Summary

I’m a security-minded IT specialist who’s approachable, curious, and focused on doing things the right way. I design, harden, and automate Windows and Linux environments, tune SIEM and EDR systems, and keep documentation clear so teams can move faster. I have hands-on experience with Windows Server, Ubuntu Server, Active Directory/Group Policy, DNS/DHCP, virtualization, endpoint security, and automation tools like PowerShell, Python, Ansible, and Power Automate. I’m working toward a dedicated Security Analyst/Engineer role, bringing continuous learning, clear communication, and a calm, collaborative approach to every project while building resilient systems that keep users safe and strengthen overall security posture.

Experience

Information Technology Specialist — Common Collection Agency (02/2024 – Present)

• Firewall governance: Reviewed and enforced access control rules on SonicWall and host‑based firewalls using least privilege/implicit deny; removed legacy objects/rules; implemented regular configuration backups for quick recovery.
• Endpoint & server hardening: Established secure baselines and patching cadence for Windows and Linux; deployed configurations via RMM and Ansible Semaphore; blocked unnecessary inbound/outbound ports (e.g., disable RDP exposure on workstations given RMM access).
• Active Directory security: Restructured OU design around delegation boundaries; aligned GPOs with Microsoft security baselines; removed outdated/bloated policies (e.g., legacy Start Menu settings) to reduce attack surface and complexity.
• SIEM (AlienVault/OSSIM): Deployed and grouped agents by role (servers, endpoints); built dashboards (failed logons, failed RDP); tuned alerts to reduce noise and false positives; filtered low‑value events to manage cloud storage.
• Log retention & forensics: Automated security log archiving with PowerShell and Task Scheduler, preserving evidence and preventing overwrites for incident investigations and compliance needs.
• EDR/RMM operations: Managed endpoint tooling, created automated tasks for device profiles, investigated alerts, and improved response workflows.
• Vulnerability management: Performed scans, analyzed findings, prioritized risks, and coordinated remediation with stakeholders.
• Data Loss Prevention (DLP): Implemented policies and controls to protect sensitive information.
• Disaster recovery: Planned and executed DR and backup tests; validated RPO/RTO assumptions and documented recovery procedures.
• Automation: Built workflows and scripts with PowerShell, Python, Ansible, and Power Automate to reduce manual effort and increase consistency in both admin and security tasks.
• Systems administration: Configured/maintained Windows & Linux servers; monitoring, patching, and capacity planning.
• Core services: DNS/DHCP design & maintenance; RAID setup; secure network configurations; certificate and backup management.
• User & access management: Accounts, security groups, and folder permissions aligned to least privilege and auditability.
• Security awareness: Delivered training sessions, phishing simulations, and interactive quizzes to raise security maturity across the org.
• Performance & lifecycle: Routine maintenance, updates/patches, and hardware/software lifecycle management to keep systems reliable and secure.

Support Specialist — Rogers Communications (01/2023 – 02/2024)

• Delivered clear, empathetic technical support across a range of user skill levels.
• Leveraged knowledge‑base resources to provide accurate, current solutions and reduce repeat incidents.

Support Specialist Team Lead — WingTel (06/2019 – 02/2022)

• Escalation point for complex inquiries; coached troubleshooting discipline and customer‑first communication.
• Managed CRM/ticketing workflows for timely responses and measurable service quality.

Education

• B.S. Information Technology — Western Governors University (Completed 2025)

Certifications

• CompTIA Security+, Network+, A+ • Linux Essentials • ITIL 4 Foundation

Skills & Tools

Platforms: Windows Server (2016/2019/2022), Ubuntu Server, Linux Admin
Identity & Directory: Active Directory, Group Policy, Microsoft Entra, Microsoft 365
Networking & Security: SonicWall, Check Point, Windows Defender Firewall/host‑based rules, DNS/DHCP, Firewall ACLs, DLP, EDR
Monitoring & Detection: AlienVault/OSSIM (SIEM), dashboards/alert tuning, log analysis & retention
Automation & Scripting: PowerShell, Python, Ansible, Ansible Semaphore, Power Automate
Data & Dev Basics: SQL, C (foundations), HTML/CSS/JavaScript
Ops: Backup & recovery, RAID, virtualization, patch management, documentation