Cloud, identity, security, and data-driven infrastructure

Systems, Cloud, and Security Architect

Architecting and operating infrastructure, enterprise SaaS platforms, and information systems (HRIS, SIS, ERP), including the integrations and operational data flows that tie them together. Work spans cloud-native and hybrid environments, identity platforms, security operations, and the automation pipelines required to run large systems reliably.

View Experience Explore Skills How This Website Was Made

Infrastructure Experience Enterprise environments across infrastructure, identity, and security Designed, secured, and operated environments spanning endpoints, identity systems, network infrastructure, and production operations.

Environment scale included thousands of managed endpoints and large user populations

Architecture Leadership End-to-end infrastructure delivery Architecture and implementation across networking, identity systems, device management, cloud platforms, and enterprise systems.

Led a large infrastructure modernization initiative spanning multiple domains

Platform Scope Cloud, SaaS, information systems, and on-prem domains Systems designed across hybrid enterprise environments combining cloud platforms, SaaS ecosystems, information systems, and traditional infrastructure.

Automation Infrastructure as code, workflows, and CI pipelines Operational automation and platform integration pipelines built to reduce manual work and improve reliability.

Terraform infrastructure provisioning
GitHub Actions CI/CD pipelines

Overview

Technical Scope

Architecture across identity, security, cloud platforms, information systems, and operational data. Focus areas include infrastructure-as-code, automation pipelines, SaaS integrations, data movement between systems, and platform design across modern and established enterprise environments.

Security, identity, and data-aware platform design

Architecture, IaC, workflows, and systems integration

Cloud-native, hybrid, enterprise SaaS, and on-prem domains

Focus map

Security Identity Data & Analytics Architecture IaC Data Pipelines Workflows Automation Cloud Native Hybrid Emerging Tech Legacy Systems On-Prem

Current focus: identity architecture, security operations, and internal IT modernization

Strengths: IAM, cloud operations, automation, incident response, and practical engineering under pressure

Lacey, WA

Security+, Network+, ITIL 4 Foundations, CISSP in progress

Profile

Professional Summary

Clear, technical, and written to reflect practical engineering experience.

Experience spanning enterprise SaaS ecosystems, multi-cloud environments, and hybrid infrastructure across MSP, enterprise, healthcare, and education sectors.

Deep work in identity architecture including Entra ID, hybrid Active Directory, RBAC design, Conditional Access policy engineering, access reviews, endpoint security, and SIEM-driven monitoring.

Hands-on with Terraform, GitHub Actions, GCP, Azure, AWS, and automation frameworks that support repeatable deployments, operational telemetry, and workflow-driven infrastructure.

Combines engineering depth with operational leadership: incident response, architecture decisions, monitoring analysis, SaaS integrations, and translating platform and operational data into practical improvements, reporting, and automation.

IAM Security Operations Cloud Engineering DevSecOps Networking Endpoint Management

Technical domains

Platform and Architecture Coverage

Organized by platform domain and operating responsibility rather than individual vendor names.

Cloud and Platform Engineering

Architecture and operations across modern cloud platforms and hybrid infrastructure.

Azure, AWS, and Google Cloud Platform
Hybrid cloud architecture and platform integration
Terraform, CI/CD, and cloud automation workflows

Identity and Access Platforms

Identity design, lifecycle control, and policy enforcement across cloud and on-prem systems.

Entra ID, Active Directory, Google Workspace identity
RBAC, Conditional Access, MFA, and entitlement reviews
SAML, OAuth, SCIM, service principals, and API permission scoping

Infrastructure and Systems

Core enterprise systems administration spanning virtualization, hosting, endpoints, and operating systems.

Windows Server, Linux, VMware, Hyper-V, and KVM
MDM, endpoint lifecycle management, and hybrid hosting support
Legacy enterprise platforms and mixed-environment operations

Security Engineering and Monitoring

Layered security controls across identity, endpoints, network boundaries, and response workflows.

SIEM, endpoint security, network security, and vulnerability remediation
Incident response, logging, hardening, and compliance-aligned controls
DLP, audit readiness, and regulated environment support

Enterprise Systems and Integrations

Information systems architecture, integration work, and operational data movement across business platforms.

HRIS, SIS, ERP, SaaS ecosystems, and service platforms
System integrations, data migrations, data pipelines, and reporting flows
Operational analytics, Power BI, and platform administration when needed

Networking and Operational Delivery

Network architecture, multi-site connectivity, and end-to-end infrastructure execution.

Routing, switching, VLANs, VPNs, firewall policy, and WAN design
Multi-site environments, outage response, and escalation engineering
Vendor coordination, modernization planning, and resilient service delivery

Work history

Experience

Condensed to keep the tone direct, credible, and professional.

The SEER Group

Cloud, Identity, Security, and Internal IT Modernization

Systems Engineer III

2025 - Present

Lead identity and security engineering efforts across a growing multi-site organization, including Entra ID governance, RBAC design, Conditional Access, MFA, and hybrid identity controls.
Drive modernization of internal IT operations, including the shift from MSP-supported service desk functions to more capable in-house processes.
Support security monitoring and response through Microsoft Sentinel, endpoint security platforms, audit preparation, entitlement review, and operational risk remediation.
Work across infrastructure, cloud, and process architecture to improve standardization, resilience, and long-term maintainability.

