Matteo Solari

Senior System Engineer

Zurich, Switzerland

17.12.1983

Happy husband | Proud father

Operating, optimizing, and evolving business-critical environments.

Helping organizations strengthen and continuously improve business-critical environments through expertise in IT infrastructure, identity & access, and security services — with reliability and business continuity at the core.

About me

Secure Infrastructure Reliable Operations Business Continuity

About

Senior engineer,
trusted operator.

With over 15 years in IT infrastructure, I have built a career around operating complex, business-critical environments with calm and precision. My work spans on-premises, hybrid, and cloud-integrated platforms — always with a focus on what actually matters: systems that stay up, stay secure, and stay compliant.

Today, as a Senior System Engineer within a global organization spanning multiple countries and production sites, I help shape, operate, and continuously improve global IT infrastructure, identity & access, and security services across a genuinely international environment — where reliability and business continuity are critical to keeping the business running.

That standard was shaped earlier in my career, during seven years in financial services, where regulatory demands and service reliability were never optional. I led audits, drove security hardening programs, managed disaster recovery, and owned infrastructure transitions that could not afford to fail. I remain pragmatic rather than theoretical — I care about documentation, maintainability, and handovers that actually work, building things so that the next person, or future me, is never left guessing.

15^{+ years}

in IT Infrastructure

7^{+ years}

in Security & Compliance

6^{+ years}

in Hybrid Azure Environments

Core Strengths

Where I
add value.

My strengths are shaped by real-world challenges in complex environments. They reflect a pragmatic mindset, consistent delivery, and full ownership.

Reliability

I have a disciplined approach to uptime. Business-critical operations run on the systems I manage, which means reliability is non-negotiable. I prioritise preventive operations, structured change management, and robust documentation to keep environments stable and predictable.

Security

Security is embedded into how I operate, not added later. I design and enforce identity and access controls, including Conditional Access and SSO. I work within ISO 27001-aligned environments, coordinating vulnerability remediation and enforcing firewall governance.

Automation

Automation is a core part of how I operate. It reduces manual effort, increases reliability, and ensures repeatable processes. I build PowerShell solutions for AD management, security reporting, and audit preparation that others can understand, use, and maintain.

Hybrid Infrastructure

I am equally comfortable on-premises and in the cloud. I have administered Windows Server, VMware, Active Directory, Azure, and Microsoft 365 as interconnected systems — designing and maintaining environments that span both worlds effectively.

Operational Ownership

I treat infrastructure as mine to own, not just maintain. From audits to data center relocations, I take responsibility for outcomes. That includes proactive monitoring, honest incident reporting, and always knowing the state of what I manage.

Problem Solving

Infrastructure problems often arrive without a clear manual. I work methodically, stay calm under pressure, and know when to escalate. My escalation track record includes direct collaboration with Microsoft engineers on complex Exchange migrations.

Professional Impact

What I have delivered.

A selection of work delivered across regulated, business-critical environments and complex international deployments, focused on real outcomes.

⬡

Hybrid Infrastructure Ownership

End-to-end administration and continuous optimization of hybrid ecosystems combining Windows Server, VMware, Azure, and Microsoft 365 — ensuring 99.9% availability for business-critical operations.

⬡

Cross-Forest & Platform Migrations

Orchestrated multi-forest domain migrations and Exchange Online transitions for 1,000+ users following corporate acquisitions — maintaining business continuity throughout.

⬡

Security Hardening & Compliance

Led vulnerability remediation programs following penetration tests, PKI deployments, network segmentation aligned with ISO 27001, and firewall governance under regulatory and compliance frameworks.

⬡

Disaster Recovery Governance

Designed and maintained enterprise backup architectures using Veeam, with regular failover testing and strict RPO/RTO targets — ensuring recovery readiness at all times.

⬡

Audit Support & Documentation

Served as technical lead for external ISO 27001 and GDPR audits — building the documentation frameworks, incident records, and infrastructure transparency that auditors require.

