Amir Khodakarami - Senior Endpoint & Infrastructure Engineer

Professional Summary

Senior Endpoint & Infrastructure Engineer with 12+ years of experience managing Windows and macOS fleets, automating device provisioning, and integrating MDM platforms with identity and SaaS systems. At NVR, led cross-platform endpoint engineering across Intune, Jamf, and automation frameworks using PowerShell and Bash—reducing manual operations by 60%. Proven expertise in zero-touch deployment (Autopilot/ABM), API-based integrations, compliance enforcement, and building secure, scalable device ecosystems. Strong collaborator with Security and IT teams, bringing an engineering mindset to endpoint management and SaaS integrations.

Core Competencies

🖥️ MDM & Device Management

JAMF Pro, Microsoft Intune, Windows Autopilot, Apple Business Manager (ABM), Zero-Touch Provisioning

⚙️ Automation & Scripting

PowerShell (Advanced), Bash, Python, Microsoft Graph API, Automated Workflows

🔐 Security & Compliance

CIS/NIST Hardening, CrowdStrike/EDR, SOC 2 Compliance, Vulnerability Remediation, Patch Automation

🔗 Systems Integration

Azure AD, Okta, JAMF/Intune + SaaS Integration, Identity-Driven Workflows

🏗️ Infrastructure

Kubernetes, Docker, Proxmox, Terraform, Ansible, Self-Hosted Solutions

📊 Monitoring & Analytics

CloudWatch, SolarWinds, Endpoint Telemetry, Compliance Reporting

Professional Experience

Senior Systems Engineer – Endpoint & Infrastructure

NVR, Inc.

Feb 2021 – Present | Reston, VA

Owned and engineered endpoint management for 6500+ Windows and macOS devices using Microsoft Intune
Designed zero-touch provisioning workflows using Windows Autopilot, reducing device setup time by 70%
Built automated compliance and vulnerability remediation workflows—reducing manual workload by 60%
Integrated Intune with Azure AD to enforce CIS and NIST baseline compliance policies
Developed proactive monitoring dashboards and endpoint telemetry using CloudWatch

Endpoint Engineer (Linux/Windows/macOS)

ATPCO

Jul 2019 – Jan 2021 | Herndon, VA

Administered JAMF Pro for 300+ macOS devices with zero-touch provisioning via Apple Business Manager
Integrated JAMF and Intune with Azure AD and Okta for automated onboarding/offboarding
Created PowerShell and Bash scripts for endpoint diagnostics and automated repair workflows
Supported cross-platform lifecycle management and security hardening initiatives

IT Systems Specialist

Neustar, Inc.

2017 – 2019 | Sterling, VA

Administered JAMF Pro for macOS fleet with policy management and compliance workflows
Managed Windows endpoints using Intune and Ivanti Neurons for patch and compliance management
Automated patch schedules and monitoring using PowerShell and CloudWatch
Configured UniFi networking infrastructure including VLANs and site-to-site connectivity

Certifications

JAMF Certified Tech (CCT)

Microsoft Azure Fundamentals (AZ-900)

Agile/Scrum Certified

Education

Associate of Science in Information Technology

Northern Virginia Community College (NOVA) | 2014