Open to Technology Lead roles — UAE / EU
For recruiters: jump to quick facts →
v Vibin Varghese Talk to me →
Senior IT & Infrastructure Design Lead — Dubai

Technology
Lead.

Infrastructure Cybersecurity AI Orchestration Transformation

12+ years architecting the systems that let organisations run reliably and scale sensibly — from server topologies and Zero-Trust networks to Copilot-driven automation and bespoke platforms built for design, finance and operations teams. I sell solutions ready: tell me the requirement, I’ll show you the working answer.

See solutions → For recruiters
Vibin Varghese portrait
Vibin VargheseDubai, UAE — open to relocation
Microsoft Azure/ Copilot Studio/ Claude · Gemini · Grok · Vertex AI/ MCP Services/ FortiGate · Sophos · Darktrace · Guardz/ Veeam DR/ Zycoo · 3CX · Teams Voice/ Cisco · Unifi/ Cloudflare Zero Trust/ Intune · Hexnode/ Hyper-V · VMware/ Xerox XWC Cloud Print/ Autodesk Forma · ACC/ Business Central/ Microsoft Azure/ Copilot Studio/ Claude · Gemini · Grok · Vertex AI/ MCP Services/ FortiGate · Sophos · Darktrace · Guardz/ Veeam DR/ Zycoo · 3CX · Teams Voice/ Cisco · Unifi/ Cloudflare Zero Trust/ Intune · Hexnode/ Hyper-V · VMware/ Xerox XWC Cloud Print/ Autodesk Forma · ACC/ Business Central/
// For recruiters — TL;DR

Everything you need in one card.

Position, location, notice period, target roles, and how to reach me — without scrolling the whole page.

Current role
Senior IT & Infrastructure Design Lead
Employer
Archcorp Creative Technologies
Location
Dubai, UAE — open to relocation
Open to
Technology Lead · Head of IT · Transformation Lead
Notice period
As per UAE labour law (discussable)
Talk to me
Email · +971 50 879 2449
01 — PROFILE

A senior operator across
infrastructure, security & AI.

Hands-on technology leadership across the layers most organisations only buy. Equally comfortable architecting a Hyper-V cluster, hardening a FortiGate edge, deploying Copilot Studio agents, leading a phishing incident in real time, or assembling a workstation from parts when the deadline demands it.

I lead enterprise technology operations end-to-end — server-side topologies, networks, voice platforms, cybersecurity, cloud and the AI/automation layer that ties them together. Most engagements span infrastructure design, project delivery, vendor and MSP management, ISO-aligned governance and team leadership.

Over the last decade I have delivered hybrid Azure environments, multi-emirate office rollouts, Zero-Trust and Business Premium / E5 migrations, IP-PABX modernisation, Xerox XWC cloud-print topologies, and an AI orchestration layer combining Copilot Studio, Claude, Gemini, Grok, Vertex AI and MCP services — applied across Finance, HR, Architecture, Facilities, Fleet, Guest Management and Task Operations.

"Tell me the requirement. I'll show you the working answer."

Currently leading infrastructure and digital transformation at Archcorp Creative Technologies — active M365 E5 migration, completed Business Premium migration, Hexnode MDM rollout, Zero-Trust framework purpose-built for the GPU rendering teams, a 360°-protected endpoint estate, custom DLP and productivity-monitoring, and bespoke platforms supporting Autodesk Forma and Construction Cloud for the design teams' custom requirements. Open to Technology Lead, Head of IT and Transformation Lead roles across the UAE and EU.

99.9%
Uptime — multi-site infrastructure
35%
IT operating cost reduction
4
Remote office expansions delivered
12+
Years in enterprise technology
02 — KEY ACHIEVEMENTS

What I’ve actually
shipped.

Concrete deliveries from the last few years — the platforms, programmes and incidents that make up the working portfolio behind the title.

