IT Professional / Phoenix, Arizona
Building toward Cybersecurity and DevOps
I run a hands-on home lab focused on network security, identity management, and infrastructure monitoring. Comfortable across Windows and Linux, Active Directory and Entra ID, packet analysis and scripting. Currently on a 30-day homelab sprint to deepen practical skills.
Active challenge
Building, breaking, and documenting one new skill or system per day. Every session gets a writeup.
Working across network security, DNS filtering, traffic analysis, Docker infrastructure, and Linux automation. Logging everything I build, break, and learn.
What I work with
Built and documented
Hands-on lab work across security, infrastructure, and automation. Configs and scripts live on GitHub.
Active Directory
Stood up a Windows Server domain, managed users, OUs, and security groups, and automated account operations through the PowerShell Active Directory module.
Automated bulk account tasks with PowerShell, cutting repetitive setup to a single command.
Microsoft 365 and Entra ID
Configured a Microsoft 365 tenant, managed accounts, licenses, and groups, enforced multi-factor authentication, and built onboarding and offboarding runbooks.
Built a repeatable provisioning checklist covering AD, Entra ID, and mailbox setup in one pass.
Wireshark and DNS
Captured real traffic across Wi-Fi and Tailscale interfaces, filtered DNS and TCP handshakes, and identified Chrome DoH bypassing Pi-hole plus Windows WPAD proxy-discovery noise.
Remediated both findings and documented packet evidence, interface-selection lesson, TLS visibility limits, and practical analysis workflow.
Pi-hole and Unbound
Deployed Pi-hole with Unbound for fully recursive DNS resolution, eliminating third-party resolver dependencies and enabling network-wide filtering with per-client query logging.
Analyzed my own DNS traffic to surface noisy clients, unusual query patterns, and logging anomalies.
Monitoring and Docker
Deployed Uptime Kuma in Docker, configured HTTP and ping checks across services, and wired push alerts through a scoped ntfy account for real-time notifications.
Diagnosed a silent alert failure from container network isolation and fixed it with internal Docker service routing.
Ticketing and ITSM
Built a working ticket queue with categories, priorities, and SLA targets, then designed triage rules and documented resolution playbooks for the most common request types.
Triage rules routed common requests automatically, keeping first response inside target.
Field notes
Technical notes from the home lab — what I built, what broke, and what I learned. Sprint updates also posted on LinkedIn.
Targeting roles in cybersecurity and DevOps engineering. Remote or Phoenix, AZ. Let's connect.