Jessie Salgado

Identity Modernization & Hybrid Infrastructure Architect
Microsoft Entra ID | IAM | Zero Trust | Public-Sector Modernization

Professional photo of Jessie Salgado

Modernizing complex systems into secure, resilient platforms teams can actually operate.

Practical architecture for identity, access, automation, resiliency, and cloud-connected infrastructure that reduces manual work and strengthens operational continuity.

I turn fragmented legacy systems and cloud services into clear architectures, migration plans, validation steps, and runbooks teams can own after go-live.

  • 20K → 50K Identity Scale Lifecycle automation, access governance, provisioning, and hybrid identity planning across internal, external, cloud, and legacy systems.
  • SQL HA/DR Resiliency SQL Server Always On and Distributed Availability Group design built to improve failover readiness, recovery posture, and operational repeatability.
  • Enterprise Identity Modernization Modernized identity workflows across Active Directory, Entra ID, Active Roles, Ping AIC, MFA/federation, and connector-based lifecycle systems.
  • Runbook-Ready Architecture Migration plans, validation steps, rollback-aware documentation, and operational handoff built for teams that must own the system after go-live.

About

I am an identity modernization and hybrid infrastructure architect with a practical delivery style shaped by public-sector systems, higher-education infrastructure, K-12 technology environments, and hands-on enterprise operations. My work focuses on turning fragmented legacy systems into secure, supportable platforms with clear architecture, implementation plans, validation steps, and operational handoff.

  • Practical Architecture: Balance future-state design with implementation reality, operational risk, and long-term support.
  • Identity-Centered Modernization: Focus on IAM, hybrid identity, lifecycle workflows, access governance, and secure platform readiness.
  • Runbook Discipline: Build migration steps, validation plans, rollback-aware procedures, and handoff documentation teams can use.
  • Cross-Functional Delivery: Work across administrators, vendors, application teams, leadership, and end users to move complex work forward.

How I Help

I help teams move from fragmented systems and unclear requirements to practical architecture decisions, implementation plans, validation steps, and operational handoff.

When identity processes are too manual

I help map lifecycle workflows, access patterns, provisioning logic, group assignment, and deprovisioning requirements into repeatable identity modernization plans.

When infrastructure needs to be more resilient

I help design supportable architectures for availability, recovery, monitoring, backup, failover readiness, and operational continuity.

When legacy systems need a modernization path

I help teams account for dependencies, integration points, data flows, security controls, migration risk, and support needs before systems are changed.

When operations need more than a diagram

I create documentation, test steps, validation plans, troubleshooting guidance, and runbooks that make the architecture usable after go-live.

Skills

Core capabilities organized around identity modernization, secure infrastructure, resiliency, automation, and the operational discipline needed to move complex systems from design into supportable production use.

  • Identity & Access Modernization

    Microsoft Entra ID, Active Directory, AD Connect, Active Roles, Ping AIC, AD LDS, MFA/federation planning, lifecycle automation, provisioning, deprovisioning, delegated administration, access governance, group automation, and hybrid identity integration.

  • Zero Trust, Security & Governance

    Least-privilege administration, Conditional Access planning, access reviews, privileged access planning, identity lifecycle controls, MFA/federation alignment, audit-ready documentation, disaster recovery, business continuity, and secure AI/Copilot readiness.

  • Microsoft & Hybrid Infrastructure

    Azure, Microsoft 365/O365, Windows Server, Hyper-V, DNS, DHCP, Group Policy, IIS, certificates, gMSA, Kerberos, SPNs, constrained delegation, monitoring, backups, and cloud-connected infrastructure.

  • Data, SQL Resiliency & Integration

    SQL Server HA/DR, Always On AGs, Distributed AGs, WSFC, DB2/SQL integration, Micro Focus data flows, encrypted connectivity, load-balancer health probes, and SQL query design.

  • Automation, Runbooks & Operational Handoff

    PowerShell, SQL, Javascript, Bash, XML/CSV processing, lifecycle workflow automation, software deployment packaging, validation steps, rollback-aware procedures, how-to documentation, and supportable go-live handoff.

  • Architecture, Roadmaps & Stakeholder Delivery

    Requirements analysis, functional design, implementation planning, migration strategy, technical roadmaps, vendor coordination, stakeholder alignment, training, change coordination, and technical community knowledge sharing.

