Microsoft 365
🔷 Azure
🛡️ Defender
📱 Intune
🔑 Entra ID
💬 Teams
📧 Exchange Online
🖥️ Windows Server
Senior Systems Engineer · 8+ Years

Shaun Patrick Webster

M365 · Azure · Windows Server

Enterprise-grade implementation and remediation for businesses that run on Microsoft. No guesswork — just results from someone who's done it hundreds of times.

Get in Touch View Services
100+
Implementations
8+
Years Experience
M365
Business Premium · E5
SMB
Focused
Shaun Patrick Webster
About

Real Experience.
Real Results.

I'm a Senior Systems Engineer with over 8 years of hands-on MSP experience. The Prior 7 years on the "support" side of IT. I've deployed, migrated, and rescued Microsoft environments for businesses of all sizes — from 10-seat offices to enterprise tenants.

Microsoft 365 Business Premium is my bread and butter — it's where SMBs get the most security for their dollar, and over 75% of my clients run it. I know it cold, from initial tenant setup to Defender hardening to Intune device management.

My background spans Apple, Cisco, and Williams-Sonoma at the enterprise level before moving into the MSP world. That means I bring corporate discipline to small business problems — without the enterprise price tag.

☁️
Microsoft 365
Business Premium specialist — 75%+ of clients run BP. E5 when the mission demands it.
🔷
Microsoft Azure
Entra ID, Conditional Access, hybrid environments
🖥️
Windows Server
Active Directory, Group Policy, infrastructure
🔒
Security & Compliance
Defender, MFA, DMARC/DKIM, Intune MDM
🏢
Enterprise Background
Apple · Cisco · Williams-Sonoma
Ghostrider IT GhostRider IT · Systems Engineering
Services

What I Do

01
☁️
M365 & Azure Implementation

Full tenant deployment and configuration — from greenfield to complex migrations. Done right the first time.

  • Exchange Online migration
  • Teams & SharePoint deployment
  • Business Premium & E5 licensing and rollout
  • Entra ID & hybrid identity
02
🛡️
Security & Compliance

Most SMBs are paying for security they haven't turned on. I find the gaps and close them.

  • MFA & Conditional Access policies
  • Microsoft Defender configuration
  • DMARC, DKIM, SPF — email hardening
  • Intune device management
03
🔧
Remediation & Break-Fix

Inherited a mess? Tenant misconfigured? Someone left and took the keys? I've seen it all and fixed it all.

  • Tenant health assessments
  • Legacy auth & policy cleanup
  • Licensing optimization
  • Documentation & handoff
Prior Enterprise Experience

// Portfolio

Featured Projects

Selected engagements — real problems, documented outcomes.

45
Toughbooks Imaged & Deployed
City of Berkeley Fire Dept.
Mobile Fleet Refresh
Getac Intune MDM S2S VPN 4G LTE
Situation
Aging Toughbook fleet with no standard image, no remote management, and no field connectivity.
Solution
Imaged and deployed 45 Toughbooks with Intune MDM enrollment and persistent S2S VPN over 4G LTE for always-on field access.
Outcome
45 Toughbooks imaged and deployed with zero field downtime. Emergency response teams stayed connected throughout.
2,500+
Devices Managed
Williams-Sonoma
Enterprise iOS POS Deployment
iOS MDM Mobile POS Multi-Site Retail
Situation
Enterprise retail needed mobile checkout capability deployed uniformly across high-traffic locations.
Solution
Coordinated iOS device rollout with Mobile POS integration, automated MDM enrollment, and standardized configuration profiles.
Outcome
Multi-site deployment completed on schedule. Retail operations modernized with zero disruption to store hours.
2
Project-to-MSP Conversions
Anonymous SMB Clients
Project Engagement → Retained MSP
Security Hardening M365 / Azure Co-Management
Situation
Two unrelated SMB clients engaged for discrete project work — one security hardening, one M365 deployment. No ongoing commitment on either side.
Solution
Delivered the work, communicated clearly, and treated their environment like it mattered. Both clients handled the rest.
Outcome
Both converted to retained MSP or co-management agreements. No pitch — just clients who decided they didn't want to work with anyone else.

// Background

Relevant Experience

8+ years of hands-on MSP work built on an enterprise foundation — here's what that actually means.

Microsoft 365 & Azure
  • Greenfield tenant builds and complex cross-tenant migrations
  • Hybrid identity with Entra ID Connect sync and SSO
  • Conditional Access policy design — MFA, compliant device, named location
  • Exchange Online cutover and hybrid mail flow configurations
  • Teams/SharePoint governance and licensing optimization
Security & Compliance
  • Microsoft Defender for Endpoint, Identity, and O365 configuration
  • Full DMARC/DKIM/SPF deployment and enforcement
  • Intune compliance policies, device enrollment, and app protection
  • Security baseline hardening — CIS / MSFT benchmarks
  • Secure Score remediation and gap analysis reporting
Infrastructure
  • Windows Server 2012–2022 deployment, migration, and hardening
  • Active Directory — GPO design, OU structure, domain migrations
  • Firewall management across Fortinet, SonicWall, Cisco
  • Network switching, VLAN segmentation, and Wi-Fi infrastructure
  • Backup architecture — Datto, Veeam, and offsite DR strategy
Prior Enterprise
  • Apple — Corporate IT infrastructure and device management
  • Cisco — Enterprise network operations
  • Williams-Sonoma — Retail IT at scale
  • Verizon / Comcast — Carrier-side infrastructure exposure
  • Corporate discipline applied to SMB environments
P-38 Ghostrider
Tradition of Excellence GHOSTRIDER
Contact

Let's Talk

Whether you need a full M365 deployment, a security audit, or someone to design and implement some infrastructure, that's what I do. If you want the paperwork to back it up — resume, case studies, references — just ask.


[email protected]
Available for new engagements