Azure & Cloud Engineer. Building for the Digital Future
NeonHexa Labs is a one-person tech company founded by a Senior Azure & Cloud
Engineer with 14+ years of IT experience. Core expertise spans Microsoft Azure, Intune, Defender, and
enterprise AI — with a growing focus on AI agent development and mobile apps.
14+
Years of IT Experience
3
Azure Certifications
Azure
Cloud & Identity
AI
Agents & Automation
PS
[ photo coming soon ]
Peter Schwarcz
Founder & Lead Engineer
// Who We Are
Senior Azure Engineer. Solo Founder. Problem Solver.
I'm Peter Schwarcz, a Senior Azure & Cloud Engineer based in Budapest, Hungary, with over 14 years of IT
experience across enterprise environments. I founded NeonHexa Labs to offer cloud consulting and
infrastructure services independently.
My professional background covers Microsoft Azure, Entra ID, Microsoft Intune, Microsoft Defender, and
Windows infrastructure. I have worked with organisations including XAPT, IFRC, Cognizant, Morgan Stanley,
and Tata Consultancy Services.
I am currently expanding into AI — working with Microsoft Copilot, Claude AI in enterprise environments, and
building my first AI agents and automation workflows. I am also learning mobile app development with React
Native.
// Core Skills
Microsoft Azure
Entra ID / Azure AD
Azure Virtual Desktop
Microsoft Intune
Microsoft Defender
Windows Server
PowerShell
Microsoft 365
Microsoft Copilot
Claude AI
AI Agents
n8n Automation
React Native
// Certifications
AZ-900
Azure Fundamentals
AZ-104
Azure Administrator Associate
AZ-500
Azure Security Engineer Associate
AZ-140
Azure Virtual Desktop Specialty
// Core Expertise
Azure & Cloud Services
// 01
Azure Monitor & Observability
Deployment and migration of Azure Monitor Agent (AMA) across hybrid
environments. Log Analytics workspace setup, alert rules, and monitoring dashboards.
AMA
Log Analytics
Azure Monitor
Hybrid
// 02
Hybrid Patch Management
Cloud-only patching replacing legacy WSUS. On-premises server onboarding to
Azure ARC for centralised update management across hybrid infrastructure.
Azure ARC
Update Manager
WSUS Migration
Hybrid
// 03
Identity & Access Management
Microsoft Entra ID administration, Conditional Access policies, role-based
access control, and identity security hardening for enterprise environments.
Entra ID
Conditional Access
RBAC
SSO
// 04
Azure Virtual Desktop
AVD environment design, deployment, and ongoing management. Host pool
configuration, session host management, FSLogix profiles, and user access setup.
AVD
FSLogix
Host Pools
AZ-140
// 05
Microsoft 365 Administration
M365 tenant management, Exchange Online, SharePoint, Teams administration,
DNS configuration, and licence management for enterprise organisations.
M365
Exchange Online
Teams
DNS
// 06
Infrastructure as Code
Automated Azure infrastructure deployment using Terraform. Repeatable,
version-controlled environments for consistent and scalable cloud operations.
Terraform
Azure
IaC
Automation
// Endpoint Management
Microsoft Intune
// 01
Windows Autopilot
Zero-touch Windows 11 device deployment. Autopilot profiles, deployment
groups, and end-to-end enrollment without manual IT intervention.
Autopilot
Windows 11
Zero-Touch
// 02
Android Enrollment
Corporate and BYOD Android device management. Work Profile separation for
personal privacy, fully managed corporate devices, and app deployment.
Android
BYOD
Work Profile
Corporate
// 03
Compliance & Configuration
Device compliance policies, configuration profiles, and security baselines.
Ensuring all endpoints meet corporate security standards before granting access.
Compliance
Config Profiles
Security Baselines
// 04
App Deployment
Enterprise application deployment and management via Intune. Win32 apps,
store apps, line-of-business apps, and custom deployment configurations.
Win32
App Management
LOB Apps
// 05
Update Management
Windows Update for Business policies, update rings, and feature update
management. Controlled rollout of patches across device fleets.
