Abul Hassan Ali

469-846-9371| syedabulhassanali348@gmail.com| Dallas, TX

Summary
Microsoft 365 Engineer with 8+ years of experience in administering, managing, and optimizing enterprise collaboration
and security solutions. Expertise in Exchange, Azure, Active Directory, Entra ID, SharePoint, Teams, and Okta, with a
strong focus on security, identity management, and cloud migrations. Skilled in executing Office 365 deployments,
Exchange Online migrations, and SharePoint administration to enhance productivity and compliance. Experienced in
implementing security policies, identity governance, and access controls to protect enterprise environments. Proficient in
configuring and troubleshooting Microsoft 365 services, ensuring seamless collaboration and operational efficiency.
Dedicated to Managing modern cloud technologies to drive innovation, IT operations, and strengthen organizational
security.

Skills
• Office 365 • Azure AD
• Microsoft 365 • Email Security
• SharePoint Online • Azure Cloud
• Exchange Online • User Authentication
• Microsoft teams • Identity and Access Management (IAM)
• Cloud Migrations • Multi Factor Authentication (MFA)
• Outlook • Single Sign On (SSO)
• OneDrive for Business • Group Policy
• PowerShell Scripting • Entra ID
• Active Directory • Intune

Experience
Microsoft 365 Engineer
PNC Financial Services | Pittsburgh, PA
Jan 2023 – Present
 Administered and optimized Microsoft 365 services, including Exchange Online, SharePoint Online, Teams,
OneDrive, and Power Platform, ensuring collaboration and security.
 Implemented and enforced security policies using Microsoft Defender for Office 365 and Microsoft Purview,
strengthening data protection, threat detection, and compliance adherence.
 Implemented and optimized Microsoft 365 licensing management, ensuring cost-effective allocation of E3/E5 licenses
and enforcing compliance with organizational policies.
 Monitored and reported on tenant health using Microsoft Admin Center, Compliance Center, and Defender Security
Portal, proactively identifying and resolving issues.
 Executed G Suite to Microsoft 365 migration, handling data transfer, email reconfiguration, and user onboarding
while minimizing downtime and ensuring a smooth transition.
 Managed and administered Exchange 2016/2019 and Exchange Online, including mailbox provisioning, mail flow
optimization, and hybrid configurations.
 Performed Exchange Online and on-prem migrations, utilizing BitTitan MigrationWiz, Quest, and native Microsoft
tools to ensure minimal downtime.
 Implemented and fine-tuned Exchange Online Protection (EOP) and Microsoft Defender for Office 365 (ATP) to
prevent phishing, malware, and spam threats.
 Utilized Message Trace, Mail Flow Insights, and Threat Explorer to investigate security incidents and analyze email
delivery trends.
 Integrated Exchange with Azure AD/EntraID Application Proxy and implemented ADFS for Single Sign-On (SSO)
authentication across enterprise applications.
 Developed PowerShell scripts to automate Exchange Online administration, including bulk user provisioning,
mailbox permission management, and compliance reporting.
 Migrated security policies from Proofpoint to Microsoft Defender for Office 365, ensuring feature parity and a
seamless transition.
 Configured and monitored Azure Site Recovery (ASR) for Exchange Server, reducing downtime and enabling quick
failover during outages.
 Utilized Exchange Message Trace and Transport Logs to analyze and troubleshoot mail delivery issues.
 Implemented and enforced Microsoft Purview security policies, Data Loss Prevention (DLP), and sensitivity labels.
 Integrated SharePoint with Microsoft Teams, OneDrive, Outlook, and Power BI, enhancing cross-platform
productivity and collaboration.
 Designed and developed custom SharePoint solutions, workflows, and apps using Power Apps, Power Automate, and
SPFx (SharePoint Framework)
 Led SharePoint migrations from on-premises to SharePoint Online (M365) using tools like ShareGate, Metalogix, and
SPMT, ensuring zero downtime and data integrity.
 Configured IRM (Information Rights Management) and role-based access controls (RBAC) to prevent unauthorized
data access and leakage.
 Managed and configured Proofpoint Social Patrol to monitor and protect corporate social media channels from
impersonation, phishing attempts, and reputational risks.
 Implemented proactive alerting for suspicious activity on LinkedIn, Twitter, Facebook, and Instagram, enabling swift
investigation and mitigation of social engineering threats.
