CodeNET Consultancy Services




Multifaceted and tactical Senior Technical Architect with comprehensive experience in leadership of digital transformation, cloud adoption, integration and consolidation programmes utilising the latest technologies as IT Consultant or Lead Technical Architect in alignment with organisational goals.

Technically astute Infrastructure and Solutions Leader with proven abilities in identity solutions including Active Directory (ADDS), Active Directory Federation Services (ADFS), Office 365, Mobile Device Management (MDM), with Microsoft InTune. Creative problem solver with proven success as Technical Writer with keen ability to provide top quality documentation and diagramming as part of project deliverables.

Highly knowledgeable and collaborative with excellent interpersonal abilities to build respect and rapport with culturally diverse global teams to optimize individual and group strengths while fostering motivation and accountability in ever-changing, challenging environments requiring adaptability and decisiveness to succeed. A versatile, highly skilled, and solution focused IT Architect with twenty years extensive experience and a sustained record of delivery. 

A strategic and experienced technical leader who is passionate about all aspects of technology and continually strives to keep abreast with the latest technologies. Adaptable and excellent problem solver with professional and dynamic hands-on ethos with experience delivering on Digital Transformation, Cloud Adoption, Integration, and Consolidation Programmes. Highly regarded as a Technical Writer with excellent documentation and diagramming capabilities. 



Senior Freelance Solutions Architect, Consultant, & Director

CodeNET Consultancy Services Ltd. – London, UK May 2018 – Present

Working for various clients as a self-employed freelance Solutions Architect leader focused on delivery of Windows 10 EndPoint Security and Delivery via Microsoft InTune using Azure AD Identity Protection, Azure AD B2C, ADFS 2016, Azure AD B2B, Azure AD Connect, Azure AD Privileged Identity Management, Conditional Access, Application Deployment via InTune, MAM, MIM, MDM, BYOD, Microsoft Active Directory 2016 and Microsoft AutoPilot. Provided professional services freelance consultancy partnered with: MICROSOFT CORPORATION, REDROCK, RKEYTEC, and EMPIRIC. Onsite with: NETWEST MARKETS, NETWORK HOMES, CHARLES RUSSELL SPEECHLYS, and MHRA.

  • Windows 10 Rollout – Authored detailed rollout plans for deployment of Windows 10 with MDM (InTune) for 1000 Microsoft Surface Pro laptops for NETWORK HOMES.
  • Pilot Devices – Successfully implemented Zero-Touch deployment of Windows 10 using Microsoft AutoPilot. Facilitated deployment of 100 pilot devices within the first week of contract with timely resolution of issues with Windows Autopilot for NETWORK HOMES.
  • Workshops – Led workshops to identify Conditional Access Policies and Security Baseline Policies for NETWORK HOMES.
  • Update – Replaced 95% of Active Directory Group Policy restrictions and settings using InTune Policies and Profiles for NETWORK HOMES.
  • Azure Cloud – Successfully delivered secure Azure Cloud IaaS Active Directory 2016.. Including DEVOPS automation using PowerShell for NATWEST MARKETS.
  • Design Workshops – Facilitated 4 workshops on Microsoft DIAD (Structured and Secure Active Directory Solution by Microsoft) to extract customer requirements to input into design for NATWEST MARKETS.
  • Customer Training – Led customer training on the DIAD architecture for Active Directory NATWEST MARKETS.
  • ADFS Environment – Led the design and implementation of global secure and resilient Active Directory Federation Services 2016 for CHARLES RUSSELL SPEECHLYS.
  • IDAM Solutions – Analysis and requirements gathering for discovery phase of IDAM (MIM 2016, Azure B2C, Azure B2B, ADFS, ADDS) programme for MHRA.ializing in the identity suite of products that Microsoft has to offer. Working on greenfield, secure by design, Active Directory 2016 implementations, Secure DNS (DNSSEC), Microsoft Deployment Tool (MDT), Tiered Administration Modelling, Local Administrator Password Tool (LAPS).

