Scott Lowry

Summary

Microsoft Security Engineer with experience securing hybrid M365 environments for global remote teams. Skilled in Conditional Access, Intune, PIM, and automation with Graph and REST APIs. Aligned with DevOps to streamline identity, access, and device compliance in Agile environments.

Skills

• Identity & Security: Entra ID, Active Directoy, Auth0, Conditional Access, MFA, PIM, SSO, RBAC
• Endpoint Management: Intune, Kandji, Mosyle, Apple Business Manager, Autopilot, Defender
• Automation & Tools: PowerShell, Bash, Bicep, Azure CLI, MS Graph, REST APIs
• Collaboration Tools: Exchange Online, Teams, SharePoint, Freshservice, Jira, GitHub

Certifications

• Microsoft | Microsoft 365 Administrator Expert (MS-102) | January 2025
• Microsoft | Identity & Access Administrator Associate (SC-300) | January 2025
• Microsoft | Azure Security Engineer Associate (AZ-500) | In Progress

Professional Experience

Swiftly | Seattle, WA | Oct 2022 - Sep 2024
Senior Systems Engineer

• Implemented Conditional Access, Defender for Cloud, and RBAC; improved Microsoft Secure Score by 25%
• Deployed and managed Intune for Windows and Kandji for macOS devices, including Mac Studios used in Azure DevOps pipelines; increased device compliance from 65% to 95%
• Automated onboarding and SaaS app provisioning in Freshservice; reducing provisioning time and errors by 40%
• Migrated acquired company from Google Workspace to Exchange Online; handled mail, DNS, and identity
• Automated B2B access in Entra ID and Auth0 for secure external collaboration with clients
• Managed access and integrations for GitHub, Azure DevOps, AppCenter, Jira, Wrike, HubSpot, and other SaaS platforms

Pamplin Communications | Milwaukie, OR | Jul 2021 - May 2022
Systems Administrator

• Migrated from Mitel to Zoom Phone integrated with Entra ID for SSO and automated deployment via MDM and Group Policy for ~150 users
• Deployed Mosyle to enforce MDM policies across unmanaged macOS devices, improving endpoint compliance and visibility for ~75 devices
• Implemented SPF, DKIM, and DMARC for marketing emails, reducing spoofing risk and improving inbox deliverability by 15%
• Secured Sophos VPN with Entra ID MFA using NPS extension to strengthen remote access

Direct Marketing Solutions | Portland, OR | Nov 2018 - Jul 2021
Systems Administrator

• Migrated ~200 mailboxes from on-prem Exchange to Exchange Online, managing mailbox moves, DNS, and mail flow
• Deployed Intune for ~250 Windows and macOS devices; served as Apple SME for compliance and enrollment
• Integrated Microsoft 365 with on-prem Active Directory via Entra ID with E5 licensing for ~150 users
• Replaced legacy antivirus with Defender for Endpoint and deployed Sentinel for centralized event monitoring

IT Technician

• Served as Tier I-III helpdesk, deployed workstations, and assisted with SOC 2 compliance prior to promotion

Projects

Microsoft 365 & Azure Security Lab | December 2024 - Present

• Created and actively maintain a personal Microsoft 365 Business Premium tenant with Entra ID P2, Intune, Defender, and Exchange Online
• Designed and tested security configurations including Conditional Access, PIM, and DLP aligned to Zero Trust frameworks
• Deployed ScottLowry.net as an Azure Static Web App using GitHub Actions for automated CI/CD
• Simulated home lab infrastructure in Azure using Infrastructure as Code (IaC) with Bicep and Azure CLI
• Earned Microsoft 365 Administrator Expert (MS-102) and Identity & Access Administrator (SC-300) certifications during this period and now using lab to prepare for Azure Security Engineer Associate (AZ-500) certification

Education

Brookstone School | Columbus, GA
High School Diploma