 Administered Proofpoint Enterprise Archive (PEA) for secure, compliant storage of corporate email, ensuring
retention policies aligned with regulatory requirements such as GDPR, HIPAA, and SOX
 Configured and managed email journaling and archiving connectors between Exchange/Office 365 and Proofpoint
Enterprise Archive, supporting hybrid and cloud deployments.
 Automated SharePoint provisioning, governance, and user access management using PowerShell, PnP PowerShell,
and Power Automate, improving operational efficiency.
 implemented Microsoft Teams governance framework, defining policies for lifecycle management, guest access, and
data retention, ensuring compliance with NIST, GDPR, and HIPAA standards.
 Managed Microsoft Teams Admin Center & PowerShell-based automation, Managed user provisioning, policy
enforcement, and group lifecycle management.
 Teams implemented and supported Teams telephony solutions, integrating calling plans, Direct Routing, and third-
party providers to enable efficient voice communication and enhance user experience.
 Deployed Microsoft Teams Phone with Direct Routing, integrating Session Border Controllers (SBCs) for seamless
PSTN connectivity.
 Utilized Microsoft Call Quality Dashboard (CQD) and Power BI to analyze Teams usage trends and proactively
address network-related issues.
 Designed and optimized a multi-domain, multi-forest Active Directory (AD) infrastructure supporting 60k users,
ensuring high availability and seamless authentication.
 Configured and secured Azure AD Connect, ADFS, and Conditional Access Policies to enable hybrid identity with
secure authentication across cloud and on-prem environments.
 Implemented a comprehensive Active Directory disaster recovery plan, reducing recovery time using Azure AD
Backup, Veeam, and AD snapshots.
 Designed and deployed Multi-Factor Authentication (MFA) using Azure MFA, Conditional Access, and
SAML/OAuth-based authentication, significantly reducing unauthorized access risks
 Designed IAM governance frameworks ensuring Active Directory security compliance with NIST, CIS, ISO 27001,
and HIPAA standards.
 Managed IAM security posture by implementing Privileged Identity Management (PIM), Just-In-Time (JIT) access
controls, and automated identity audits.
 Implemented SSO for hybrid and cloud applications, improving user experience and security compliance across
Office 365, Okta, and third-party identity providers.
 Created and maintained PowerShell automation for reporting on Exchange, Teams, and SharePoint environments,
generating custom reports on user activity, permissions, and system health.
 Automated administrative tasks using PowerShell to configure and manage Azure AD/EntraID, Active Directory, and
Microsoft 365 security policies, ensuring consistent implementation of organizational standards.
 Administered and managed OneDrive for Business Environment, configuring sharing settings, storage quotas, and
data retention policies to ensure secure and efficient document management.
 Monitored and optimized OneDrive synchronization and user access issues, ensuring smooth file sharing,
collaboration, and backup functionality across devices within the organization.
 Implemented comprehensive Microsoft Intune policies, managing device configurations, security, and application
deployment across a diverse enterprise environment of Windows, macOS, iOS, and Android devices, ensuring
compliance with company standards.
 Integrated Intune with Azure Active Directory (AAD), Microsoft 365, and third-party systems, optimizing identity
and device management workflows, improving endpoint security, and ensuring seamless user experiences across all
devices. Administered Okta for identity and access management, configuring user authentication, provisioning, and
Single Sign-On (SSO) integrations with cloud-based applications to enhance security of user access.
 Implemented and configured OneDrive for Business across the organization, enabling secure cloud storage and
collaboration within Microsoft 365.
 Configured OneDrive Known Folder Move (KFM) for seamless redirection of Desktop, Documents, and Pictures
folders to the cloud, reducing data loss risks.
 Implemented automated OneDrive provisioning and permissions management using PowerShell and Microsoft Graph
API.
 Managed Okta lifecycle policies for user provisioning, deprovisioning, and role-based access control (RBAC),
ensuring efficient and secure management of employee and external identities across applications.
 Managed and utilized ServiceNow, Jira, and Remedy for ticketing, incident management, and reporting, ensuring
timely resolution of IT service requests and generating detailed reports for performance analysis and process
improvement.
 Implemented Viva Engage to replace Yammer Communities, ensuring seamless transition and improved employee
engagement across M365.
