administration ••••• AD, GPO, Hyper-V, file/print, RDS
- ITIL on Freshservice ••••• Incident, problem, change, request, asset, knowledge
Automation & scripting
The default response to a repeatable problem. PowerShell-first for IT; Python for data work and integration glue.
- PowerShell ••••• Advanced scripting, module dev, Graph API, 76-script M365 admin library
- Python ••••◦ Data pipelines, FastAPI, SQLAlchemy, dbfread, automation
- Microsoft Graph API ••••◦
- Power Automate ••••◦ User lifecycle, approval routing, SMS, vendor data ingest
- Azure Logic Apps •••◦◦
- GitHub Actions •••◦◦ Multi-stage CI/CD, matrix builds, secrets management
- Webhook-driven automation ••••◦
Web & app development
Where the side businesses live. Modern web on Astro and Next.js; mobile via cross-platform tooling, not native Swift or Kotlin.
- Astro ••••◦ afterhoursds.com, mattsvolleyball.com, acquired-company sites
- Next.js + TypeScript ••••◦ VolleyballEngine, deployed to Cloudflare Workers via OpenNext
- React ••••◦
- Tailwind CSS ••••◦
- Cloudflare Pages / Workers / R2 ••••◦ Acquired-company sites + VolleyballEngine
- FastAPI + SQLAlchemy •••◦◦ Listige Clone, Acowin DBF exploration, claude-forge
- Flutter / Dart •••◦◦ Current AfterHoursDS stack (cross-platform mobile)
- Visual / low-code mobile builders •••◦◦ App Inventor (2014), Thunkable (2018); historical
Data & analytics
Database, warehouse, and BI work that ties IT and business reporting together.
- SQL Server / T-SQL ••••◦
- Snowflake •••◦◦ Snowflake-native Python stored procedures with EXTERNAL ACCESS INTEGRATION
- Microsoft Fabric F64 ••••◦ Capacity, semantic models, RLS, external sharing
- Power BI ••••◦ DAX, capacity, semantic models, RLS
- Supabase Postgres •••◦◦ Schema design, migrations, RLS, multi-source data lake
- Data formats (JSON / XML / CSV / DBF) ••••◦
Security & identity
Identity-first, platform-controls-first. Defender stack plus the discipline that comes from running authorized pentests on your own ecosystem.
- Conditional Access + MFA + PIM •••••
- Defender for Endpoint / Identity / Cloud Apps ••••◦
- CISA ScubaGear M365 baseline ••••◦
- Unified Audit Log forensics ••••◦
- Authorized web-app pentesting •••◦◦ External assessments under written authorization
- Bitwarden secrets administration ••••◦
- Group Policy baselines ••••◦
Cross-cutting operations
The non-code parts that make the code parts work in real organizations.
- ITIL framework on Freshservice ••••• Incident, problem, change, request, asset, knowledge
- Cross-tenant M&A migration toolkit ••••◦ PowerShell migration runners + 26-page operating playbook generated from a docx codebase
- Documentation pipelines ••••• Ten-domain IT framework + automated PowerShell-to-markdown into SharePoint
- Technical evaluation of vendors and platforms ••••◦ Where the alternative is rolling our own; when the answer is build, this informs that too
Mechanical / HVAC trade credentials
From a decade in the trade before IT. Maintained current because the discipline that earned them is the same discipline I bring to systems work.
- NC H-3-I Mechanical Contractors License ••••• Held current. Acted as Energy Tight's qualifier for a BPI Gold Star HVAC division.
- NATE Service Technician (multi-specialty) ••••• Heat Pump, Gas, Oil, Air Distribution
- EPA Section 608 Universal ••••• All three certification types (I, II, III)
- BPI Building Analyst + Envelope Professional ••••◦ Building performance, blower door, duct blaster, thermal imaging
- ACCA Manual J / D / S / N / Q ••••◦ Residential and commercial load, duct, sizing, and design calcs
- Wrightsoft + AutoCAD mechanical layout ••••◦
- Cross-trade fluency ••••◦ Gas piping, low and high voltage electrical, sheet metal duct fab