Skip to content
View KSWISHA9's full-sized avatar
🏠
Working from home
🏠
Working from home

Block or report KSWISHA9

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
KSWISHA9/README.md

Keshawn Lynch

Identity and Security Engineer

Active Directory | Microsoft Entra ID | PowerShell | Zero Trust | Automation

Security+ SC-300 LinkedIn


About

I build enterprise-style identity and security projects that simulate real-world infrastructure, governance workflows, and security operations using Microsoft Entra ID, Active Directory, PowerShell, and Azure.

My portfolio is the OmniVerse Enterprise Engineering Program: a structured set of identity, infrastructure, security, and automation projects aligned with IAM Engineer, Security Engineer, and cleared cybersecurity roles.


Featured Projects

Start here if you want the fastest view of my strongest work.

Project What It Shows
IAM-006 Identity Operations and Risk Analytics Enterprise risk scoring, executive dashboards, posture assessment, and remediation reporting
IAM-007 Enterprise Hybrid Identity Migration Hybrid migration case study with 61 users aligned from Active Directory to Microsoft Entra ID
IAM-002 Enterprise Application Onboarding and SSO SAML, OIDC, OAuth, SCIM, and Keycloak identity federation
IAM-004 Conditional Access and Zero Trust Conditional Access, MFA, named locations, device compliance, and Zero Trust controls

SSO applications documented: Cisco Duo, GitHub Enterprise, Grafana, Jira, Keycloak, Salesforce, WordPress, and SCIM Provisioning.


Full Portfolio

Project Focus Stack
INFRA-001 Enterprise Active Directory Enterprise AD foundation with DNS, DHCP, OUs, GPOs, AGDLP, service accounts, privileged accounts, and 2,000 users AD DS DNS DHCP GPO PowerShell
IAM-001 Hybrid Identity Engineering Hybrid identity with Active Directory, Entra ID, Entra Connect, synchronization, and troubleshooting Entra ID Entra Connect AD PowerShell
IAM-002 Enterprise Application Onboarding and SSO Enterprise application onboarding and identity federation SAML OIDC OAuth SCIM Keycloak
IAM-003 Identity Lifecycle Automation Joiner, Mover, Leaver automation with reporting and RBAC PowerShell Graph API JML RBAC
IAM-004 Conditional Access and Zero Trust Zero Trust access control baseline Conditional Access MFA Entra ID Zero Trust
IAM-005 Identity Governance Governance with PIM, entitlement management, and access reviews PIM Access Reviews Entitlement Management
IAM-006 Identity Operations and Risk Analytics Identity posture assessment, risk analytics, executive reporting, and remediation planning PowerShell Graph API Risk Scoring HTML Reports
IAM-007 Enterprise Hybrid Identity Migration Hybrid identity migration and hard-match validation Entra Connect ImmutableID Graph API PowerShell

Engineering Stack

Domain Technologies
Identity and Directory Active Directory, Microsoft Entra ID, Entra Connect, Okta, SAML, OIDC, SCIM
Infrastructure Windows Server, DNS, DHCP, Group Policy, VMware, VirtualBox, Ubuntu
Security Zero Trust, Conditional Access, Microsoft Defender, Microsoft Sentinel, Tenable, Splunk, Wireshark
Automation PowerShell, Microsoft Graph API, Bash, Python
Cloud Microsoft Azure, Microsoft 365
Governance PIM, access reviews, RBAC, audit logging, NIST 800-53, RMF concepts

Certifications

Certification Issuer Status
CompTIA Security+ SY0-701 CompTIA Earned
Microsoft Identity and Access Administrator SC-300 Microsoft Earned
SecurityX CompTIA In Progress
Azure Security Engineer AZ-500 Microsoft Planned
Security Operations Analyst SC-200 Microsoft Planned

Roadmap

Project Focus Status
SEC-001 Microsoft Sentinel SOC KQL detection, analytics rules, incidents, workbooks, and playbooks Next
SEC-002 Defender XDR and Vulnerability Management Defender XDR, TVM, CVEs, exposure management, and remediation tracking Planned
AZURE-001 Enterprise Azure Infrastructure VNets, Key Vault, Bastion, managed identities, and secure Azure landing zone design Planned
GRC-001 Governance Risk and Compliance NIST 800-53, CMMC, RMF, control mapping, and ATO-style documentation Planned
TF-001 Infrastructure as Code Terraform, Azure, GitHub Actions, and CI/CD deployment workflows Planned

Contribution Snake

GitHub contribution snake

Popular repositories Loading

  1. KSWISHA9 KSWISHA9 Public

    Identity and security engineering portfolio featuring Active Directory, Microsoft Entra ID, PowerShell automation, Zero Trust, governance, and hybrid identity projects.

    1

  2. Enterprise-System-Admin-Labs Enterprise-System-Admin-Labs Public archive

    Enterprise-style System Administrator and IAM labs (Windows, Linux, networking, automation)

  3. Iam-labs- Iam-labs- Public archive

    Enterprise-style Identity and Access Management labs (AD, Entra ID, RBAC, MFA, PAM)

  4. INFRA-001-Enterprise-Active-Directory-Infrastructure INFRA-001-Enterprise-Active-Directory-Infrastructure Public

    INFRA-001: Enterprise Active Directory infrastructure with DNS, DHCP, OUs, GPOs, AGDLP groups, service accounts, privileged accounts, and 2000 users.

    PowerShell

  5. IAM-001-Hybrid-Identity-Engineering IAM-001-Hybrid-Identity-Engineering Public

    IAM-001: Hybrid identity engineering with Active Directory, Microsoft Entra ID, Entra Connect, synchronization, and troubleshooting.

    PowerShell

  6. IAM-007-Enterprise-Hybrid-Identity-Migration IAM-007-Enterprise-Hybrid-Identity-Migration Public

    IAM-007: Enterprise hybrid identity migration case study - 61 users hard-matched from Active Directory to Microsoft Entra ID with zero errors.

    PowerShell