 Administered Viva Engage through the Microsoft 365 admin center, configuring network settings, roles, and
compliance policies.
 Integrated Viva Engage with Teams and Outlook, enhancing discoverability and driving higher user adoption across
departments.
 Supported Outlook client connectivity in Exchange Hybrid environments, ensuring seamless user experience during
mailbox moves between on-premises Exchange and Exchange Online.
 Configured and troubleshot Autodiscover and Outlook Anywhere (RPC over HTTP / MAPI over HTTP) to ensure
consistent profile generation and mailbox access across hybrid mailboxes.
 Resolved Outlook issues related to legacy authentication, modern authentication, profile corruption, and service
discovery, reducing ticket volume by over 40%.

Microsoft 365 Engineer

Allstate Insurance| Northbrook, IL
Feb 2020 – Dec 2022
 Managed M365 tenant configuration, including Exchange Online, SharePoint Online, Teams, and other services.
Optimized configurations to improve performance, security, and user experience.
 Implemented and managed Microsoft Defender for Office 365, significantly reducing malware infections and
phishing attacks. Developed and maintained security policies to protect sensitive data and ensure compliance with
security best practices.
 Managed the migration from G Suite to M365, increase in collaboration efficiency and reduction in IT support tickets.
Successfully managed all phases, from planning and execution to user training and post-migration support.
 Managed M365 tenant configuration, including Exchange Online, SharePoint Online, Teams, and other services.
Optimized configurations to improve performance, security, and user experience.
 Administered Microsoft 365 license management, ensuring efficient allocation and usage of E3/E5 licenses, and
conducted periodic audits to ensure alignment with business requirements and cost efficiency.
 Administration and optimization of on-premises Exchange 2016/2019 and Exchange Online environments, ensuring
seamless email communication, system health, and uptime.
 Migrated mailboxes from legacy Exchange servers to Exchange Online (Microsoft 365) using tools like BitTitan
MigrationWiz and Exchange Online Migration Tool (EOE), ensuring zero downtime and flawless data integrity.
 Implemented robust email security policies, including the configuration of SPF (Sender Policy Framework), DKIM
(DomainKeys Identified Mail), and DMARC (Domain-based Message Authentication, Reporting & Conformance),
significantly reducing phishing and spam.
 Administered SharePoint Online and On-Premises environments, including site creation, user permissions, and
custom workflows, ensuring efficient collaboration and content management within the organization.
 Configured and maintained retention and compliance policies in Microsoft Purview for SharePoint, safeguarding
critical content and ensuring compliance with industry regulations and internal data governance standards.
 Migrated content and site collections from on-premises SharePoint environments to SharePoint Online using tools
such as Sharegate and the SharePoint Migration Tool (SPMT), maintaining data integrity and minimizing user impact.
 Managed Teams configurations by setting up global settings, user policies, and messaging standards to align with
organizational needs and enhance collaboration across departments.
 Migrated users and data from Skype for Business to Microsoft Teams, ensuring a smooth transition of chat histories,
meeting schedules, and contacts without disrupting communication workflows.
 Configured and monitored Teams security settings, including meeting policies, external access, and guest access
controls, to ensure secure and compliant usage of collaboration features across the organization.
 implemented secure Azure AD/Entra ID infrastructures, including ADFS and Azure AD Connect, to enable hybrid
identity management, ensuring efficient synchronization between on-premises AD and Azure AD/Entra ID
environments.
 Improved user experience by automating Self-Service Password Reset (SSPR) and account recovery procedures in
Azure AD, significantly reducing helpdesk ticket volumes.
 Configured and integrated ADFS with Azure AD to enable Single Sign-On (SSO) for enterprise applications,
simplifying user authentication while maintaining security.
 Coordinated with legal and PR teams to enforce takedown of fraudulent social accounts identified through Social
Patrol, reducing brand impersonation incidents by over 70%.
 Provided Tier 3 support for escalated archive retrieval and indexing issues, optimizing search performance and user
access experience.
 Delivered regular risk assessment reports and executive dashboards highlighting trends in social media threats and
mitigations.
 Collaborated with compliance and legal teams to generate reports and support internal/external audits leveraging
archived email data.
