Systems & Endpoint Engineer
Zak
Godwin
15+ years engineering enterprise infrastructure — endpoints, identity, automation, and the things in between. Off the clock: mining crypto, writing Rust, and mining crypto some more.
// about
Builder by nature.
I've loved computers since the first time I laid eyes on one. I never thought I'd end up in Systems Management — I always figured my path would lead me into computer science or programming. Turns out, I got both.
By day I engineer enterprise-scale endpoint infrastructure for thousands of users. After hours I'm elbow-deep in pet projects that actually scratch the programming itch: crypto mining platforms in Rust, BLE protocol reverse engineering, and firmware that probably shouldn't work but does.
Whether it's automating away a four-hour monthly task in PowerShell, building a multi-algorithm mining engine from scratch, or figuring out why an ESP32 won't handshake at 2am — I'm drawn to the stuff that breaks in interesting ways and the satisfaction of making it not break again.
Enterprise IT ExperienceMicrosoft 365, SCCM, Intune, Active Directory
Endpoints ManagedWindows, iOS, Android at banking-grade compliance
Microsoft 365 Endpoint Admin Associate+ MCSA, MCSE, MCITP, CSM, CompTIA A+
Hobby Circuit EnthusiastEmbedded systems, crypto rigs, 3D printing, BLE/RF
// skills
Core Competencies
Endpoint Management
- Microsoft Intune
- SCCM / ConfigMgr
- Windows Autopilot
- MDT / WDS
- Windows Hello for Business
- Windows 10/11 (LTSC)
- iOS & Android MDM
Identity & Security
- Entra ID (Azure AD)
- Conditional Access
- Defender for Endpoint
- BitLocker / MBAM
- KQL Threat Hunting
- FFIEC Compliance
- Okta Migration
Automation & Dev
- PowerShell (primary)
- VB / VB.NET
- Rust
- C# / ASP
- SQL / WQL / SSRS
- PSAppDeployToolkit
- Bash / Linux
Infrastructure
- Active Directory / Group Policy
- VMware vSphere
- Cisco Routing & Switching
- PKI / Certificate Services
- Delivery Optimization
- Cloud Management Gateway
- Co-Management
Hardware & Embedded
- ESP32 / Raspberry Pi
- 3D Printing (Klipper)
- BLE / 433MHz RF
- Firmware Reverse Engineering
- GPU / ASIC Mining Systems
- KiCad / EAGLE (ECAD)
- OpenSCAD
Tools & Platforms
- Ghidra (Reverse Eng.)
- ManageEngine AD SelfService
- ADMT / Domain Migration
- Axum / SQLite
- Docker / Git
- Home Assistant / ESPHome
// experience
Work History
Endpoint Engineer
First Financial Bank — Cincinnati, OH
- Managed and secured 3,100+ endpoints — ~2,200 Windows laptops/workstations, 700+ iOS, and hundreds of Android devices — maintaining consistent compliance with banking security standards.
- Deployed Windows Hello for Business to 2,100+ devices, enabling passwordless authentication and meeting MFA requirements for cybersecurity insurance eligibility.
- Led SCCM-to-Intune migration for 2,100 devices; implemented Delivery Optimization to reduce bandwidth and accelerate update distribution.
- Automated OS and application update rings (0–2+Production), eliminating 4+ hours of monthly packaging work and improving update velocity across pilot and production groups.
- Engineered Conditional Access policies during Okta-to-Entra ID migration, integrating ManageEngine AD SelfService Plus to enforce MFA at Windows logon.
- Leveraged PowerShell daily for endpoint management, reporting, and remediation — PSAppDeployToolkit, detection/remediation scripts, and custom device workflows.
- Integrated Microsoft Defender for Endpoint with Intune; enabled KQL threat hunting, device isolation, and vulnerability tracking.
- Collaborated with security, networking, and compliance teams to align configurations with FFIEC and audit requirements.
Microsoft SCCM Premier Field Engineer / Customer Engineer
JDATSG (Microsoft Vendor) — Cincinnati, OH
- Engaged with the Microsoft Global Incident Response Team on a CritSec SCCM remediation event (Beam-Suntory).