WUfB
Update Rings
Patch Management
// 06
Intune & Defender Integration
Integration between Intune and Microsoft Defender for Endpoint. Device
compliance linked to security posture for conditional access decisions.
Defender
Conditional Access
Security
// Security
Microsoft Defender
// 01
Defender for Endpoint
Enterprise endpoint protection deployment and management. Threat detection,
vulnerability management, and security posture improvement across devices.
MDE
EDR
Threat Detection
// Artificial Intelligence
AI & Agents
Microsoft Copilot
Coming Soon
// 01
Coming Soon
Currently expanding into Microsoft Copilot. Content will be added as
experience grows.
In Progress
Claude AI
Enterprise Deployment
// 01
Claude Desktop — Enterprise Rollout
Deployment of Claude AI Desktop application via Microsoft Intune to
enterprise Windows devices. Win32 app packaging, silent install, and managed rollout.
Claude AI
Intune
Win32
Enterprise
// 02
More coming soon
More Claude AI enterprise use cases will be added here as they are
implemented.
In Progress
Custom AI Agents
Learning
// 01
Coming Soon
Currently learning how to build AI agents. First projects will be shared
here and in the Updates section as they are completed.
In Progress
Claude API
n8n
// Delivered Solutions
Portfolio
// Case Study 01
Azure Monitor Agent Migration
140 Servers
Hybrid Environment
// Challenge
Legacy Microsoft Monitoring Agent (MMA) was reaching end-of-support across
a hybrid environment of 140 Azure and on-premises servers. A migration to the modern Azure Monitor
Agent was required without disrupting monitoring coverage.
// Solution
Planned and executed a full MMA to AMA migration across all 140 hybrid
servers. Deployed Data Collection Rules (DCRs), validated log ingestion into Log Analytics workspaces,
and decommissioned the legacy agent with zero monitoring gaps.
// Result
All 140 servers successfully migrated to AMA. Modern monitoring
infrastructure in place with improved performance, centralised data collection rules, and full
readiness for future Azure Monitor features.
Azure Monitor Agent
Log Analytics
Data Collection Rules
Hybrid Infrastructure
// Case Study 02
Cloud-Only Patch Management with Azure ARC
140 Servers
Hybrid + On-Prem
// Challenge
Organisation was running WSUS for on-premises server patching — a
high-maintenance legacy solution lacking visibility and central control across hybrid infrastructure.
// Solution
Decommissioned WSUS and migrated to Azure Update Manager. Enrolled all
on-premises servers into Azure ARC, configured patching schedules, maintenance windows, and compliance
reporting from the Azure portal.
// Result
140 servers managed from a single cloud-based pane of glass. WSUS fully
retired. Patch compliance visibility improved with automated reporting and centralised control over
both Azure and on-premises infrastructure.
Azure ARC
Azure Update Manager
WSUS Decommission
Patch Management
Hybrid Cloud
// Case Study 03
Full Microsoft Intune Deployment
300 Devices
Windows + Android
// Challenge
Organisation needed a modern cloud-based endpoint management solution for a
mixed device fleet of Windows 11 laptops and Android devices — including both corporate-owned and BYOD
devices.
// Solution
Implemented Microsoft Intune end-to-end. Windows 11 enrolled via Autopilot
for zero-touch deployment. Android devices enrolled in two profiles — BYOD with Work Profile
separation, and fully managed corporate devices. Deployed apps, compliance and configuration policies
across all 300 devices.
// Result
300 devices fully managed under Intune. Zero-touch Windows deployment via
Autopilot reduced IT onboarding time significantly. Android BYOD users maintain personal privacy while
corporate data stays protected.
Microsoft Intune
Windows Autopilot
Android BYOD
Corporate Android
Compliance Policies
App Deployment
// Progress Log
Updates
// LOADING...
// Blog
Blog
// LOADING...
// Get In Touch
Contact
Open to connecting with fellow engineers, potential collaborators, and anyone interested in Azure, AI, or
what I'm building here.