 Performed Azure AD synchronization and migration, using Azure AD Connect to sync on-premises Active Directory
with Azure AD/Entra ID, ensuring smooth user data transfer and consistent account management.
 Managed and configured Azure AD B2B and B2C tenants to facilitate secure collaboration with external partners and
customers, ensuring proper identity governance and user access control.
 Created automated workflows using PowerShell for managing security policies, group memberships, and role-based
access control (RBAC) in Azure AD/Entra ID, ensuring compliance with organizational security standards.
 Automated reporting processes with PowerShell, generating custom reports on system health, usage metrics, and
security status for Microsoft 365 services, enabling monitoring and informed decision-making.
 Administered OneDrive for Business configurations, including file sharing settings, sync issues, and quota
management, ensuring compliance with organizational policies and enhancing user experience.
 Managed and monitored OneDrive usage and storage, implementing retention and backup policies to ensure data
integrity and facilitate recovery in case of accidental file deletions or data loss.
 Migrated on-premises file storage (Network Drives, Home Directories) to OneDrive for Business using SharePoint
Migration Tool (SPMT) and third-party tools.
 Configured OneDrive sync policies via Intune and Group Policy to optimize performance and prevent unauthorized
data synchronization.
 Implemented automated OneDrive provisioning and permissions management using PowerShell and Microsoft Graph
API.
 Configured and managed device compliance policies in Microsoft Intune, enforcing security settings such as
encryption, password requirements, and app deployment across Windows, iOS, and Android devices to ensure
corporate data protection.
 Configured Okta for identity and access management (IAM), enabling Single Sign-On (SSO), automated user
provisioning, and multi-factor authentication (MFA) to enhance security and simplify user access to enterprise
applications.
 Configured compliance and retention policies in Purview for Viva Engage conversations to meet regulatory
requirements.
 Worked with Viva Suite licensing, enabling proper access to Viva Engage and other Viva modules like Insights and
Learning.
 Utilized Viva Insights to monitor engagement metrics, community growth, and communication effectiveness within
Viva Engage.
 Managed cutover and staged migrations with zero user disruption, validating Outlook functionality pre/post-move,
including shared mailbox and calendar access.
 Implemented client access namespaces and certificate configurations to ensure Outlook clients could access hybrid
mailboxes securely from internal and external networks.
 Configured and troubleshot cross-premises calendar sharing and delegation in Outlook between on-prem and
Exchange Online users, ensuring consistent free/busy lookups and permissions.
 Integrated Outlook with Azure Information Protection (AIP) and Microsoft Purview for secure email classification,
labeling, and rights management across hybrid mailboxes.
Office 365 Administrator
PetSmart| Phoenix, AZ
Oct 2017 – Jan 2020
 Administered Office 365 suite including Exchange Online, SharePoint, OneDrive, and Teams, managing user roles,
permissions, and security policies to maintain optimal system performance and collaboration.
 Managed email security with third-party gateways such as IronPort, Mimecast, and Barracuda, configuring filtering
rules, spam detection, and malware protection to secure inbound and outbound mail traffic.
 Managed G-Suite to Office 365 migration, migrating emails, calendar data, and files to Microsoft 365 while ensuring
data integrity and minimal disruption to user access and productivity.
 Handled Office 365 license management, allocating and auditing licenses across multiple services (Exchange, Teams,
SharePoint) to optimize cost and ensure appropriate access based on user roles and needs.
 Administered Exchange Server and Exchange Online environments, managing mail flow, mailboxes, and transport
rules to optimize email delivery and ensure secure communication across the organization.
 Migrated from on-premises Exchange to Exchange Online, utilizing tools such as the Exchange Migration Tool and
BitTitan MigrationWiz to ensure a smooth transition while minimizing downtime and preserving mailbox data
integrity.
 Integrated third-party email security solutions such as Mimecast, Barracuda, and IronPort with Exchange Online,
configuring advanced filtering, anti-phishing, and malware protection to enhance email security across the
organization.
 Administered SharePoint site collections and libraries, configuring permissions, content approval workflows, and
metadata management to enhance collaboration and ensure proper document management across teams.
 Migrated on-premises SharePoint sites to SharePoint Online using ShareGate, ensuring data integrity and optimal site
performance while minimizing downtime and maintaining user access during the migration process.
