The tools I use to build, manage, and automate.
MDM enrollment, configuration profiles, PPPC policies, and Intune-managed Mac deployments. Deep experience with macOS system internals and enterprise tooling.
Windows Autopilot device provisioning, Entra ID management, Intune policy configuration, and PowerShell-driven device lifecycle automation.
Shell scripting for automation, Linux server administration, self-hosted service deployment, and CLI tooling for day-to-day ops work.
Exchange Online, Microsoft Graph, and Azure AD automation. Scripts for user lifecycle management, compliance, mailbox delegation, and reporting.
Automation scripts, data processing utilities, and tooling to glue together APIs and command-line workflows.
HTML, CSS, and JavaScript from scratch. React + Vite for modern web apps. Built interactive tools, games, and media servers.
Self-hosted Forgejo git server, local LLM inference with llama.cpp, DNS configuration, and network infrastructure at home.
Entra ID / Azure AD, conditional access policies, MFA enforcement, Autopilot provisioning, and enterprise security posture hardening.
Git version control, self-hosted repository management, scripted deployments, and infrastructure-as-code mindset applied to IT operations.
A sample of what I've built across automation, endpoint management, and web development.
Multi-stage PowerShell script suite that automates the full Windows Autopilot enrollment workflow: hardware hash collection, Graph API import, profile assignment, Entra group membership, and MDM enrollment, with status output and error handling at each step.
Custom .mobileconfig configuration profiles for corporate Mac management via Intune. Covers browser policy enforcement, Privacy Preferences Policy Control (PPPC), and automated MDM enrollment for large-scale Mac deployments.
Suite of PowerShell scripts for enterprise M365 administration: user onboarding and offboarding, mailbox delegation, litigation hold checks, AD cleanup, compliance searches in Teams, contact creation, and more. Built on Exchange Online and Microsoft Graph.
Self-hosted Forgejo instance as a private Git server for all personal projects. Local LLM inference stack built on llama.cpp for offline AI experimentation. Custom DNS, network segmentation, and Linux server administration throughout.
Self-hosted video jukebox server for local network use. Node.js + Express backend with byte-range streaming, weighted shuffle algorithm (liked videos get higher weight), keyboard/swipe controls, and video preloading. Works entirely offline.
Interactive music education web app with real-time chord and scale visualization, a Web Audio API-based sound engine, metronome, and drum machine. Built with React 19 + Vite, featuring a custom fretboard renderer and chromatic tuner.
Static web app that finds nearby bike trails using OpenStreetMap data. Geocodes an address via Nominatim, queries trail routes from the Overpass API, and renders results on an interactive Leaflet map with distance filtering and trail geometry overlays.
Assorted front-end builds including a Bay Area ice cream map, neighborhood map, onboarding form, tech reference card generator, and several CSS experiments. Straight HTML, CSS, and vanilla JS with no framework.
Bash scripts for Mac endpoint maintenance: automated macOS updates, hostname renaming for asset tracking, OneDrive sync management, and OSINT tooling integration. Designed for quick deployment on managed Macs.
I'm Sean Morrison, an IT engineer with 30 years of experience across endpoint management, identity, and enterprise infrastructure. My focus is macOS and Windows endpoint engineering — MDM policy buildout, Intune administration, and the work that makes devices reliable at scale.
Most recently I built a greenfield macOS management program from scratch at Ross Stores: Apple Business Manager integration, Automated Device Enrollment, 30+ Intune configuration profiles enforcing CIS MSB26 security baselines, enterprise security stack integration, and full operational documentation and handoff. Before that I spent eight years as the dedicated IT engineer at Standard Fiber, owning the full endpoint and M365 stack across US and international offices.
I'm fluent across Microsoft 365, Entra ID, Intune, Exchange Online, and PowerShell automation, and I run a homelab where I self-host services, run local LLM inference with llama.cpp, and keep a private Forgejo git server for personal projects. I also build web tools — React apps, Node.js servers, and plain-HTML utilities — because being able to ship something interactive is a useful complement to ops work.