Michael Fabunmi
Coventry,West Midlands
Summary
Accomplished IT professional with extensive expertise in UNIX, Linux, and Windows environments, specialising in virtualisation technologies such as Oracle VirtualBox, VMware vSphere ESXi, and Hyper-V. Proficient in cloud platforms including Azure, AWS, GCP, and OCI, with a strong command of infrastructure as code tools like Terraform and Bicep. Demonstrates advanced skills in containerisation using Docker and Kubernetes, alongside orchestration with OpenShift. Adept at leveraging CI/CD pipelines through Jenkins and Gitlab Pipelines to streamline development processes. Experienced in database management across Cosmos DB, Oracle 12g+, MySQL, MongoDB, and DynamoDB. Committed to enhancing cybersecurity measures and data analysis capabilities to drive organisational success.
Overview
14
14
years of professional experience
1
1
Certification
Work history
Cloud Solutions Consultant
Serco UK (Microland)
09.2024 - 05.2025
- Azure ARC/Disconnected Azure Local deployment (Migration from Azure Stack HCI).
- Implementation of Azure Bastion premium and migration from CyberArk.
- Architected Just-In-Time (JIT) access workflows, time-bound role activations, and approval chains for Azure AD roles.
- Defined eligibility criteria and scoping rules for privileged role assignments.
- Deployed AVM Landing Zone modules to automate CAF-aligned subscription scaffolding, including management group hierarchies, RBAC roles, and policy assignments.
- Leveraged AVM Network modules to standardize hub-spoke topologies with Azure Firewall and Private DNS zones, ensuring consistent network governance across 50+ workloads.
- Leveraged AVM Policy modules to enforce Microsoft-recommended guardrails (e.g., encryption, NSG flow logs) via Azure Policy.
- Deployed Azure Deployment Stacks for managing resource groups at scale, enabling drift detection and automated remediation for non-compliant resources.
Cloud Infrastructure Consultant
Reply UK
05.2021 - 06.2024
- Configured Azure PIM policies for role activation, notifications, and access reviews.
- Automated PIM processes using Azure Logic Apps, PowerShell, or Azure DevOps pipelines.
- Piloted AVM Identity modules to automate Entra ID (Azure AD) B2B guest user provisioning and conditional access policies, standardizing identity governance for 10K+ users.
- Integrated AVM Management Group modules to enforce policy inheritance (e.g., "Deny-Subnet-Without-NSG") across 100+ subscriptions.
- Used AVM AKS - Baseline Cluster module to deploy hardened clusters with Azure AD integration, Azure Policy add-ons, and monitoring.
- Migration of an on-premises VM based Oracle Enterprise solution to a serverless solution using Google Cloud Storage with a load balancer backend, Google Cloud Function and Oracle@Google PAS database.
- Implementation of AVD, using Terraform to deploy an ARM Azure Virtual Desktop environment. MSIX app packaging. Regular update of the AVD image. Implementation of FSLogix using Azure AD Integrated Azure Files.
- Implementation of two greenfield hybrid M365/Azure tenants, including the use of the Simon Cloud “Configuration as Code” tool for cloning the M365 tenant configuration, and the use of a customized version of the vendor supplied “ALZ Terraform Accelerator” for meeting customer landing zone IaC compliance requirements.
- Implementation of Windows 11 Multi-session AVD “pooled” host pools, Intune based user TS environment lockdown configuration and software packaging and deployment.
- Migration from an embedded Citrix SBC environment heavily based on GPOs to AVD configuration based entirely on Intune and the Defender Suite (EndPoint, XDR, Exposure, Identity etc.).
- Implemented multi-tier application running NGINX ingress controller, ASP.NET Core Blazor Frontend and ASP.NET Core WebAPI on Kubernetes with PostgreSQL PAS on GCP.
- Designed and implemented hybrid Oracle OCI solution into the existing client Azure/M365 environment.
- Migrated legacy ARM templates to AVM Compute modules for Azure Virtual Desktop (AVD) host pools, ensuring auto-scaling, image consistency, and FSLogix integration via Microsoft’s pre-validated templates.
- Deployed AVM Storage modules to provision GDPR-compliant storage accounts with automatic blob versioning, lifecycle management, and private endpoints, reducing data leakage risks by 40%.
- Adopted AVM Security modules to automate Defender for Cloud configurations (e.g., JIT VM access, vulnerability assessments), resolving 150+ security findings in 3 months.
Identity and Cloud Migration Consultant
Nottingham County Council
10.2018 - 02.2021
- Integrated Sentinel into the environment for centralized SIEM/SOAR workflows.
- Leveraged Azure Cost Management modules to enforce budget alerts, reservation utilization, and rightsizing recommendations.
- Used Azure Blueprint Hybrid modules to integrate Azure Arc-enabled servers with on-prem VMware environments, centralizing policy enforcement for patch compliance and log aggregation.
- Migrated legacy ARM templates to Bicep for IaC deployments.
- Modernized legacy ARM templates using Bicep, leveraging automation to achieve VNet peering and Key Vault integration.