 Administered Teams policies and configurations, including user settings, meeting policies, and app integrations, to
enhance user collaboration and meet organizational compliance requirements.
 Migrated users from Skype for Business to Microsoft Teams, ensuring a smooth transition of chat histories, presence
information, and meeting schedules while minimizing service interruptions.
 Implemented Azure AD/Entra ID for IAM, configuring conditional access policies, multi-factor authentication (MFA),
and identity protection to secure user access and meet compliance standards for enterprise applications.
 Managed ADFS and Azure AD/Entra ID integration, enabling Single Sign-On (SSO) across cloud and on-premises
applications and ensuring secure user authentication with identity management.
 Performed Azure AD migrations and synchronization, utilizing Azure AD Connect to synchronize on-premises Active
Directory with Azure AD and implementing B2B and B2C tenant configurations to securely manage external partner
and customer access.
 Developed PowerShell scripts to automate the provisioning and de-provisioning of user accounts across Office 365
services, improving efficiency in user lifecycle management and ensuring data accuracy.
 Automated system health checks and maintenance tasks using PowerShell, generating reports on server status, user
activity, and license usage, which provided proactive insights and facilitated timely interventions.
 Configured OneDrive for Business policies to manage file sharing, syncing, and retention settings, ensuring
compliance with organizational security standards while optimizing user collaboration.
 Monitored and managed OneDrive storage quotas and usage, ensuring efficient data allocation and identifying
potential issues related to syncing or data storage, providing timely resolutions to users.
Office 365 Engineer
UnitedHealth Group| Minnetonka, MN
Jul 2015 – Oct 2017
 Administered Microsoft 365 suite, including Exchange Online, Teams, SharePoint, and OneDrive, optimizing security
policies, user settings, and service configurations to ensure efficient cloud-based collaboration and data protection.
 Managed tenant administration and license allocation, ensuring appropriate service access and compliance by
assigning and auditing Microsoft 365 licenses across various services, while minimizing costs for the organization.
 Administered Exchange Online and on-premises environments, managing mailboxes, mail flow, transport rules, and
retention policies to optimize email delivery and security for the organization.
 Migrated from Exchange 2013 to Exchange Online, utilizing the Exchange Online Migration tool to ensure smooth
data migration and continued service availability with minimal user disruption.
 Integrated Exchange with third-party email security gateways, such as Mimecast, IronPort, and Barracuda, to filter out
spam, malware, and phishing emails, ensuring the integrity and security of all inbound and outbound messages.
 Migrated mailboxes from legacy Exchange to Office 365 using tools like Exchange Migration Wizard and third-party
solutions such as Quest and BitTitan, ensuring a smooth and efficient transition for end-users with minimal downtime.
 Configured and managed SharePoint site collections, ensuring proper permissions and access controls to maintain
security and enhance collaboration across teams and departments.
 Migrated content from SharePoint 2013 to SharePoint Online, utilizing tools like ShareGate to ensure data integrity,
proper structure, and minimal disruption during the transition.
 Implemented SharePoint Online security measures, including configuring data retention policies, setting up auditing
logs, and enabling multi-factor authentication (MFA) for enhanced data protection and compliance.
 Managed Teams channels, apps, and policies, configuring security settings, user roles, and permissions to ensure
controlled collaboration and meet organizational compliance requirements.
 Migrated legacy communication tools to Microsoft Teams, using the Teams Migration tool to transition users and
data, enabling an efficient and centralized communication platform for the entire organization.
 Implemented Teams governance and compliance strategies, including data retention policies and eDiscovery
configurations, ensuring adherence to industry standards and reducing security risks.
 Implemented Azure AD for Identity and Access Management (IAM), configuring single sign-on (SSO) for cloud-
based applications, user authentication while enhancing security and compliance across multiple platforms.
 Configured Multi-Factor Authentication (MFA) in Azure AD, enforcing additional layers of security for users
accessing critical applications, reducing the risk of unauthorized access and ensuring regulatory compliance.
 Managed Azure AD Connect for synchronization of on-premises Active Directory (AD) with Azure AD, enabling
hybrid identity management and seamless user experience across both environments.
 Migrated from ADFS to Azure AD for federated identity management, ensuring secure access to both on-premises and
cloud applications, and improving user login experiences through SSO.