/01
Network revamping — re-architected the entire site
Infrastructure · Cabling · Topology
Replaced an unstructured legacy fabric with a redundant, segmented topology — clean rack layout, labelled patching, FortiGate edge, Cisco core, and proper documentation. Before/after evidence in the project gallery.
/02
Remote expansion — Lisbon, Portugal, Egypt, Sri Lanka
Multi-site · Cloud connectivity
Stood up four overseas extensions of the company — secure connectivity, identity, M365 provisioning, MDM enrolment and ISO-aligned data governance, delivered remotely as sole project lead.
/03
AI orchestration with Copilot Studio + MCP
Copilot · Claude · Gemini · Grok · Vertex
Moved automation beyond Power Automate into Copilot Studio agents, deployed MCP services connecting internal data and tools, and integrated Claude, Gemini, Grok and Vertex AI behind a single flow-maker interface for the business.
/04
Custom ITSM platform — MSP-grade in-house
Ticketing · Assets · SLA · Knowledge
Built a tailored ITSM system because off-the-shelf tools couldn’t match the workflow shape required at MSP service-level — multi-channel intake, asset-aware tickets, SLA engine and Power BI cockpit.
/05
DLP + data activity monitor — productivity capture
DLP · Activity monitoring · 360° protection
Designed and rolled out a Data Loss Prevention and activity-monitoring layer that captures productivity signals without intrusive surveillance — combined with EDR and identity controls for a 360° endpoint protection posture.
/06
Real-time phishing incident response
SOC · Containment · Recovery
Frontline lead during a live phishing campaign — containment, mailbox isolation, credential rotation and service restoration with minimal downtime, followed by hardening of identity and mail flow.
/07
M365 E5 migration in flight — Business Premium done
Licensing · Identity · Security
Currently leading the E5 migration after completing the Business Premium uplift — unlocking advanced security, eDiscovery and analytics while consolidating spend and rationalising add-ons.
/08
BYOD enabled organisation-wide
Hexnode · Intune · Conditional Access
Rolled out a managed BYOD framework for personal devices — work profile separation, Conditional Access, app protection policies and a clean joiner/leaver flow that does not touch personal data.
/09
Voice transformation — Panasonic TDA → Zycoo + 3CX + Teams
VoIP · Unified Comms
Decommissioned a legacy Panasonic TDA200 hybrid PBX and delivered a unified voice platform across Zycoo IP-PABX, 3CX and Microsoft Teams Voice with SIP trunking and meeting-room conferencing.
/10
Xerox XWC cloud printing topology
Cloud Print · Workflow Central · Topology
Designed and implemented a Xerox Workflow Central (XWC) cloud printing topology — secure pull-print, identity-bound release, mobile and BYOD support, and a print fleet that finally lives off-prem without the on-prem print-server fragility.
/11
Tech-led support for Autodesk Forma & Construction Cloud
Design Tech · ACC · Forma · Custom requirements
Acted as the technology lead supporting the design teams' custom requirements on Autodesk Forma and Construction Cloud — identity, access, integration and bespoke platform work to fit the way the studio actually wants to operate, rather than the way the tools default to.
/12
Guest management & digital reception conversion
Workplace · CX · IP infra
Replaced manual sign-in and switchboard handling with a digital reception platform — kiosk check-in, host notifications, badge printing and analytics — integrated with Teams and access control.
/13
Fleet management for admin operations
Vehicles · Renewals · Compliance
Brought fleet operations onto a single tracked platform — registration, insurance, fuel and driver records with renewal alerts, surfaced to admin and finance via Power BI.
/14
Task management & task parser
LLM · Workflow · Automation
Built a task parser that turns free-text instructions from email, chat and meeting notes into structured tasks — assigned, dated, dependency-linked — using Copilot Studio and an MCP-connected backend.
/15
Custom workstation builds for the visualisation team
Custom PC · GPU · Render workflows
Specced and assembled high-end workstations from parts — multi-GPU, fast NVMe arrays, balanced thermals — tuned for Revit, Twinmotion and real-time rendering pipelines.
/16
Vendor & MSP consolidation
Procurement · Renewals · Contracts
Renegotiated and rationalised the supplier base — 40% reduction in renewal cost and a 35% cut in operating expenses, with stronger SLAs and clearer accountability lines.
/17
Team leadership across infrastructure, support & projects
People · Roadmap · Cadence
Lead a small technology team — set roadmaps, run weekly operations reviews, and translate executive priorities into deliverable work packages, with a strong MSP and vendor network behind it.
03 — EXPERTISE

The working
stack.

Twelve domains I architect, deploy, harden, monitor and replace when they stop earning their keep — grouped roughly in the order I tend to address them on a transformation engagement.

/01

Server & Infrastructure

Redundant on-prem and hybrid topologies — domain controllers, file/app servers, clustered Hyper-V and VMware estates, NAS and MSA SAN storage, with high-availability auth and print services.

Windows ServerHyper-VVMware Active DirectorySCCMNAS · SAN · MSA
/02

Networks & Administration

Enterprise LAN/WAN, multi-site VPN, segmented VLAN topologies, structured cabling and controller-based wireless — designed, documented, and administered as a working day-job, not a project deliverable.

CiscoUnifiSD-WAN VLAN DesignSite-to-Site VPNGuest Wi-Fi
/03

Voice & Unified Comms

IP telephony rollouts and unified communications across Zycoo, 3CX and Microsoft Teams Voice — SIP trunking, call routing, conferencing rooms, IP speaker systems and digital reception platforms.