⬡

Data Center & Infrastructure Transitions

Coordinated full data center relocations covering VMware environments, physical servers, storage, and networking — managing complex transitions with minimal disruption to operations.

How I Work

My working
approach.

"Good infrastructure is invisible in operation, and continuously improved by design."

— A principle I work by

Full Ownership, No Hand-Waving

I take responsibility for the systems I manage. That means staying informed about their state, being accountable for outcomes, and not delegating problems upward unnecessarily. If I own it, I know it.

Calm Under Pressure

Incidents in business-critical environments have real consequences. I approach them methodically — isolating the problem, communicating clearly, and focusing on resolution rather than noise. I do not panic; I diagnose.

Collaborative by Default

I have worked alongside developers, finance teams, auditors, and external providers. I adapt my communication to the audience, support knowledge transfer genuinely, and treat team success as the actual goal.

Structured & Documentable

I believe infrastructure that is not documented is infrastructure that is fragile. I invest in clear documentation not as a formality, but because it directly impacts reliability, onboarding, and audit outcomes.

Continuously Learning

Technology moves fast. I stay current — through certifications, self-study, and genuine curiosity. My current focus is deepening Azure expertise. I do not wait for training budgets; I invest in myself.

Technical Expertise

Technical & Platform Expertise.

Infrastructure & Platforms

Hybrid Infrastructure Design Windows Server (2008–2022) VMware vSphere / ESXi Microsoft Hyper-V NetApp SAN / NAS Storage Veeam Backup & Replication

Cloud & Modern Workplace

Microsoft Azure (IaaS / PaaS) Azure AD & Conditional Access Microsoft 365 (Exchange Online, Intune, Teams) Entra ID & Hybrid Identity Cross-Forest Migrations Identity Lifecycle Management

Security & Compliance

Security Governance (ISO 27001, GDPR, ITIL) PKI & Certificate Lifecycle Vulnerability Management Firewall & Perimeter (Checkpoint, Fortinet) MFA / Smartcard / Zero Trust Audit & Compliance Support

Identity & Access Management

Active Directory & Identity Services SSO & Federation Citrix XenApp / VDI & NetScaler MDM & Endpoint Management Privileged Access Controls

Resilience & Operations

Disaster Recovery Strategy (RPO / RTO) Business Continuity Planning Infrastructure Monitoring (PRTG) SCCM / Endpoint Deployment Incident & Change Management

Automation & Networking

PowerShell Scripting & Automation Network Segmentation & VLANs VPN & Remote Access Cisco Networking Infrastructure-as-Code (Terraform basics) Deployment & Provisioning

Professional Recognition

How I have been
recognized.

"Consistent performance, reliability, and ownership — recognized across regulated and international environments."

— Across multiple employers

An independent investment firm

Recognized as a reliable and independent professional, with strong organizational skills and attention to detail. His work contributed to the overall productivity of the environment, and his conduct and performance were consistently perceived as exemplary.

A global institutional asset manager

Valued member of the engineering team in a demanding, international environment. Delivered high-quality results across infrastructure, security, and operations. Demonstrated strong determination, professionalism, and integrity.

An IT infrastructure and services company

Demonstrated a proactive and entrepreneurial mindset, with strong personal commitment. Recognized as a role model within the team, combining technical expertise with effective communication. Consistently delivered high-quality outcomes.

An enterprise IT services provider for high-end and luxury clients

Showed dedication, enthusiasm, and a strong sense of responsibility. Maintained high standards of execution and contributed positively to team collaboration. Reliable in dynamic and operational environments.

A Swiss luxury fashion brand

Recognized as a motivated and dependable professional. Handled responsibilities with diligence and contributed to team success. Maintained a positive, cooperative, and solution-oriented approach.

Operating, optimizing, and evolving business-critical environments.

Senior engineer,trusted operator.

Where Iadd value.