 Implemented Conditional Access Policies within Azure AD, ensuring adaptive security measures based on user
location, device compliance, and other criteria, reducing unauthorized access risks while supporting remote work
capabilities.
 Automated user account provisioning and deprovisioning in Active Directory and Azure AD using PowerShell scripts,
reducing manual intervention and ensuring accurate and timely updates to user access.
 Developed PowerShell scripts for Office 365 license management, automating license assignments and removals
based on user roles and departments, improving operational efficiency and minimizing errors.
 Configured OneDrive for Business policies, including sharing settings, data retention, and sync options, to ensure
secure and compliant file storage and sharing across the organization.
 Managed OneDrive user provisioning and access controls, implementing automated workflows for file sharing and
document collaboration, while maintaining data security and compliance with organizational standards.
Systems Engineer
Georgia Pacific | Atlanta, GA
Oct 2014 – Jul 2015
 Designed and managed cloud infrastructure solutions utilizing AWS and Azure, overseeing the deployment of virtual
machines, storage options, and networking components to drive operational efficiency and scalability.
 Administered DNS servers in Windows Server environments (2008, 2012) to ensure optimal name resolution and
network connectivity.
 Coordinated the deployment and management of Windows Server 2008/2012, addressing LAN/WAN connectivity
issues and performing Windows Domain Controller and server administration tasks.
 Contributed to managing core Microsoft technologies, including Active Directory Domain Controllers, GPOs, FSMO
roles, DNS, DHCP, DFS, WSUS, and clustering technologies such as NLB.
 Implemented and configured Active Directory Services (ADS), DHCP, and DNS to enhance network operations and
user access.
 Monitored Exchange email system health, managing email queue statuses and DAGs, while performing routine
backups to maintain data integrity and availability.
 Participated in Windows Server installation and configuration, providing technical support to enhance performance,
security, and system reliability.
 Configured and administered Active Directory services on Windows Servers, enforcing security measures, refining
user access controls, and maintaining directory service integrity.
 Managed user accounts, groups, and security policies within Active Directory, developing intricate permission
structures aligned with industry best practices to reduce security risks.
 Supported the deployment and configuration of network systems and firewall solutions, utilizing advanced
troubleshooting techniques and implementing security protocols to reinforce network infrastructure.
 Installated and troubleshooting of Active Directory, DNS, and DHCP services across Windows Server platforms
(2008, 2012), ensuring high availability and performance.
 Administered Windows Server 2008 domains and executed smooth migrations to Windows Server 2012 Active
Directory services with minimal disruption.
 Provided technical support for desktop and laptop systems, configuring IP phones and utilizing ticket monitoring
systems to expedite issue resolution and improve user satisfaction.
Windows Engineer
Scripps Health | San Diego, CA
Jan 2013 – Oct 2014
 Managed the deployment and ongoing maintenance of Windows Server environments, primarily focusing on
Windows Server 2013 configuring essential roles, features, and services to optimize performance and align with
project-specific requirements.
 Managed Active Directory operations, overseeing complex user and group management, implementing group policies,
and supervising domain controller replication to enhance security and maintain an organized directory structure.
 Coordinated patch management via Windows Server Update Services (WSUS), scheduling, approving, and
monitoring updates to ensure timely system compliance and strengthen security.
 Planned and executed Active Directory domain migrations and domain controller upgrades, focusing on minimizing
downtime and ensuring continuous user authentication during the migration process.
 Designed and implemented disaster recovery strategies, incorporating advanced Windows Server backup and recovery
solutions to ensure business continuity and mitigate data loss or server failure risks.
 Enhanced Windows security by implementing multi-layered protection measures, including BitLocker encryption,
Windows Firewall configurations, and security baselines to prevent unauthorized access and protect against data
vulnerabilities.
 Utilized Windows Performance Monitor to analyze system performance metrics and event logs, identifying and
addressing bottlenecks to optimize resource allocation and improve server responsiveness.
 Administered and optimized Hyper-V environments, overseeing virtual machine provisioning, virtual network
configurations, and resource management to maximize server efficiency and support cost-effective virtualization
initiatives.
 Installed and configured web servers, creating websites and application pools to ensure smooth application hosting.
 Managed user accounts and performed administrative tasks on Active Directory, including overseeing Users,
Organizational Units (OUs), and Group Policies.