InTech Consulting

MSP Operations, Security Engineering, Automation, and Enterprise Platforms

System Administrator III

2023 - 2025

Supported client environments spanning identity, Microsoft 365, Azure, AWS, endpoint protection, and security operations.
Helped design and operationalize service frameworks, security tooling, SIEM workflows, and automation using tools such as Rewst and ImmyBot.
Contributed to regulated client environments through access control, policy enforcement, evidence collection, remediation planning, and audit support.
Worked as a senior escalation point across systems, networking, user impact incidents, and infrastructure stability issues.

Mount Carmel School

Infrastructure Architecture, Identity, SaaS, Networking, and Compliance

IT Infrastructure Engineer

2021 - 2023

Served as the primary IT administrator for an environment supporting hundreds of users and thousands of managed devices.
Led major infrastructure upgrades, including network redesign, endpoint management, datacenter refresh work, SaaS and identity improvements, and security baseline enforcement.
Built automated student onboarding workflows using Google Workspace and cloud automation, reducing manual provisioning effort.
Supported compliance, E-Rate project coordination, vendor management, and budget-sensitive technology planning.

Winning With Rehab

Healthcare IT Operations, M365, Endpoint Control, and Security Administration

IT Administrator

2019 - 2021

Built and supported core IT systems for a remote startup environment, including Microsoft 365 administration, endpoint setup, onboarding, and policy enforcement.
Implemented practical security controls such as MFA, access restrictions, device management, and patching processes to support protected data handling.
Handled broad day-to-day administration across users, assets, systems, and service operations.

Tech Connection Inc.

Infrastructure Support, Network Deployment, and Field Operations

Junior Technician

2018 - 2019

Supported senior engineers with network installation, copper and fiber work, endpoint troubleshooting, and field deployment tasks.
Gained early hands-on experience with infrastructure buildouts, user support, and practical problem-solving in client environments.

Capabilities

Skills and Focus Areas

Structured to present core strengths with clarity and consistency.

Identity and Access Management

Entra ID, hybrid Active Directory, group and role design, Conditional Access, MFA, lifecycle support, access review workflows, and entitlement governance.

Entra ID RBAC Conditional Access MFA

Security Engineering

SIEM operations, endpoint protection, security monitoring, hardening, investigation support, compliance mapping, and operational remediation.

Microsoft Sentinel Todyl ESET NIST 800-53

Cloud and DevOps

Terraform-driven infrastructure, GitHub Actions pipelines, secret-aware automation, and practical multi-cloud work across GCP, Azure, and AWS.

Terraform GitHub Actions GCP Azure

Systems, Networking, and Endpoint

Network deployment, firewall administration, VPNs, MDM, RMM, endpoint lifecycle management, and troubleshooting across mixed environments.

FortiGate SonicWall Unifi MDM

Data, Integrations, and Automation

System integrations, SaaS platform connectivity, data migrations, platform administration where required, data pipeline design, reporting pipelines, and operational analytics used for monitoring, automation, and business intelligence across enterprise systems.

Power BI Data Pipelines Data Migration API Integrations

Education

Academics and Certifications

Formal training and professional credentials supporting infrastructure, security, and enterprise systems work.

B.S. Cybersecurity

Western Governors University - in progress. Coursework focused on security engineering, infrastructure security, and enterprise defense practices.

CompTIA Security+

Security architecture fundamentals including identity controls, access models, incident response, and defensive security operations.

CompTIA Network+

Enterprise networking fundamentals covering routing, switching, troubleshooting, and infrastructure connectivity.

ITIL 4 Foundations

Operational service management framework focused on repeatable, reliable IT service delivery.

In Progress

CISSP

Advanced security architecture, governance, and risk management across enterprise environments.

Build Overview

How This Website Was Made

High-level view of the cloud-native delivery pattern behind this site: static hosting, infrastructure-as-code, automated deployment, and cost-aware operational safeguards.

Static hosting and CI/CD architecture

Source

GitHub Repository

Version-controlled HTML, CSS, cloud infrastructure, and deployment workflow definitions maintained in a single repository.

Pipeline

GitHub Actions

Automated build and deployment pipeline handles validation, secret-aware execution, and consistent delivery from repository to hosting target.

Platform

GCP and Firebase Hosting

Static hosting delivered through Google Cloud and Firebase with managed HTTPS, cloud-native delivery, and repository-driven deployment flow.

Infrastructure as Code: Terraform used for cloud resource provisioning, remote state management, and reproducible infrastructure changes.

Secure Automation: Secrets handled through GitHub and cloud-native secret management patterns rather than local workstation execution.

Operational Safeguards: Budget-aware controls, automated shutdown logic, and cloud-native monitoring patterns reduce manual overhead and control spend.