Malik Oseni

Sole engineer accountable for the Modern Workplace and Identity estate at a regulated UK law firm. Hybrid environment combining on-premises Active Directory, Windows Server, and file services with Microsoft Entra ID, Microsoft 365, Azure, and Intune-managed endpoints. Scope of 800+ devices and 450+ users.

• Designed Entra ID identity governance across the joiner, mover, and leaver lifecycle using Entitlement Management access packages and periodic access reviews, enforcing least-privilege RBAC and supporting GDPR and UK DPA obligations for a legal practice handling sensitive client data.
• Designed Conditional Access, MFA, and session controls across the full M365 estate against Zero Trust principles, rolling out phishing-resistant MFA and tightening sign-in risk policies across the user base.
• Built PowerShell and Microsoft Graph automation spanning hybrid AD and Entra ID provisioning, mailbox creation, licence assignment, and access revocation, meaningfully reducing joiner-mover-leaver turnaround and eliminating manual error classes.
• Runs the Intune estate across Windows, macOS, and iOS with Windows Autopilot zero-touch provisioning, Apple Business Manager and DEP enrolment, compliance baselines, and MDM-enforced patch governance. Manages Apple endpoints in JAMF Pro alongside Intune for unified reporting across the mixed estate.
• Administers Exchange Online mail flow and transport rules, Defender for Office 365 anti-phishing and safe-links policies, and attack simulation training across the user base.
• Administers Citrix XenApp/VDA and VMware Omnissa Horizon for remote staff, diagnosing FSLogix profile container failures, StoreFront access faults, and session issues that would otherwise prevent fee-earners from working.
• Senior technical escalation points across the IT function, running internal training sessions for colleagues on Entra ID, Intune, Citrix, and Horizon, and owning the vendor escalation and SLA path with Iomart, Microsoft, 3CX, and OneAdvanced.

Federal tax authority. Managed identity, endpoints, and server infrastructure across 2,500+ endpoints and 1,200+ staff in federal HQ and regional offices under ITIL v4.

• Owned role-based access management for Oracle ERP (Time & Labor, Payroll, Financials) at federal HQ, keeping permissions current with organisational changes and maintaining continuous audit readiness in a heavily regulated government environment.
• Rebuilt Exchange Online and Active Directory provisioning for 1,200+ staff using PowerShell, significantly reducing account delivery time and eliminating duplicate and orphaned accounts the manual process had been creating.
• Managed incident, problem, and change processes under ITIL v4, maintaining SLA compliance consistently across tax administration systems.
• Authored 45 knowledge-based articles and trained eight engineers on resolution workflows.

• Designed and delivered an internal task-tracking and workforce management platform (ASP.NET/C#, PHP) used across client accounts for staff assignments and activity reporting.
• Standardised Windows workstation builds and deployment processes across client sites, cutting per-site setup from days to hours and reducing post-deployment support volume.
• Led a structured onboarding programme for interns and junior engineers, bringing new hires to fully independent working within their first week.