Zycoo IP-PABX3CXTeams Voice SIP TrunkingYealinkDigital Reception
/04

Cybersecurity & SOC

Perimeter, endpoint and email security with live incident response. ISO 27001 ISMS preparation, third-party VAPT cycles and phishing-campaign containment with post-incident hardening.

FortiGate 200F · 120FSophosDarktrace GuardzSentinelOneMS Defender ISO 27001 · VAPT
/05

Cloud & Identity

Hybrid cloud on Azure and AWS — IaaS workloads, M365 tenancy operations, identity governance, Conditional Access, and licensing migrations from Business Premium through to E5.

Azure (AZ-104)Azure VPSAWS Microsoft 365 E5Entra IDConditional Access
/06

Multi-Endpoint Management

Unified management across corporate, BYOD and mobile estates — provisioning, app delivery, compliance, signature solutions and secure WFH onboarding. Plus hands-on custom PC assembly for visualisation teams.

Intune MDMHexnodeBYOD Signature SolutionsmacOS (ACSP)Custom PC Builds
/07

DLP & 360° Protection

Data Loss Prevention, data activity monitoring and productivity capture — wired into the EDR, identity and mail layers for a single, end-to-end protection posture.

DLP PoliciesActivity MonitorInsider Risk EDR IntegrationM365 Purview
/08

Backup, DR & Resilience

3-2-1-1-0 backup designs, immutable repositories, replicated DR sites and tested failover runbooks — built around meaningful RPO and RTO targets, not theatre.

Veeam B&RVeeam ReplicationAzure Backup Immutable StorageDR Runbooks
/09

AI Orchestration & Flow Makers

Effective use of Copilot and Copilot Studio rather than scripted automations — combined with deployed MCP services and external models from Claude, Gemini, Grok and Vertex AI behind a single flow-maker interface.

Copilot StudioClaudeGemini GrokVertex AIMCP Services Flow MakersPower BI
/10

Design-Tech IT Support

IT lead for design teams running Autodesk Forma and Construction Cloud — identity, access, custom integrations and bespoke supporting platforms shaped to the studio’s actual workflow, plus Xerox XWC cloud-print topology for the wider organisation.

Autodesk Forma (IT Lead)Construction CloudXerox XWC ACC API integrationIdentity & Access
/11

ELV & Low-Voltage Systems

Hands-on with extra-low-voltage infrastructure — structured cabling, fibre runs, CCTV cabling, access-control topologies, intercom, paging and barcode/document scanner integrations.

Structured CablingFibreCCTV ELV Access ControlPaging · IntercomScanners
/12

ITSM & Service Operations

ITIL-aligned service operations and a custom-built ITSM platform designed at MSP service-level — ticketing, asset register, knowledge base and SLA reporting integrated with Azure AD and Teams.

Custom ITSM (in-house)Jira ITSMITIL v4 SLA DesignVendor MgmtMSP-grade
04 — EXPERIENCE

Twelve years.
Five organisations.
One thread.

From trading-floor support in India and field engineering in Kuwait, to logistics IT for IKEA in Dubai, and now leading enterprise technology at a UAE design consultancy with overseas operations.

JAN 2024 — PRESENT

Senior IT Engineer & Infrastructure Design Lead

Archcorp Creative Technologies — Dubai, UAE
  • Lead the enterprise IT and digital transformation roadmap; manage a small technology team across infrastructure, support and projects.
  • Re-architected the server topology and core network — clean rack layout, FortiGate edge, Cisco core, NAS and MSA storage, with Veeam-backed DR.
  • Sole project lead for four overseas expansion sites — Lisbon, Portugal, Egypt and Sri Lanka — delivering connectivity, identity, MDM and data governance remotely.
  • Built an AI orchestration layer combining Copilot Studio, Claude, Gemini, Grok, Vertex AI and deployed MCP services behind a flow-maker interface for the business.
  • Designed and rolled out a DLP and data-activity-monitor stack with productivity capture — wired into a 360° endpoint protection posture.
  • Currently leading the M365 E5 migration after completing the Business Premium uplift; rolled out Hexnode MDM, BYOD enablement and a managed signature solution.
  • Designed a Zero-Trust WFH framework purpose-built for the GPU rendering teams — secure remote access without sacrificing render performance.
  • Built a custom in-house ITSM platform at MSP service-level — multi-channel ticketing, asset register, SLA engine, knowledge base.
  • Acted as IT lead supporting the design teams’ custom requirements on Autodesk Forma and Construction Cloud — identity, access, integrations and bespoke supporting platforms.
  • Designed and implemented a Xerox XWC (Workflow Central) cloud-printing topology — secure pull-print, identity-bound release and mobile/BYOD support.
  • Converted manual reception into a digital guest-management platform; brought admin fleet onto a single managed system.
  • Built a task management and task-parser layer turning free-text instructions into structured, assigned, dependency-linked tasks.
  • Specced and hand-assembled GPU-intensive workstations for the visualisation team; deployed Meta Quest VR walkthrough infrastructure.
  • Led real-time response to a phishing incident — contained the campaign, isolated affected mailboxes, rotated credentials and restored services with minimal downtime.
  • Reduced IT renewal costs by 40% and operating expenses by 35% through MSP/vendor consolidation and licensing rationalisation.
  • Migrated 134 Microsoft 365 accounts from EU to UAE tenant with full data residency compliance.
NOV 2020 — DEC 2023