Key Responsibilities & Achievements

  • Engagement with Financial Services Client to design and deploy a Greenfield Active Directory 2016 Hybrid Cloud & On-premises infrastructure.
  • Attending and owning client design and information gathering workshops.
  • Owning and managing the implementation plan for Active Directory deployment.
  • Design and Documentation of a Greenfield Active Directory Hybrid Architecture.

MARCH 2018 – JULY 2018

Senior IT Architect

Virtusa, London, UK

Recruited by Virtusa as an IT Architect to act as a technical lead and architecture specialist on large banking client projects within the City of London. 

  Key Responsibilities & Achievements

  • Engagement with Financial Services Client to enable state migration of internal infrastructure from Windows Server 2003 to Windows Server 2012-R2 for multiple application platforms, my personal involvement in this project was as the Technical Architect and owning the following responsibilities:
  • Review and validation of existing third-party AS-IS state information.
  • Providing feedback and recommendations on third-party AS-IS state information.
  • Authoring and design of TO-BE state documentation.

JANUARY 2013 – MARCH 2018

IT Technical Architect 

London & Quadrant, London, UK

Recruited by L&Q at a time when there had been a long and sustained period of under-investment within IT across the organisation and a realisation that major investment was required to support the future business strategy and growth plans. The first IT Architect to be recruited within L&Q, the purpose of my role was to define an architectural function within the organisation, to build and manage a new architecture team within IT.

Key Achievements

  • Introduced improved user experience for employees and improvements to corporate security and data protection through the introduction of:
    • Microsoft Windows 10 Enterprise
    • Redesigned Group Policy
    • Hybrid Domain Join Architecture
    • InTune MDM for Windows 10 Devices
  • Microsoft Active Directory Federation Services
    • Third-Party Relying Trust Implementation
    • Microsoft Relying Party Trust Implementation
    • Branding and Customisation
    • Best Practice Security Implementation
    • Microsoft inTune:
    • InTune Mobile Device Management (MDM)
    • InTune Mobile Application Management (MAM)
    • InTune Multi-Factor Authentication (MFA)
  • Microsoft Azure:
    • Azure Active Directory Connect (AADC)
    • Azure Multi-Factor Authentication (MFA)
    • Azure Active Directory Dynamic Group Assignment
    • Azure Active Directory Hybrid Architecture
    • Azure Information Protection
    • Azure Virtual Networks
    • Azure VPN Gateway
    • Azure Application Proxy (Enterprise Applications)
    • Azure Identity Protection
    • Azure Privileged Identity Management
  • Office 365:
    • SharePoint Online
    • Skype for Business Online
    • PowerBI
    • Data Loss Protection (DLP)
    • Exchange Online Capabilities (limited scope)
    • Yammer
    • OneDrive for Business
    • Flow
    • Teams
    • Machine Learning (POC)
  • Creation of Cloud Migration Strategy and Approach, initial Azure Cloud Platform core requirements design, configuration, and implementation (Azure AD, Azure AD Connect, Virtual Networks, VPN’s, etc.).
  • Defined the technical plans and approach required to integrate two organisations into a single IT estate. 
  • Upgrade of Active Directory from Active Directory 2003 to Active Directory 2012-R2 with a user base of ~2400 users, improvements in Active Directory Architecture, and introduction of role-based administrative controls. Introduced a new perimeter forest for the newly created Perimeter/Extranet zone.
  • Upgrade and Consolidation of multiple Active Directory Forests/Domains to Single Forest/Domain on Active Directory 2016 due to merger with another large housing association. Resulting in the successful migration of ~1000 users into L&Q’s existing Active Directory forest consisting of ~2400 users.
  • Defined project plans, project scopes, assisted in project management (Agile & Waterfall) where required.
  • Oversaw the design and planning of the implementation of a new Exchange 2016 on-premises environment and migration of mailboxes from legacy Exchange 2010 environment.
  • Delivered new Active Directory PKI (ADCS) environment for improved management and administration of certificates ready for Cisco Dot1X rollout.
  • Line Management Responsibilities of Architecture Team employees. 
  • Ownership of Architecture Blueprints, Artefacts, and design and approval of all Infrastructure and Application services.
  • Ownership and Management of Service Outages.
  • Ownership of Technical Design Authority & Enterprise Architecture Review Board.
  • Ownership of IT Technology Roadmap and input into the IT Strategy and Planning.
  • Providing Mentoring and Coaching to employees within the IT Team.
  • Presenting bi-monthly updates and presentations on the progress of projects and future planning.