- Implementation of GKE and Migration of 3-tier WebLogic Application VM Server solution to a CI/CD GCP container platform based around GitHub Actions, Terraform, Helm and Jenkins.
- Implemented Azure Security Center, Azure Sentinel, and Defender for Cloud modules to ensure the environment adheres to the GDPR or PCI-DSS best practices and compliance requirements.
- IAM federation of Google Workspace Cloud with AAD/Active Directory using the G Suite Connector with ADFS and Google Cloud Directory Sync.
M365/Azure Cloud Solution Consultant
Hampshire County Council
09.2014 - 09.2018
- Built a CAF-aligned Azure Scaffold with hierarchical management groups, custom policy definitions, and Azure Firewall rulesets, centralizing governance for 5 geopolitical regions.
- Architected Azure Blueprints for hybrid identity scenarios, integrating MIM 2016 with Azure AD Connect for privileged access management (PAM).
- Implementation of VMware Cloud Foundation using vSphere, vSAN, NSX and the vRealize Suite in a hybrid environment. Platform customization focused on Dashboards, Workflows and Cloud Templates.
- Active Directory account migration/consolidation using ADMT and Migration of Exchange 2010 mailboxes/Skype 2015 users to Exchange 2016 and Office 365/Teams – including voice & conferencing integration.
- Design and introduction of Azure AD Connect and MIM 2016/PAM for synchronization and IAM respectively.
- Design and Implementation of IAM with AWS SSO and AD Connector for AWS WorkMail.
Identity and Collaboration Migration Consultant
Henderson Global Investors
12.2013 - 07.2014
- Configured Azure Security Center to auto-remediate misconfigurations (e.g., JIT VM access, SQL auditing), achieving PCI-DSS compliance for 15+ workloads.
- Designed Azure Blueprints with embedded policies for GDPR, ensuring data residency and audit logging for EU-based subscriptions.
- Design and Implementation of IAM solution using FIM with AAD Connector, Azure SSO and MFA.
- Designed and implemented an Azure infrastructure automation strategy using ARM templates.
Cloud Implementation Consultant
Barclays Bank Plc
05.2011 - 11.2013
- Pioneered Azure Policy use cases for early-stage governance, including cost control via budget alerts and resource group tagging enforcement.
- Implemented Azure services such as Azure Active Directory (AD), Azure storage, Azure cloud services, Azure Resource Manager (ARM), Azure Blob Storage, Azure VM, SQL Database, Azure Functions and Azure Service Bus.
- Architected a cloud-based solution for a cross-platform application that reduced latency by 40% by utilizing Azure's global infrastructure services.
- Designed and implemented a unified logging and monitoring system using Azure Log Analytics improving incident detection times by 50%.
Education
MSc - Civil Engineering
Skills
- UNIX
- Linux
- Windows
- Oracle VirtualBox
- VMware vSphere ESXi 5x
- VMware vSphere ESXi 4X
- ESX
- Hyper-V
- M365
- Azure
- GCP
- AWS
- OCI
- Terraform
- Bicep
- Cloud Formation
- Ansible
- Jenkins
- Azure Pipelines
- Gitlab Pipelines
- Docker
- Kubernetes
- OpenShift
- GitHub
- Gitlab
- Azure Repos
- Splunk
- Grafana
- Prometheus
- Azure Service Health
- Azure Network Monitor
- Data Lake
- Lakehouse
- Cosmos DB
- Oracle 12g
- MySQL
- MongoDB
- DynamoDB
- Knowledge of cybersecurity principles
- Data analysis expertise
Certification
- Google Cloud Certified - Professional Cloud Architect
- Oracle Cloud Infrastructure Multicloud Architect Associate
- Microsoft - Cybersecurity Architect Expert
- Microsoft - Azure Solutions Architect Expert
- Microsoft - MCSE
- Cisco - CCNA
- VMware - VCP
- NetApp - ASAP
Timeline
Cloud Solutions Consultant
Serco UK (Microland)
09.2024 - 05.2025
Cloud Infrastructure Consultant
Reply UK
05.2021 - 06.2024
Identity and Cloud Migration Consultant
Nottingham County Council
10.2018 - 02.2021
M365/Azure Cloud Solution Consultant
Hampshire County Council
09.2014 - 09.2018
Identity and Collaboration Migration Consultant
Henderson Global Investors
12.2013 - 07.2014
Cloud Implementation Consultant
Barclays Bank Plc
05.2011 - 11.2013
MSc - Civil Engineering
Similar Profiles
ANIRUDDH KHAREANIRUDDH KHARE
Senior Software Engineer at MicrolandSenior Software Engineer at Microland
Rajkannan MRajkannan M
Engineer at MicrolandEngineer at Microland
Vignesh PalanivelVignesh Palanivel
Senior Network Security Engineer at MicrolandSenior Network Security Engineer at Microland
Saranya ChandrapatiSaranya Chandrapati
Warehouse worker at AmazonWarehouse worker at Amazon
Chiyedza KanyembaChiyedza Kanyemba
Office assistant at Stoke Heath Community CentreOffice assistant at Stoke Heath Community Centre