D’mitri Doman · Infrastructure & Endpoint Engineering

Infrastructure & Endpoint Engineer | Entra ID • Intune • Windows/macOS | Microsoft 365

Identity-first hardening, endpoint standardisation, safeguarding environments, scale.

I keep Windows/macOS estates stable and secure at scale—supporting 7,000+ endpoints across education, finance, and regulated environments.

Contracts revolve around Entra ID, Intune/Autopilot, Microsoft 365, PowerShell automation, and the documentation that lets service desks breathe.

Download CVEmail me
Portrait of D'mitri Doman

Proof points

  • Supported fleets from 500 to 7,000+ devices across Totteridge Academy, Haberdashers', Clarus One, and Ardonagh.
  • Delivered Intune + Autopilot onboarding, Windows 11 migrations, and ControlUp/Sophos monitoring improvements without outage drama.
  • Worked with safeguarding tooling (Sophos, Smoothwall, Senso) alongside Microsoft 365 to keep classrooms compliant.

About

I’m an infrastructure and endpoint engineer based in Greater Manchester. My work centres on Entra ID, Intune, Autopilot, Microsoft 365, and the safeguarding stacks that keep schools and regulated teams operating safely.

I map the actual flow—procurement, enrollment, access, support—and document it so service desks, leadership, and auditors see the same story. Calm delivery, reliable baselines, and predictable handovers beat shiny slides.

Experience highlights

Assistant Network Manager · The Totteridge Academy (2024–2025)

Stabilised ~600 endpoints, standardised Intune policies, and delivered Windows 11 migrations while leading a small ICT team.

Lead IT Engineer · Haberdashers' School (2023–2024)

Kept a WAN of 7,000+ endpoints reliable with Extreme Networks, Sophos, Smoothwall, and Senso; coordinated onboarding and safeguarding tooling updates.

Second Line Engineer · Clarus One (2022–2023)

Supported Atlassian, Azure DevOps, and GitHub for distributed teams, rebuilding documentation and ticket flows to cut repeat incidents.

IT Analyst · The Ardonagh Group (2021)

Looked after ~900 international users across Citrix and Microsoft 365, adding ControlUp monitoring so issues were caught before traders noticed.

Core skills

Current toolkit across identity, endpoint, and operations.

Identity & Access

Entra ID administrationConditional Access + MFAPrivileged access guardrailsSecurity baseline documentationZero Trust principles in practice

Endpoint & Device

Intune compliance + AutopilotWindows 11/10 build managementmacOS support and enrollmentDefender for Endpoint & Sophos integrationsControlUp, Smoothwall, Senso monitoring

Operations & Automation

PowerShell tooling and runbooksMicrosoft 365 tenant administrationKnowledge base + documentation upkeepChange / incident commsAtlassian, Azure DevOps, GitHub workflows

Certifications & training

Safeguarding & data-protection training (education contracts)

Latest refresh 2024

Microsoft 365 & Intune administrator labs (Microsoft Learn)

Ongoing

Selected delivery work

Short, honest summaries of how identity-first delivery shows up in web, tooling, and endpoint projects.

MMM Beauty — Premium Salon Website & Brand System

MMM Beauty

Beauty / Aesthetics

Audience: Independent clinic ready for bookings

Live

Designed and built MMM Beauty’s modern salon website around conversion + clarity: structured service pages, CMS-managed content (treatments/policies/aftercare), SEO-ready layout, and an embedded booking flow — packaged with a cohesive brand refresh and a maintainable setup for non-technical updates.

Outcome

Clear service menu, easier bookings, and a polished digital presence with simple admin handover for role-based updates.

Next.js (App Router)TypeScriptTailwind CSSSanity CMSVercelSquare (booking embed)
View project details

Tardi Group — Corporate Financial Services Website

Tardi Group

Financial Services

Audience: Corporate services firm

Live

Built a clean, corporate multi-page site focused on trust and readability: clear service hierarchy, credibility-led layout, fast performance, and responsive design — positioned for straightforward enquiry capture without bloated complexity.

Outcome

More credible first impression, straightforward paths to key services, and safer enquiry handling for prospective clients.

Next.jsTypeScriptTailwind CSSVercel
View project details

Personal Portfolio — dmitridoman.co.uk

Self

Personal Brand

Audience: Employers, recruiters, and collaborators

Live

An identity-led portfolio built to sell capability fast: projects, experience, and contact flows presented with strong information architecture, performance-first UI, and clean SEO foundations — designed for recruiters and clients, not random scrolling.

Outcome

Clear employer-facing story with easy access to projects, CV download, and contact details.

Next.jsTypeScriptTailwind CSSVercel
View project details

Want deeper scopes and outcomes? Visit the projects page for full write-ups.

View all projects

Need an infrastructure or endpoint engineer?

Email hello@dmitridoman.co.uk with the role description, contract length, and any clearance requirements.

Hybrid Greater Manchester is ideal, remote UK-wide works. I usually reply within one working day.

Available for infrastructure, endpoint, and identity-led roles starting immediately.

Email meDownload CV