Stephan “Steff” Reiter

Technologies used on a daily base

  • Identity Management
    • Microsoft EntraID
    • Active Directory
      (incl. ESAE)
    • ForgeRock
    • Keycloak
  • Applications
    • Exchange
    • Teams
    • Azure subscriptions
    • SAML
    • OAuth/OpenID
    • Webserver
  • Development
    • PowerShell
    • PHP
    • JavaScript
    • Docker
    • Git
    • bash
    • REST API
    • SOAP
  • Security
    • OPNsense
    • Checkpoint
    • Crowdsec
    • Nftables
    • Zenarmor
    • Wireguard
    • OpenVPN
    • Authentication
      (MFA, FIDO2,…)
    • RBAC
  • Monitoring
    • Zabbix
    • Grafana
    • Elastic
  • Mail systems
    • Postfix
    • Exchange
    • IMAP
    • SPF/DKIM/DMARC
  • Others
    • Atlassian
    • Workday
    • OTRS
    • Azure subscriptions
    • Linux
    • macOS
    • Windows (2 – 11)

Soft skills and general topics encountered over the last X (X > 30) years

Leadership

Managing teams around the globe with different cultures and knowledge for corporate projects.

Project management

Managed dozens of international projects to in all our locations. Defining and implementing global processes to allow automation and cost reduction.

Budget planning

Created and controlled budgets for IT projects globally.

Languages

German and English fluently. Basic knowledge in French (close to the border) and enough Japanese to order some food, ask for the way or understand the cursing of my wife…

Programming

Very strong in PowerShell, PHP and shell (bash) programming. Started to use JavaScript and Python lately for scripting REST API calls.

Authentication

Started with LDAP authentication and migrated most systems to SAML for SSO (Single-Sign-On).
As of today while SAML is still in place, going for OAuth/OpenID authentication for an ever higher security.

Azure

Detailed knowledge about Azure with regards to EntraID as well as subscriptions and many tools. Managing applications for OpenID and creation of conditional access policies. Some basic knowledge about the Endpoint Manager (formerly Intune).

Mail systems

Microsoft Exchange (on-premises and online) were my major environment. Also managed Linux based Postfix servers, including mailbox hosting with Dovecot.

Monitoring

Implemented a global solution based on the Zabbix monitoring system.
Also used Elastic (incl. Kibana/Logstash/Filebeat) with Grafana to visualize log pulled from cloud based solutions via REST API.

PKI

Public Key Infrastructure to provide server and client certificates via a web interface as well as the automatic S/MIME certificate distribution to tollow users to encryp their mails.

Databases

Coming from the Linux side I work still a lot with MariaDB/MySQL and PostgreSQL.
Some basic knowledge about Microsoft SQL server exists.

Operating systems

Although Windows is my primary work horse, I feel most comfortable using macOS or a Linux server environment (nearly all brandings welcome).

Networking

Very good knowledge of many services like e.g. SMTP, DNS, DHCP, IMAP/POP3, DMARC, RADIUS/TACACS, SPF, SSH, IPsec, Wireguard, OpenVPN, web server (mainly Apache) routing,… – very useful still today for debugging.