Junior System Engineer

Reliable infrastructure. Streamlined workflows.

Designing modern endpoint environments and automating the work behind them — so teams stay focused, and systems stay quiet.

View ProjectsContactLinkedIn

About

I'm a Junior System Engineer with hands-on experience across virtualization, endpoint management, Microsoft 365, and Windows/Linux server environments.

My day-to-day spans VDI platforms, on-prem Active Directory and hybrid identity, automated PowerShell workflows, monitoring with Grafana and Wazuh, and backup operations on Commvault and Veeam.

I care about systems that stay reliable when nobody's looking — clear documentation, sensible automation, and infrastructure that scales without surprises.

Experience

Roles and responsibilities.

Junior System Engineer

Universitäre Psychiatrische Dienste Bern
Aug 2025 — Present

Designing and operating clinical IT infrastructure across virtualization, endpoint management, and remote-site connectivity for a multi-site psychiatric care provider.

  • Built and operate an on-prem SOTI MobiControl platform managing Ascom rugged devices (panic-button alerting, logistics and medication scanning) and Apple iPads for clinical and patient-facing workflows
  • Consolidated multiple remote-support tools into a single unified solution covering ~2,000 FAT, VDI, and remote endpoints — simplifying onboarding for a 10-person helpdesk team
  • Led the rollout of 800+ thin clients across ~30 sites in two months with a small team
  • Planned and executed a Windows 10 → 11 migration for ~700 VDI endpoints — coordinating application testing with business product owners and tuning the image for a resource-constrained VDI cluster
  • Developed a 5G failover solution with IPsec VPN to provide emergency network connectivity at remote clinical sites

ICT Intern

Universitäre Psychiatrische Dienste Bern
Feb 2025 — Jul 2025

Frontline IT support and endpoint operations within a clinical environment, while preparing for a planned transition into the System Engineering team.

  • Prepared smartphones and laptops for new-hire onboarding
  • Planned a 500+ laptop refresh to lifecycle an aging segment of the endpoint fleet
  • Provided Tier 1 to Tier 3 ticket support across user-facing systems

Apprentice — Betriebsinformatiker EFZ

Technische Fachschule Bern
Aug 2021 — Jul 2025

Four-year Swiss IT apprenticeship combining structured technical training with hands-on infrastructure and operations projects across Windows and Linux environments.

  • Core training in Python, Java, HTML/CSS/JS, and MySQL alongside Windows and Linux server and endpoint administration
  • Operated an ESXi virtualization lab backed by Veeam — including long-term retention via tape library
  • Managed enterprise antivirus through SCCM / MECM
  • Deployed a Moodle learning platform on Linux for internal training
  • Set up self-hosted GitLab CI/CD runners
  • Built a PRTG monitoring stack for pfSense firewalls

Projects

Selected work.

Recent work across the stack.

Project 01

Clinical Mobile Device Management

Designed and deployed an on-premises SOTI MobiControl platform managing a mixed fleet of Ascom rugged devices and Apple iPads for clinical and operational use. Ascom devices ship panic-button alerting for clinical staff and integrated scanners for logistics and medication workflows. iPads serve general clinical work and patient-facing applications such as digital intake forms.

SOTI MobiControlMDMAscomApple iPadHealthcare
Highlights
  • On-prem SOTI MobiControl deployment
  • Mixed Ascom and Apple iPad fleet under a single management platform
  • Panic-button alerting for clinical staff
  • Barcode scanning for logistics and medication tracking
  • Patient-facing iPads for digital forms and clinical apps
  • Multi-user shared-device configuration
Project 02

Unified Remote Support Workflow

Consolidated multiple disjointed remote-support tools into one unified solution for a 10-person helpdesk team. The new workflow simplified support across roughly 2,000 endpoints — FAT clients, VDI clients, and remote worker notebooks — and accelerated onboarding for new staff.

Remote SupportHelpdeskWorkflowEndpoints
Highlights
  • Single tool replacing fragmented stack
  • Coverage for FAT, VDI, and remote endpoints
  • Faster helpdesk onboarding
  • Reduced licensing and tool overhead
  • ~2,000 endpoints, 10 helpdesk staff
Project 03

Thin Client Fleet Rollout

Coordinated and executed the rollout of 800+ thin clients across roughly 30 sites in just two months with a small team — modernizing endpoint access and consolidating onto a centralized VDI delivery model.

Thin ClientsVDIRolloutMulti-Site
Highlights
  • 800+ thin clients deployed
  • ~30 sites coordinated in parallel
  • Two-month delivery window
  • Small-team execution model
  • Centralized lifecycle and support
Project 04

VDI Windows 11 Migration

Planned and executed the upgrade of roughly 700 VDI endpoints from Windows 10 to Windows 11. Coordinated application validation with business product owners across the organization and tuned the gold image specifically for the cluster's CPU and memory constraints.

VDIWindows 11MigrationImage Engineering
Highlights
  • ~700 VDI endpoints migrated
  • Application validation with business product owners
  • Gold image tuned for constrained CPU and memory
  • Phased cutover with rollback path
  • Aligned with Windows 11 support lifecycle
Project 05

5G Emergency Failover Network

Designed and built a 5G-based failover solution for remote sites, providing emergency network connectivity over an IPsec VPN tunnel back to the core whenever the primary uplink fails — keeping operations running through outages.

5GIPsec VPNNetworkingResilience
Highlights
  • 5G mobile broadband as redundant uplink
  • IPsec VPN tunneling to core network
  • Automatic failover for remote sites
  • Operational continuity during primary-link outages
  • Reusable design across additional sites

Skills

Tools and platforms.

Selected technologies grouped by where they live in the stack — from virtualization down to the endpoints in your hand.

Virtualization & Infrastructure

  • VMware ESXi
  • Proxmox
  • VDI
  • Citrix
  • IGEL Thin Clients

Operating Systems & Servers

  • Linux Ubuntu
  • Linux Debian
  • Windows Server

Endpoint & Device Management

  • Microsoft Intune
  • Baramundi
  • SOTI MobiControl
  • Multi-User Shared Devices

Microsoft & Identity

  • Microsoft 365
  • On-Prem Active Directory
  • Hybrid IT Environments

Backup & Recovery

  • Commvault
  • Veeam

Automation & Scripting

  • PowerShell
  • Process Automation
  • Helpdesk Workflow Improvements

Monitoring & Security

  • Grafana
  • Wazuh
  • Infrastructure Visibility
  • Security Monitoring

Containers

  • Docker

Lab

Live from the homelab.

Offline

The lab is offline right now.

Check back in a bit — telemetry resumes when the agent reconnects.

Stats pushed from a Proxmox host on my LAN every ~5s. No inbound connection to my home network — the agent only sends curated metrics outbound over HTTPS.

Contact

Let's connect.

Open to collaboration, infrastructure conversations, and new opportunities.

EmailLinkedIn