Index
005 / 2026
Section
Background
Practice
Infrastructure & Security
Based in
Boston / NYC
Rich Dieu View LinkedIn →
Rich Dieu Infrastructure & Security Engineer Founder · Rich Dieu IT Solutions LLC
LinkedIn →

Building the quiet systems that hold everything else up.

§ Bio

An engineer who
keeps adapting.

I’m an IT Security & Infrastructure Engineer with experience across systems administration, endpoint management, cloud operations, vulnerability remediation, compliance-driven environments, and technical support.

Story

My work has supported regulated teams where uptime, documentation, security controls, and change discipline matter. I specialize in turning messy infrastructure into systems that are easier to operate, easier to secure, and easier to explain during an audit.

The work spans identity and zero-trust, endpoint hardening, vulnerability remediation at scale, incident response, and continuity operations. I’ve led patch campaigns across 70,000+ findings, deployed EDR agents across managed fleets, migrated legacy lab equipment off end-of-life Windows without breaking GxP compatibility, and stood up identity-gated VPN tunnels that retired public RDP exposure for good.

What ties it together is a refusal to ship work that only one person can support. Every engagement closes with a runbook, a recovery plan, and an evidence trail the next operator can read and run from. NIST 800-53, Zero Trust, GxP, FedRAMP, CMMC, frameworks aren’t the destination, they’re the language operators use to make sure the same problem doesn’t come back next quarter.

I keep building because the stack keeps moving. New compliance regimes, new identity protocols, new attacker techniques. The practice is the same: read the constraints honestly, design for the audit you haven’t had yet, automate what shouldn’t be done twice, and document everything for the person who comes after you.

Systems & Cloud

  • Systems administration and infrastructure support
  • Cloud and hybrid infrastructure
  • Automation and operational documentation

Security & Endpoint

  • Endpoint security and device lifecycle management
  • Vulnerability remediation and risk tracking
  • Incident response and escalation support

Compliance & Context

  • Compliance evidence and control mapping
  • Regulated lab and enterprise environments
01

Documented or it didn’t happen.

Every change ships with a runbook the next operator can run from cold. No tribal knowledge.

02

Automate what shouldn’t be done twice.

Manual work has a half-life. PowerShell, infrastructure-as-code, and pipelines retire tickets instead of replicating them.

03

Build for the audit you haven’t had yet.

NIST, ISO, GxP, NIS2, controls mapped to evidence so audits become a Tuesday, not a fire drill.

04

Adapt or be left behind.

The stack moves. New regimes, new identity protocols, new attack surface. Standing still isn’t a strategy.

§ Trajectory

What I’ve been
building, in order.

Selected engagements from a working career across regulated infrastructure.

DevOps Engineer & Cloud Administrator · Regulated Compliance Software

Cloud · On-Prem · Collaboration Suite, Present
  • Administer hybrid server and desktop estates across cloud, on-prem data centers, and the enterprise collaboration suite, enforcing operational controls aligned to recognized security-control and zero-trust frameworks.
  • Integrate compliance platforms across cloud and on-prem infrastructure, secure connectivity, interoperability, identity mapping, and control alignment, for enterprise, biotech, and energy-sector environments.
  • Strengthen cyber-defense posture through hands-on managed detection and response: validating detections, escalating threats, and supporting endpoint-hardening programs across access, configuration, incident, and audit control families.
  • Execute incident response, containment, and recovery in highly regulated settings, R&D labs, energy and electrical facilities, and high-availability enterprise systems under strict procedural and audit standards.
  • Deploy structured change-control workflows with full traceability, governance, and documentation integrity for every administrative and integration action.
  • Provide rapid physical response at data centers during emergencies: hardware replacement, server and network recovery, privileged troubleshooting, and forensic triage on business-critical systems.

Global Systems Administrator & Security · Pharmaceutical / MedTech R&D

Contract · Regulated R&D Infrastructure
  • Led escalation-level, non-customer-facing remediation targeting endpoint hardening, configuration drift, and inherited security-backlog reduction across regulated R&D infrastructure.
  • Engineered and supported desktop environments across R&D and regulated labs, delivering stable, secure, high-performance endpoints for scientists and engineering teams.
  • Managed identity-provider and hybrid-identity integrations, enforcing group policy, conditional access, multi-factor authentication, and secure workstation baselines.
  • Built and maintained endpoint-management configuration profiles that harden devices, streamline provisioning, and reduce drift across the estate.
  • Automated patching, validation, software deployment, and configuration checks with scripting, raising SLA compliance.
  • Drove workstation upgrade and migration projects that cut downtime and improved performance for mission-critical lab use.

Cybersecurity Engineer · Pharmaceutical Enterprise

Vulnerability Remediation at Scale
  • Remediated 70,000+ vulnerabilities across Linux and Windows systems using enterprise vulnerability scanners and endpoint protection.
  • Automated patching across 500+ endpoints with scripting, cutting manual effort by ~60%.
  • Coordinated cross-functional remediation projects and owned risk tracking end to end.
  • Led containment and remediation in close collaboration with the internal security operations team.

Technical Support Specialist · Professional Services

Identity Reviews · Tier-3 Support
  • Conducted federated-identity access reviews across business systems, closing stale and over-broad grants.
  • Resolved Tier-3 endpoint and conferencing escalations at 98% SLA adherence.
  • Monitored endpoint performance with experience analytics and produced compliance reporting for leadership.

Early Career, IT Support & Systems Roles · Progressive Enterprise & Clinical Support

Foundational Experience
  • Six years of progressive IT support across healthcare, consumer electronics, and creative industries, multi-OS desktop and application support, endpoint imaging and deployment, account provisioning, and enterprise ticketing.
  • Trained and mentored junior support staff; authored end-user-facing documentation and internal procedures; partnered with infrastructure and network teams on escalations.
  • Built foundational expertise in server administration, directory services, the enterprise collaboration suite, macOS, and IT service management that underpins current senior support and engineering work.
10yr
Across IT support, systems administration, and security engineering.
70k+
Vulnerabilities remediated across Linux and Windows estate.
500+
Endpoints under automated patching with PowerShell harnesses.
§ Working with me

Bring the problem.
I’ll bring the runbook.

Discuss a Role or Project See Case Studies