IT Consultant (Freelance)

Global Law Firm Client, London, UK

Freelance consultancy project to deliver on-premises Active Directory Federation Services 2016 for a global law firm based in the City of London. 

Key Achievements

  • Delivered design documentation for the delivery of a highly-resilient, highly-scalable, and best-practice implementation of ADFS 2016.
  • Hands-on implementation to build and configure the ADFS infrastructure as per design specifications.
  • Provided additional post-implementation support and administration of the solution.
  • Provided training and administration procedure documentation for in-house IT staff.


Group IT Technical Architect 

Anglo-Beef Processors Ltd, Birmingham, UK

Recruited by Anglo-Beef Processors at a time of investment in two new data centres. I was the only IT Architect within the business and the most senior escalation point for outages. 

Key Achievements

  • Delivered design documentation for upgrade of Active Directory 2003 to Active Directory 2008-R2 for ~1200 user directory.
  • Design, implementation, and configuration of NetApp SAN for Primary Data Centre.
  • Design, implementation, and configuration of Cisco Catalyst Core Data Centre Switching.
  • Design, implementation, and configuration of Cisco ISE Routers for Branch Offices.
  • Design, implementation, and configuration of VMWare ESXi 4.5 farm for new Primary Data Centre.
  • Design, implementation, and configuration of ClearSwift Secure Gateway.
  • Development of a .NET C# Web Application for the Intranet to enable users to generate standardised Email Signatures. 
  • Ownership and Management of IT Infrastructure.

JUNE 2006 – JULY 2011

Project Systems Engineer & Server Administrator

Codemasters Software Company Ltd, Southam, UK

Recruited by Codemasters at a time when the business was branching out into Massively Multiplayer Online (MMO) games and had created a new division specifically for online. 

  • Server Administrator (June 2006 to June 2008)
  • Project Systems Engineer (June 2008 to July 2011)

Key Achievements

  • Designed and delivered server, network, storage, and database infrastructure for multiple Massively Multiplayer Online Games and multiple console game titles.
  • Designed and delivered software update and deployment automation for game services using PowerShell, Batch Script and VBScript utilising Altiris.
  • Redesigned and redeveloped the corporate SharePoint site.  
  • Providing 24x7x365 Monitoring Capabilities for Online Gaming Infrastructure and Services.
  • Ownership, Management, and Escalation of Service Outages.
  • Ownership, Management, and Approval of Change Management Requests.
  • Ownership, Management, and Administration of Online Gaming Infrastructure and Environments.
  • Ownership, Management, and Publication of Online Gaming reporting services. 

Note: Further employment history available on request or via LinkedIn profile.

Professional Memberships, Clearance, and Licenses

Professional Memberships

  • British Computer Society Professional Member (MBCS)

Security Clearance

  • Disclosure Scotland – Basic Disclosure – Cleared

Driving License

  • Full UK Driving Licence



BTEC National Diploma in Computer Studies

Coalville Technical College, Coalville, UK

Modules: Introduction to Programming, Computer Systems, Information Systems, Communication Skills, Accounting and Auditing, Programming, Small Business Computer Systems. Only completed the first year due to personal trauma. 



Ashby Grammar School, Ashby-de-la-Zouch, UK

Subjects: English, Mathematics, Biology, Physics, Chemistry, Health & Safety, Psychology, Geography, Business Studies, Information Technology, Technology, Design & Communication.

