WORK EXPERIENCE
Managed Service Provider | IT Services Technician | May 2024 – Present
- Identified, recommended, and deployed a Privileged Access Management solution company-wide, which was subsequently adopted as a managed service offering for clients.
- Managed SentinelOne Endpoint Detection and Response (EDR) solution across 15+ client environments, enforcing security policies and supporting threat monitoring and response
- Led the configuration and deployment of Microsoft Intune for 3 Microsoft 365 tenants, implementing Autopilot enrollment, Mobile Device Management, and Conditional Access policies including rule-based and location-based access controls
- Managed Microsoft 365 environments via Global Administrator accounts, managing identity, access, licensing, and security configurations across 15+ tenants
- Maintained comprehensive technical documentation covering procedures, configurations, and asset management to support consistent service delivery
- Supported new client onboarding and delivered end-user technical support via remote management tools, on-site visits, and ticketing systems
Facilities Maintenance Company | Junior IT Support | Dec. 2022 – Oct. 2024
- Implemented and administered a Remote Monitoring and Management (RMM) system for company-wide device visibility, proactive alerting, and remote remediation
- Delivered hardware and software support including troubleshooting, component upgrades, and application management across desktops, laptops, and peripherals
- Provided end-user technical support and maintained system reliability across the organization
HOME LAB PROJECT
- Built and manage a Proxmox hypervisor hosting multiple VMs and LXC containers, including a Windows Server 2022 Active Directory domain environment with domain-joined workstations, user account management, and Group Policy Object (GPO) enforcement
- Deployed and manage pfSense as the primary network firewall and router, utilizing VLAN segmentation, ACLs, firewall rules, and traffic policies to enforce network-level security boundaries
- Configured Tailscale VPN across multiple home devices, integrated alongside HTTPS redirects and MFA enforcement across self-hosted services for secure remote access
- Deployed TrueNAS for local NAS storage with ZFS, and Nextcloud for self-hosted cloud file sharing, both hardened with access controls and encrypted connections
- Deployed Pi-hole as a network-wide DNS sinkhole for ad blocking, DNS filtering, and secure DNS resolution across all VLAN segments
- Ensured the entire environment adhered to Zero Trust principles, enforcing least privilege access, network segmentation, encrypted communications, and MFA across all services where possible
CERTIFICATIONS
CompTIA
- A+ Network+ Security + Cybersecurity Analyst+ (In Progress)
Microsoft
- Microsoft Certified: Security Operations Analyst Associate
Apple
- Certified Support Professional
EDUCATION
Private University | Bachelor of Science | Cybersecurity and Information Assurance | Oct. 2023 – Present
SKILLS
Security & Identity:
- Microsoft Defender for Endpoint, EDR deployment & management, SentinelOne, Entra ID Conditional Access, Privileged Access Management, MFA enforcement, Zero Trust architecture, VLAN segmentation, Firewall policy & ACL configuration, VPN configuration (Site-to-Site, Client, Tailscale)
Microsoft & Cloud:
- Microsoft 365 Administration, Microsoft Exchange Admin, Azure Entra ID, Microsoft Intune & Autopilot, Microsoft Sentinel, Microsoft Defender, Microsoft XDR, SharePoint Online, Global Admin & tenant management
Infrastructure & Systems:
- Windows Server 2022, Active Directory & GPO, Proxmox virtualization, TrueNAS & ZFS storage, pfSense, DNS management, KQL, Network rack builds & deployment
Endpoint & Support:
- macOS, iOS, Apple Certified Support, Remote Monitoring & Management (RMM), TakeControl, Remote support tools, Hardware & software troubleshooting
General:
- Technical documentation, Asset management, Communication, Client onboarding, Client Relationship, IT service delivery
