About

If you need enterprise macOS built right — from zero-touch provisioning to zero trust — that's what I do.

I'm a macOS Platform Architect with 20+ years designing, automating, and scaling Apple endpoint environments at organizations like MD Anderson Cancer Center (5,000+ Macs, 26,000+ Windows endpoints) and ExxonMobil (Contractor). I specialize in the full device lifecycle: procurement to decommission, with heavy emphasis on automation, security compliance, and seamless end-user experience.

Eagle Scout. Scoutmaster, BSA Troop 584.

Experience

ExxonMobil (Contractor)

Sep 2025 – Present

Principal macOS Platform Architect

Spring, Texas

Sole architect for ExxonMobil's enterprise macOS platform (as contractor) — architected to scale to 10,000+ endpoints, building the full MDM and management stack on Microsoft Intune at a 90,000-employee energy supermajor.

Platform Architecture

  • Architected full macOS device lifecycle on Intune & Apple Business Manager — enrollment, compliance, configuration profiles, OS patching, and decommission
  • Implemented Entra Platform SSO with Secure Enclave-backed credentials, SCEP certificates, and 802.1X network authentication
  • Integrated macOS into Zero Trust architecture spanning iBoss, Appgate SDP, and Infoblox — conditional access, compliance enforcement, and network segmentation
  • Leveraged Platform SSO Kerberos TGT to automate file share mapping across reboots and network transitions

Automation & Delivery

  • Engineered zero-touch provisioning pipeline (Swift Dialog + Azure Blob Storage) — unbox-to-productive in under 10 minutes with zero IT touch
  • Author and maintain bash/zsh automation for deployment, compliance, patching, and platform operations
  • Package and deploy enterprise applications via Intune app delivery workflows

Key Achievements

  • Built ExxonMobil's macOS platform (as contractor) from the ground up — zero-touch provisioning, compliance, enterprise auth, and software delivery where none existed at scale
  • Diagnosed and escalated a multi-vendor Platform SSO / Kerberos regression undetected by Apple and Microsoft — currently under active joint investigation by both vendors

MD Anderson Cancer Center

Oct 2005 – Sep 2025

Senior Systems Analyst – macOS Platform Architect

Houston, Texas

Led the architecture, automation, and lifecycle management for 5,000+ macOS endpoints using Jamf Pro, and administered 26,000+ Windows endpoints via Intune and Configuration Manager.

  • Engineered zero-touch onboarding, OS/app patching, and compliance enforcement, significantly reducing manual effort
  • Deployed Jamf Connect with Entra ID; redeveloped workflows for true zero-touch provisioning — cutting provisioning time from hours to minutes
  • Authored Bash, Python, and PowerShell scripts to extend MDM capabilities, automate patching, enforce compliance, and improve reporting
  • Built Power Apps and Power Automate workflows integrating with Jamf, Intune, and Microsoft 365
  • Managed on-premise Jamf Linux server clusters (Apache Tomcat, Nginx) behind F5 load balancers
  • Served as top technical escalation point for macOS, collaborating with Apple, Microsoft, and Jamf
  • Developed documentation and delivered training for 50+ analysts on macOS support practices

Analysts International

Jun 2004 – Oct 2005

Apple Field Service Engineer / PC & Mac Consultant

Houston, Texas

Provided onsite Apple hardware repair and technical consulting for multiple Texas school districts and small business clients.

Apple

Oct 2002 – Jun 2004

AppleCare Enterprise Server Technical Support

Austin, Texas

Advanced technical support for Apple's enterprise server products. Promoted from Education support to Tier 2, selected for the iTunes Music Store launch project, then promoted to Enterprise support.

S1 Corporation

Feb 2000 – Sep 2002

Level 2 Support Engineer

Austin, Texas

Remote Level 2 technical support for S1's banking software solutions on Windows NT/2000 platforms.

Dell Technologies

Jan 1999 – Jan 2000

Major Accounts Senior Technician

Round Rock, Texas

Component-level hardware and software support for Dell's large corporate clients. Premier Access certified across all product lines.

AT&T Wireless PCS LLC

Jun 1998 – Jan 1999

Call Center Support Representative

Austin, Texas

Second-level support for AT&T's CBIS billing system. Achieved Gold Club award for customer service excellence.

Skills

Jamf Pro Microsoft Intune Entra ID Platform SSO Zero Trust Bash Python PowerShell Apple Business Manager SCCM Power Platform AI / Machine Learning Zero-Touch Provisioning F5 BIG-IP

Certifications

Jamf Certified Expert – Jamf Pro (400) MCITP: Enterprise Administrator Apple Certified Technical Coordinator ITIL v3 Foundation CCNA F5 BIG-IP

Education

Western Governors University

2024

Master of Science – Information Technology Management

Texas A&M University-Commerce

Bachelor of Applied Arts and Sciences – Organizational Leadership

Pierpont Community and Technical College

Associate of Applied Science – Business