IT Specialist & WMS Coordinator

Emirates Logistics — IKEA Distribution Centre, Dubai
  • Owned IT operations and Tier 1–2 service desk for 500+ users in a 24/7 logistics environment.
  • Administered Active Directory, Microsoft 365 and Jira ITSM; maintained SQL-integrated WMS and Customs applications.
  • Delivered AED 120K annual saving through a paperless WMS initiative; built operational discipline around multi-priority, time-sensitive workloads.
MAY 2019 — OCT 2020

System Administrator

Benair Air-Conditioning LLC — Dubai, UAE
  • Full ERP implementation and network administration across head office and field operations.
  • Achieved a 20% uptime improvement through proactive monitoring and contract renegotiation savings.
FEB 2015 — JAN 2019

IT Field Support Executive

Otis Elevators & Escalators — Kuwait
  • Customer-facing IT field support across major commercial sites in a high-availability environment.
  • Reduced site downtime by 20% and increased customer satisfaction by 20%.
  • Bravo Award (2015–2017) and Service Excellence Award (2017).
DEC 2013 — DEC 2014

IT Support Executive

Acumen Group (Pvt) Ltd — Ernakulam, India
  • Remote support for 400+ broker clients across NSE, BSE and MCX trading platforms.
  • Team Lead for the Odin platform migration v8.1 → v10.2 across five major Indian stock exchanges.
05 — SOLUTIONS

Tap any card to open the discussion.

Each card is a working solution, ready to discuss in detail — the customer scenario, the approach, the stack and the measurable outcomes. Click through for the full case-study.

The "sell-the-solution-ready" playbook.

I don’t pitch in the abstract. Each problem below has a built and tested answer — Finance, HR, Design Tech, Facilities, Fleet, ITSM, Voice, Print and Secure WFH. Tell me which one you’re trying to solve, and I’ll show you what I’ve already shipped.

Copilot Studio MCP Services Claude · Gemini Vertex AI Business Central Forma · ACC Xerox XWC Power BI

Dashboard summary.

— a few numbers worth noting
scribbled, not auto-generated.
99.9%
multi-site uptime
across 4 active offices
35%
IT opex reduction
consolidation + renegotiation
40%
renewal cost cut
vendor & MSP rationalisation
4
overseas expansions
Lisbon · Portugal · Egypt · Sri Lanka
134
M365 accounts migrated
EU → UAE, zero downtime
60%
L2 tickets removed
automation + self-service
12+
years in enterprise IT
across 5 organisations
10
solutions ready to ship
case studies in section 05
17
key achievements
section 02 — the long list
↓   talk to me about any of these   ↓
07 — CREDENTIALS

Certifications
& education.

Formal credentials underpinning the operational stack — Microsoft Azure and M365 administration, Cisco networking, AWS cloud foundations and Apple ecosystem certification.

// AZ-104Azure Administrator AssociateMicrosoft
// MS-102Microsoft 365 Administrator ExpertMicrosoft
// MCSESolutions ExpertMicrosoft
// CCNACisco Certified Network AssociateCisco · CSCO12479272
// CCNPCisco Certified Network ProfessionalCisco
// CLF-C02AWS Cloud PractitionerAmazon Web Services
// ACSPApple Certified Support ProfessionalApple
// WEBHTML · CSS · Python DevelopmentMicrosoft Certified
BSc Computer Science
Kanpur University
2011
Diploma — Computer Application
ET&T Institution
2011
Diploma — Hardware & Networking
G-Tech Institute of Technology
2012
Recognition Bravo Award · 2015–2017 (Otis) Service Excellence Award · 2017 Languages: English · Hindi · Malayalam
Let’s build

A system to design,
secure or scale?

Open to Technology Lead, Head of IT and Transformation Lead positions across the UAE and EU, and to advisory engagements where the brief is sound infrastructure and considered automation.

// Email
vibinvarghese22
@hotmail.com
// Phone & WhatsApp
+971 50 879 2449
// LinkedIn
/in/technology
designlead
// Location
Dubai, UAE
Open to relocation