Experience

Solutions Architect - Texas Department of Criminal Justice

October 2022 - Present | Huntsville, Texas

Lead enterprise systems analysis, solution planning, technical roadmaps, and implementation support for public-sector modernization initiatives.

  • Translate operational needs into architecture direction, functional design, implementation planning, and stakeholder-ready documentation.
  • Support enterprise identity modernization for about 20,000 current users with planned growth of roughly 30,000 additional users, including Active Roles implementation, Ping AIC requirements and implementation planning, request-driven lifecycle automation, group assignment, AD LDS/Micro Focus integration, Entra/O365 connector support, MFA, federation, and access governance.
  • Develop implementation documentation, operational runbooks, workflow review notes, and validation plans that reduce manual onboarding and offboarding effort while supporting repeatable go-live and troubleshooting processes.
  • Designed SQL Server resiliency and modernization architecture for a mainframe workload transition, including high-availability availability groups, distributed availability groups, encrypted connectivity, and operational runbooks.
  • Coordinate with administrators, application owners, vendors, and leadership to reduce implementation risk and align solutions to agency needs.

System Administrator III - Sam Houston State University

January 2021 - October 2022 | Huntsville, Texas

Designed, implemented, upgraded, and supported university server systems and core enterprise services across a higher-education technology environment.

  • Supported authentication, access control, databases, printing, file sharing, disaster recovery, storage, monitoring, and infrastructure operations.
  • Built and maintained systems ranging from small deployments to larger multi-server environments using change management and documentation practices.
  • Applied automation, backup practices, and security controls aligned with institutional, state, and federal requirements.

Systems Administrator - Texas Department of Criminal Justice

April 2014 - January 2021 | Huntsville, Texas

Administered and improved enterprise Windows Server, Active Directory, Azure, federation, authentication, access control, virtualization, and monitoring environments.

  • Coordinated new and revised system installations, defined operational and technical requirements, and recommended enterprise technology solutions.
  • Designed and implemented secure Hyper-V-based virtual datacenter environments, application services, segmented instructional systems, LAN/WAN-connected systems, identity tools, monitoring platforms, and server automation.
  • Developed operating procedures, supported disaster recovery planning, and automated administrative tasks using PowerShell, SQL, and command-line tools.

Earlier Experience - Education Technology & Technical Operations

2004 - 2014 | Texas

Built a foundation in K-12 technology support, endpoint deployment, account support, classroom application packaging, network printer support, user training, repair operations, service coordination, and customer-facing technical leadership across education and private-sector environments.

  • Supported a 44-school K-12 district environment while resolving campus technology issues, classroom application deployments, endpoint support, account assistance, and user-facing service requests.
  • Created a self-contained automated installer to simplify classroom application deployment when network reliability made traditional installation inconsistent.

Education & Certifications

Associate of Applied Science - Computer/Information Technology Administration and Management

Texas State Technical College Waco | 2003 - 2005

Formal technical education focused on information technology administration, systems support, and technology operations.

Computer Engineering Coursework

University of Houston | 2007 - 2009

Continued studies in computer engineering while progressing through technical and systems support roles.

  • Certifications: A+ Certification, Network+ Certification, Microsoft Certified: Azure Fundamentals (issued October 2019)
  • Professional Development: Windows Server 2022 First Look; Navigating AI Ethical Challenges and Risks
  • Recognition: Top Service Technician; Team Knowledge Achievement Award

Technical Community

Public Stack Exchange activity that reinforces hands-on troubleshooting, continuous learning, and knowledge sharing beyond formal job responsibilities.

  • Connected communities

    Public profile activity spans Stack Overflow, Server Fault, Super User, and Database Administrators.

  • Core topics

    PowerShell, Active Directory and AD LDS, SQL Server, DB2-to-SQL transformation, certificates, Microsoft 365, SCOM, endpoint support, and systems administration.

  • Professional value

    Shows practical problem-solving, research discipline, and willingness to document questions, edge cases, and solutions in public technical forums.

View the full public profile in the Professional profiles section below.

Contact

I am open to senior architecture conversations focused on IAM, Microsoft identity modernization, Zero Trust identity, public-sector modernization, hybrid infrastructure resiliency, and secure AI/Copilot readiness planning.

Professional profiles

View my professional background and technical community activity through the profiles below.

Send a message

Contact LinkedIn