You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
Andreas E.AE

Andreas E.

Cloud Architect & Engineer

€850/day
Zurich, CH
15+ years
Active Directory
IAM
Microsoft Azure
DevOps
IT-Security

Average response time: 1 hour

About Andreas

I help organizations secure and modernize their infrastructure, whether cloud, on-premises, or hybrid, from identity governance to full Azure and AD migrations. . In an era where AI-assisted attacks are reshaping the threat landscape, I design identity and access architectures that reduce blast radius and hold up under scrutiny.

With 15+ years in enterprise IT, I bring deep hands-on expertise in Azure cloud architecture, Active Directory, Identity & Access Management (Entra ID, ADFS, SailPoint), Zero Trust design, and infrastructure automation with Terraform and PowerShell. I've delivered complex projects for Swiss financial institutions, Swiss military, insurance companies, and global enterprises, always with security at the core.

What I typically deliver: security assessments and hardening (cloud and on-prem), IAM modernization and SSO migrations, Active Directory restructuring and ESAE/tiering, Azure infrastructure design and automation, compliance-driven architecture (NIS2, DORA, ISO 27001). I help regulated organizations translate EU cybersecurity requirements into concrete identity and access controls.


I'm available for remote engagements at 20-40%, ideal if you need senior architecture guidance or if you need hands-on execution without a full-time commitment. I design it, I build it, I improve it, I secure it.

I have references from all of my jobs. Can be given when asked for.
Banking and Financial Services
Pharmaceuticals
Digital and IT Services
Defense and Military
Insurance

  • English

    Native or bilingual

  • Swedish

    Native or bilingual

  • Norwegian

    Conversational

Remote only
Primarily works remotely

Experience

  • LGT Capital Partners
    TECHNICAL LEAD & SYSTEM ARCHITECT
    May 2023 - November 2025 (2 years and 6 months)
    Pfäffikon, ZH, Switzerland
    Regularly used systems and tools – AD, Azure, Terraform, MS SQL, Powershell,SSO,Vmware
    • o Led ESAE-based Active Directory hardening incl. Tiering
    • o Planned & executed AD forest level server & application migration to new company
    • o Including automating server installations with a large Powershell script
    • o Assisted with implementation of IAM solution based on SailPoint supporting identity lifecycle, RBAC and Active Directory integration.
    • o Transitioned legacy PowerShell-based server provisioning to Terraform, enabling modular, repeatable Azure VM deployments via Infrastructure as Code
    • o Managed & troubleshooted Azure AD Connect for hybrid identity synchronization
    • o Used Azure Log Analytics & Sentinel to monitor infrastructure & for incident
    • o Migrated app authentication from on-prem ADFS to Azure Enterprise Applications
    Powershell Active Directory Terraform Microsoft Azure IAM
  • SIX Group, HQ
    System Architect & Engineer
    June 2021 - May 2023 (1 year and 11 months)
    Zürich, Switzerland
    Regularly used systems and tools – ADFS, AD, Azure, MIM, MS SQL, Powershell, OIDC, SAML, SSO
    • o Integrated clients business-critical applications with Azure Enterprise Apps and ADFS using OpenID Connect and OAuth2.
    • o Migrated legacy apps from on-prem ADFS to Azure cloud authentication
    • o Designed deep-level OIDC/SAML configurations; performed advanced authentication troubleshooting.
    • o Supported secure authentication blueprinting and continuous ADFS/Azure security improvements
    • o Maintained and enhanced one of Switzerland's most secure and hardened AD
    SSO Microsoft Azure Active Directory OAuth SQL Server
  • Zurich Insurance,
    CLOUD INFRASTRUCTURE ARCHITEC T
    November 2020 - June 2021 (7 months)
    Zürich, Switzerland
    Regularly used systems and tools – Azure Devops, Powershell, Windows server, Visio, Office365 o Complete GAP analysis of architectural documentation.
    • o Update critical documentation and review updated documentation identified as part of gap analysis.
    • o Provide consulting services for new OnPremise Projects & assist with cloud migrations
    Microsoft Azure Windows Server Active Directory IAM Azure DevOps
Check out Andreas's experience

Recommendations

Be the first to recommend Andreas

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Azure AD, RMS and Intune
    Addskills
    2016
    Azure AD, RMS and Intune
  • Masterclass – Internet Information Services
    Addskills
    2014
    Masterclass – Internet Information Services
Check out Andreas's education

Skill set

Terraform
SQL
SQL Server
VMWARE
Hyper-v
Virtualisation
Powershell
Zero-Trust
ESAE
Kusto
Remote desktop services
IIS
Technical project management
SCCM
Kanban
Infrastructure as code
Windows Server
M365
Audit
Amazon Web Services
Network administration
ServiceNow
Dynamics 365
CI/CD Management
DevSecOps
Infra as Code
Scripting Automation
Cybersecurity Incident Management
Data Privacy (GDPR, CCPA)
GRC (Governance, Risk and Compliance)
Least Privilege Principles
Penetration Testing
Risk and Vulnerability Assessment
Cloud Platforms and Infrastructure
Data Migration and Backup
Database Management (e.g., SQL, NoSQL)
IT Architecture
IT Project Management
IT Service Management
IT Strategy
MFA
NIS2
NIS
ISO 27001

Categories