Active Directory | Microsoft Entra ID | PowerShell | Zero Trust | Automation
I build enterprise-style identity and security projects that simulate real-world infrastructure, governance workflows, and security operations using Microsoft Entra ID, Active Directory, PowerShell, and Azure.
My portfolio is the OmniVerse Enterprise Engineering Program: a structured set of identity, infrastructure, security, and automation projects aligned with IAM Engineer, Security Engineer, and cleared cybersecurity roles.
Start here if you want the fastest view of my strongest work.
| Project | What It Shows |
|---|---|
| IAM-006 Identity Operations and Risk Analytics | Enterprise risk scoring, executive dashboards, posture assessment, and remediation reporting |
| IAM-007 Enterprise Hybrid Identity Migration | Hybrid migration case study with 61 users aligned from Active Directory to Microsoft Entra ID |
| IAM-002 Enterprise Application Onboarding and SSO | SAML, OIDC, OAuth, SCIM, and Keycloak identity federation |
| IAM-004 Conditional Access and Zero Trust | Conditional Access, MFA, named locations, device compliance, and Zero Trust controls |
SSO applications documented: Cisco Duo, GitHub Enterprise, Grafana, Jira, Keycloak, Salesforce, WordPress, and SCIM Provisioning.
| Project | Focus | Stack |
|---|---|---|
| INFRA-001 Enterprise Active Directory | Enterprise AD foundation with DNS, DHCP, OUs, GPOs, AGDLP, service accounts, privileged accounts, and 2,000 users | AD DS DNS DHCP GPO PowerShell |
| IAM-001 Hybrid Identity Engineering | Hybrid identity with Active Directory, Entra ID, Entra Connect, synchronization, and troubleshooting | Entra ID Entra Connect AD PowerShell |
| IAM-002 Enterprise Application Onboarding and SSO | Enterprise application onboarding and identity federation | SAML OIDC OAuth SCIM Keycloak |
| IAM-003 Identity Lifecycle Automation | Joiner, Mover, Leaver automation with reporting and RBAC | PowerShell Graph API JML RBAC |
| IAM-004 Conditional Access and Zero Trust | Zero Trust access control baseline | Conditional Access MFA Entra ID Zero Trust |
| IAM-005 Identity Governance | Governance with PIM, entitlement management, and access reviews | PIM Access Reviews Entitlement Management |
| IAM-006 Identity Operations and Risk Analytics | Identity posture assessment, risk analytics, executive reporting, and remediation planning | PowerShell Graph API Risk Scoring HTML Reports |
| IAM-007 Enterprise Hybrid Identity Migration | Hybrid identity migration and hard-match validation | Entra Connect ImmutableID Graph API PowerShell |
| Domain | Technologies |
|---|---|
| Identity and Directory | Active Directory, Microsoft Entra ID, Entra Connect, Okta, SAML, OIDC, SCIM |
| Infrastructure | Windows Server, DNS, DHCP, Group Policy, VMware, VirtualBox, Ubuntu |
| Security | Zero Trust, Conditional Access, Microsoft Defender, Microsoft Sentinel, Tenable, Splunk, Wireshark |
| Automation | PowerShell, Microsoft Graph API, Bash, Python |
| Cloud | Microsoft Azure, Microsoft 365 |
| Governance | PIM, access reviews, RBAC, audit logging, NIST 800-53, RMF concepts |
| Certification | Issuer | Status |
|---|---|---|
| CompTIA Security+ SY0-701 | CompTIA | Earned |
| Microsoft Identity and Access Administrator SC-300 | Microsoft | Earned |
| SecurityX | CompTIA | In Progress |
| Azure Security Engineer AZ-500 | Microsoft | Planned |
| Security Operations Analyst SC-200 | Microsoft | Planned |
| Project | Focus | Status |
|---|---|---|
| SEC-001 Microsoft Sentinel SOC | KQL detection, analytics rules, incidents, workbooks, and playbooks | Next |
| SEC-002 Defender XDR and Vulnerability Management | Defender XDR, TVM, CVEs, exposure management, and remediation tracking | Planned |
| AZURE-001 Enterprise Azure Infrastructure | VNets, Key Vault, Bastion, managed identities, and secure Azure landing zone design | Planned |
| GRC-001 Governance Risk and Compliance | NIST 800-53, CMMC, RMF, control mapping, and ATO-style documentation | Planned |
| TF-001 Infrastructure as Code | Terraform, Azure, GitHub Actions, and CI/CD deployment workflows | Planned |