Share the big news


  • Microsoft MCP Certification (Certification ID: G238-6643)
  • Microsoft (70-346) Managing Office 365 Identities and Requirements
  • Microsoft (70-533) Implementing Microsoft Azure Infrastructure Solutions
  • Microsoft (M10979) Microsoft Azure Fundamentals
  • Microsoft (M50412) Implementing Active Directory Federation Services 2.0
  • ClearSwift Secure Gateway Certified Engineer (CCE)


  • Microsoft MVA: Microsoft Datacenter vNext: Bringing Azure to your DC
  • Microsoft MVA: Azure Active Directory Core Skills
  • Microsoft MVA: Networking Fundamentals
  • Microsoft MVA: Managing Authentication using Microsoft Passport
  • Microsoft MVA: Introduction to Windows Hello
  • Microsoft MVA: C# Fundamentals for Absolute Beginners
  • Microsoft MVA: Windows Server 2012-R2: Web Application Platform
  • Microsoft MVA: Windows Server 2012: Direct Access
  • Microsoft MVA: Windows Server 2012-R2: Implementing a Basic PKI

Key Projects

  • Microsoft Office 365 Implementation to deliver a new end-user cloud experience for productivity suite applications and services. Included the design and implementation of SharePoint Sites, Yammer, Microsoft Teams, Azure Information Protection, and Skype for Business Online, etc.
  • Azure Active Directory Implementation to deliver authentication and authorization of end-users accessing Office 365 and Azure cloud services. Delivered a hybrid identity solution split between on-premises Active Directory and implementation of Cloud Identity using Azure Active Directory. 
  • Windows 10 Group Policy Design for Active Directory to enable the business to begin evaluation of Windows 10 desktops and laptops. Analysis of legacy group policies for Windows XP devices, consolidation and complexity reduction for new policy design for Windows 10 OS. 
  • Microsoft Dynamics CRM Design of entire solution using an Active/Active always-on architecture for on-premises solution. Created high-level and low-level design documents for multiple CRM environments (Production, Development, and Pre-Production). Utilising hardware load-balancing and geographically dispersed data centre infrastructure to deliver always-on capabilities and resilience for the solution
  • Skype for Business Design & Implementation to deliver new communication capabilities across the business to improve communication and collaboration for all users in the business.
  • Technical Design Authority (TDA) creation of, and design of processes, procedures, and governance of a TDA, management & ownership of the TDA.
  • On-Premises SharePoint Design & Implementation for delivery of an internal intranet, collaboration, and document management capability.
  • Active Directory Federation Services 2016 Design & Implementation delivered as a freelance consultant for a large global law firm based in the City of London. Analysis of customer requirements, infrastructure, and design practices. Produced detailed design documentation and diagrams, obtained sign-off for design, and implemented the solution as per design documentation. Provided post-implementation support and training. Additional post-implementation configuration work for integration with third-party solutions using relying party trusts.
  • Active Directory Upgrade from 2012-R2 to 2016 to ready new forest/domain for migration of users as part of forest/domain consolidation due to merger of organisations. Produced High-Level and Low-Level design documentation, provided technical support and assistance to the project team during the upgrade process.
  • Active Directory Upgrade from 2003 to 2012-R2 as part of continued improvement of IT Infrastructure within L&Q, produced high-level design documentation and acted as technical lead to upgrade Active Directory from Windows Server 2003 to Windows Server 2012-R2.


Key Skills

  • Microsoft Azure:
    • Azure AD (AAD)
    • Azure AD Connect (AADC)
    • Azure AD Identity Protection
    • Azure AD Privileged Identity Management
    • Azure AD Cloud App Discovery
    • Azure Key Vaults
    • Azure Multi-Factor Authentication (MFA)
    • Azure Virtual Networks
    • Azure Virtual Network Gateways
    • Azure ExpressRoute
    • Azure Information Protection
    • Azure Virtual Machines
    • Azure Security Center
    • Azure Intune
    • Azure Intune App Protection
    • Azure Enterprise Applications
    • Azure Recovery Services
    • Azure App Services
    • Azure SQL Databases
    • Azure Operations Management Suite
    • Azure Cloud Services
    • Azure Network Security Groups
    • Azure DNS Zones
    • Azure Load Balancing
    • Azure Storage Accounts
    • Azure Logic Apps
    • Azure Traffic Manager
    • Azure Machine Learning
    • Azure Internet of Things
    • Azure Automation
    • Azure Log Analytics
    • Azure Application Insights
    • Azure RunBooks
    • Azure Desired State Configuration

