Zach Thompson
As an experienced IT systems administrator Tampa Bay businesses trust, I transform chaotic IT environments into bulletproof, scalable infrastructures that drive business growth. With 9+ industry certifications — spanning endpoint management, cloud security, identity governance, and AI — I deliver enterprise-grade solutions that just work.
I'm Zach Thompson — an escalated IT technician, and self-proclaimed infrastructure nerd based in Tampa Bay, FL. I got into IT because I genuinely enjoy figuring out how things work and making them better. Five years in, that hasn't changed. I still get the same satisfaction from tracing a tricky network issue back to a misconfigured firewall rule as I did when I first started.
At Stealth Technology Group, I'm the person who gets called in when a ticket has been open too long or when something is broken badly enough that a regular tier-2 fix won't cut it. That might be a Microsoft 365 tenant with broken conditional access policies locking out an entire company, a SonicWall firewall blocking traffic no one can explain, or a backup solution that's been silently failing for weeks. I dig into the root cause, fix it properly, and document it so it doesn't happen again.
On a typical day I'm working across ConnectWise PSA tickets, Microsoft Intune deployments, SonicWall policy changes, and Azure AD / Entra ID configurations. I've deployed Intune and Autopilot to hundreds of endpoints across multiple clients — building out compliance policies, configuration profiles, and zero-touch provisioning so devices are ready to use right out of the box.
Security is a big part of what I focus on. I work in Microsoft Sentinel regularly — writing KQL queries to hunt for threats, building analytics rules, and wiring up automation playbooks so the right people get alerted when something actually matters. I've also gotten deep into identity management through my SC-300 work: designing Conditional Access policies that balance real security with not driving users crazy, setting up Privileged Identity Management so admin access is earned and audited, and running access reviews that keep permissions from piling up over time.
I manage backup and DR solutions using Axcient and Datto — and I actually test them, because a backup you've never restored is just a hope. I also work across VMware environments, handle unified communications deployments including Teams Phone, and design multi-site network infrastructure that doesn't fall apart when one link goes down. I write PowerShell scripts to handle the repetitive stuff, which frees me up to focus on the work that actually needs thinking.
- 🚀 Microsoft Intune & Autopilot: Zero-touch device provisioning and enterprise mobility management
- 🛡️ Advanced Security: Conditional Access, Microsoft Defender XDR, MFA, and zero-trust architecture
- 🔒 Network Security: SonicWall firewalls, VPN solutions, VLAN segmentation, and threat prevention
- 💾 Business Continuity: Datto and Axcient backup solutions with tested disaster recovery procedures
- ☁️ Hybrid Cloud: Azure AD / Microsoft Entra ID, SharePoint, DFS replication, and on-premises integration
- 📞 Communications: Microsoft Teams Phone, Jabra devices, and unified communications deployment
- ⚡ Automation: PowerShell scripting, process optimization, and infrastructure as code
- 📊 Monitoring & Analytics: Microsoft Sentinel SIEM, RMM tools, and proactive performance optimization
Associate-level Microsoft certifications covering endpoint management, security operations, and identity governance — the most in-demand skill areas for modern IT roles.
Endpoint Administrator
- Microsoft Intune — device enrollment, compliance policies, app deployment
- Windows Autopilot — zero-touch provisioning & hybrid AAD join
- Endpoint security — attack surface reduction, Defender for Endpoint integration
- Configuration profiles — settings catalog, templates, scripts deployment
- Co-management — Intune + ConfigMgr workload management
- Update management — Windows Update for Business, feature & quality rings
Security Operations Analyst
- Microsoft Sentinel — SIEM/SOAR, analytics rules, ASIM parsers
- KQL (Kusto Query Language) — threat hunting & custom detection
- Microsoft Defender XDR — Endpoint, Identity, Office 365, Cloud Apps
- Incident response — playbooks, automation rules, MITRE ATT&CK mapping
- Microsoft Defender for Cloud — workload protection & posture management
- Microsoft Security Copilot — promptbooks, investigation acceleration
Identity & Access Administrator
- Microsoft Entra ID — Conditional Access, MFA/SSPR, Identity Protection
- Privileged Identity Management (PIM) — JIT access, approval workflows
- Identity Governance — entitlement management, access packages, access reviews
- Workload identities — managed identities, service principals, app registrations
- Hybrid identity — Entra Connect, password hash sync, pass-through auth, SSO
- FIDO2 passkeys, certificate-based auth, Global Secure Access (ZTNA)