- Built a greenfield SCCM site for Mississippi Medicaid, replacing existing legacy infrastructure from scratch.
- Implemented automated patching approaches for both workstations and servers.
- Assisted in building Conditional Access, Autopilot (Azure AD Join), and Defender ATP solutions across multiple enterprise customers.
- Configured Intune Co-Management, Cloud Management Gateway, and Office 365 upgrade paths (Office 2007 → 365).
Microsoft System Center Consultant II / ConfigMgr Architect
Kizan — Cincinnati, OH
- Completed ConfigMgr (Current Branch) greenfield deployment with PKI and Internet-Based Client Management for UT Health Northeast.
- Served as interim SCCM administrator for Toyota Engineering North America during infrastructure consolidation.
- Designed custom Windows 7/8.1 deployment solution using SCCM, MDT, and PowerShell for the Commonwealth Office of Technology (Kentucky).
- Migrated thousands of users and devices between Active Directory domains using ADMT and custom PowerShell scripting (Scripps Media).
- Managed project initiatives, pre-sales technical support, and knowledge transfer sessions across multiple enterprise engagements.
IT Desktop Configuration Specialist
UC Health — Cincinnati, OH
- Managed enterprise application packaging for deployment via SCCM 2007.
- Developed solutions in VBScript, VB.NET, ASP, and InstallShield for application automation.
- Administered VMware vSphere, Windows Server infrastructure, and Group Policy configurations.
PC Support Specialist
Rumpke of Ohio — Cincinnati, OH
- Provided Level 2 desktop and VDI environment support for end users and the IT help desk.
- Administered Active Directory and managed VMware ESX 4.1 VDI environment and Wyse thin clients.
// projects
Side Projects
Multi-Algorithm Crypto Mining Platform
Active
A custom Rust-based mining platform built to make operators money — automatically. Supports 40+ coins across multiple algorithms with CPU, AMD, and NVIDIA GPU backends. The platform autonomously connects one rig or an entire fleet to the most profitable coin and pool combination in real time. No manual switching required.
BLE Ceiling Fan Smart Conversion
Complete
Converted a completely dumb ceiling fan into a Home Assistant-integrated smart device via BLE protocol reverse engineering and an ESP32 running ESPHome. It responds to automations, schedules, and voice commands. It's above my head right now — keeping the living room nice. Which is the whole point.
Raised Garden Beds from Pallet Wood
Complete
Broke down a couple of pallets and built a set of raised garden beds for fruits and vegetables sourced from the nursery. Sometimes the best projects don't need a single line of code — just a pry bar, a plan, and something to grow.
Full CAN-Bus Ender 3 Pro
85% Complete
A full modern CAN-Bus toolhead conversion on an Ender 3 Pro — SKR Pico mainboard, EBB42 toolhead board, BTT Eddy Duo probe, and U2C CAN bridge. All hardware installed. The finish line is a clean firmware reflash to get everything properly talking over CAN. Almost there.
85% — firmware reflash remaining
Dreamcast Full Flex Mod
5% Complete
A comprehensive hardware modification to a first-generation Sega Dreamcast: HDMI output, internal HDD alongside the original optical drive (keeping the disc tray), CMOS battery replacement, and RGB LED accents. Hardware acquired, console disassembled, CMOS battery and LEDs already installed. The long road to a perfect Dreamcast begins.
5% — CMOS + LEDs done, HDMI/HDD pending
// credentials
Certifications & Education
Microsoft
Microsoft Certified Solutions Associate (MCSA)
April 2012 — Present · License D992-0394
Microsoft
Microsoft Certified IT Professional (MCITP)
August 2011 — Present · License D439-9503
Microsoft
Microsoft Certified Systems Engineer (MCSE)
June 2010 — Present · License B123-8103
Scrum Alliance
Certified ScrumMaster (CSM)
Active
CompTIA
CompTIA A+
2004 · License COMP001002235941
// education
Cincinnati State
Computer Network Engineering Technology
Mosley High School — Lynn Haven, FL
Computer Science and Programming
// contact
Get in Touch
Whether it's a consulting opportunity, a technical rabbit hole worth going down together, or you just want to talk shop — reach out.