  • Hardware:
    • Storage Area Networks (SAN)
    • HP/DELL/IBM Hardware
    • Cisco Nexus & Catalyst Switching & Routing
    • Cisco Next Generation Firewalls
    • Radware Alteon Load Balancers
    • Cisco Wireless Infrastructure

  • Misc.
    • Data-Centre Design, Build, and Migration
    • End-User Computing & User Experience
    • Web Solution Design
    • MPLS/SDWAN/WAN Design
    • Troubleshooting & Problem Resolution
    • Low-Level/High-Level Designs
    • Solution Proposals
    • Business Cases

  • Microsoft Office 365:
    • Skype for Business Online
    • Yammer
    • SharePoint Online
    • OneDrive for Business
    • PowerApps
    • Flow
    • Security & Compliance
    • Cloud App Security
    • Domains & DNS
    • Data Migrations
    • Billing
    • Exchange Online
    • Reporting and Auditing
    • PowerBI

  • Microsoft Stack:
    • Windows Server
    • Dynamics CRM
    • Windows XP, 7, 10.
    • Active Directory (ADDS)
    • Active Directory Group Policy (ADGP)
    • Active Directory DNS (ADDNS)
    • Active Directory Certificate Services (ADCS)
    • Active Directory Federation Services (ADFS)
    • Advanced Group Policy Management (AGPM)
    • Hyper-V
    • Skype for Business
    • Exchange Server
    • SharePoint Server
    • Network Load Balancing (NLB)
    • Distributed File System (DFS)
    • Message Queuing (MSMQ)
    • SQL Server
    • SQL Reporting Services
    • Internet Information Services (IIS)
    • AppFabric
    • Xbox Live Server Platform (XLSP)
    • DirectAccess
    • Microsoft Deployment Tool (MDT)
    • DNSSEC
    • Local Administrator Password Solution
    • Privileged Access Workstations (PAW)
    • Microsoft Deployment Tool (MDT)

  • Scripting & Programming Languages:
    • PowerShell
    • PowerCLI
    • VBScript
    • Batch Script
    • C# (basic)
    • HTML (basic)
    • CSS (basic)
    • XML
    • JSON  Migrations, Integrations & Transformations:
    • Digital Transformation Design & Planning
    • Active Directory Consolidations
    • Active Directory Migrations
    • Active Directory Integrations
    • Exchange Migrations Design & Planning
    • Integration/Merger Design & Planning

  • Architecture:
    • Architectural Frameworks
    • Architecture Blueprints
    • Architecture Team Management
    • Architecture Principals & Artifacts
    • Chairing of TDA & EARB
    • Enterprise Architecture
    • Solution Architecture
    • Infrastructure Architecture
    • Network Architecture
    • Technology Roadmaps & Strategies
    • Requirements Gathering
    • Business Analysis

  • Management:
    • People Management
    • Project Management (Agile, Waterfall)
    • Vendor & Supplier Management
    • Stakeholder Management
    • Mentoring & Team Building
    • Conflict Management
    • ITIL Service Management
    • Incident Management
    • Processes & Policies
    • Governance and Procedures
    • Procurement (RFP’s / ODEU)

  • Other Technologies:
    • VMWare ESXi
    • Citrix XenApp & XenDesktop
    • Cisco Prime Infrastructure
    • Cisco ISE Dot1x
    • Varonis DatAdvantage
    • Linux (RedHat, CentOS, Ubuntu)
    • MySQL
    • Solarwinds
    • Dell OpenManage
    • HP Insight
    • IBM Director
    • KS-Hostmonitor
    • Content Distribution Networks (CDN)
    • Sophos Antivirus
    • ClearSwift Secure Gateway
    • VMWare vCenter Operations Manager
    • TotalMobile
    • Octopus Deploy

Hobbies and Interests

  • Snowboarding
  • Learning to write and speak Mandarin
  • Playing Piano
  • Photography
  • Electronics & IoT
  • Cloud Computing


Darren Ryan

Infrastructure Manager at L&Q

I’ve worked with Craig for the past 3 ½ years. During this time, we have worked together on many major highly technical IT projects. The vast majority of these were architected, scoped, designed and documented by Craig. I can honestly say that I have never met a more intelligent, dedicated, committed and technically capable individual. I’m always amazed by his technical capabilities, his depth and breadth of knowledge and the quality of his documentation is better than any I have seen in my working career.

At L&Q he has singlehandedly been responsible for driving the IT technological advances made by the organization and has transformed the IT Architecture from that of a SME to that of a large commercial enterprise capable of supporting L&Q’s ambition of being the best in their sector and delivering on their mission: of combining our social purpose and commercial drive to create homes and neighborhoods you can be proud of well into the future. He has architected and delivered multi-million-pound solutions across many technology stacks from Networking and Virtualization to Storage and Security as well many of the Microsoft Technology stacks.

Craig is a true hands-on architect who is passionate about technology and is always looking to better his knowledge and skills. I would have no hesitation in providing a personal recommendation to any organization who is seeking a truly gifted IT Technical Architect.”

Stephen Brown

Operations Manager at Codemasters Software Company Ltd.

“Craig is an enthusiastic technical specialist and proved during his time as a project engineer at Codemasters, which he has pride and dedication in the work that he delivers. Picking up existing infrastructure, learning and understanding the infrastructure, maintenance and administration processes, as well as improving and enhancing performance and availability. 

The ability to pick up new developments from scratch to final end production systems, taking the technical lead in projects where assigned and appropriate. Craig was key in designing and developing key monitoring systems and automation of administration for the Network Operations Centre as well as performance and capacity reporting statistics. In my view Craig would be a future asset in any technical team.”

Michael Joseph

Head of IT at L&Q

"I hired and directly managed Craig in his position of IT Technical Architect at London and Quadrant for five years. Craig joined my IT Management team and was responsible for setting up an Enterprise Architecture team, implementing the Technical Design Authority governance, working closely with all IT teams to identify and eradicate systems and network issues. Additionally, creation of detailed Technical diagrams and documentation for the existing IT environment and proposal for the future.

Craig's contributions significantly helped to ensure the IT environment was stable, secure and had the capacity for future growth. Craig is a completer finisher with natural abilities for quickly learning new technologies, working on his own initiative with vision and imagination to foresee business and cost benefits. Craig is highly passionate and ambitious, a true technologist and evangelist.

From a business perspective, Craig is comfortable working with Senior Management be that CEO, Executive and or Group Board members. His contribution to the IT Strategy is based on his knowledge and understanding of the Business plans, the company's direction and its Target Operating Model.

It is my personal view that Craig has the skills, experience, and knowledge, to further a career path in IT Management given his all-round experience. I would not hesitate to hire him again if the opportunity presented itself."  

Mark Fowlis

IT Operations Director at Codemasters Software Company Ltd.

“Craig was an enthusiastic and hard-working member of staff. He enjoyed learning new technologies and skills, and applied himself to these with gusto. He worked on a wide range of tasks, from infrastructure implementation and support, to game deployment, through to data analytics and reporting on game/account data, producing some extremely useful reports.”

Owen Lloyd

Infrastructure Architect at L&Q

“Would highly recommend Craig as a dedicated leading architect with excellent business and leadership skills and always at the edge of his seat with technical ideas and architectural flare. Some the best documentation standards and skills I have seen in the industry. Good architectural process alongside TOGAF standards which is rare to see. "Given the opportunity, would work with again in a heartbeat".” 

Ahmadur Rahman

Data Architect at L&Q

“Craig is an enthusiastic and talented Technical Architect with an in-depth knowledge on Network, Cloud and Infrastructure architecture. During two years that I have worked with Craig I found his documentations and architectural artifacts are very high standard and provided detailed overview of the as-is, To-Be and transition architecture. Craig is passionate about providing strategic (short/long term) architectural solutions and working towards aligning IT’s deliverables to business requirements. He is and always will be a key member of any EA team.”