Skills
A working inventory of the technologies and platforms I’ve used in production environments. Organized by domain rather than employer — most of these span multiple roles.
Networking & Security
| Technology | Context |
|---|
| Juniper JunOS | Primary switching/routing OS across Crane’s full access layer |
| Juniper Mist | Centralized management for all Juniper switching and wireless; NAC control plane |
| 802.1X / RADIUS | NAC enforcement across wired and wireless; policy-based device authentication |
| NAC (FortiNAC, Juniper Mist NAC) | Full lifecycle — deployed, operated, and migrated production NAC environments |
| Fortinet | Firewall deployments and WAN configuration across client engagements |
| Palo Alto | Firewall configuration and WAN across client engagements |
| Dell SonicWall | Firewall and site-to-site VPN configuration |
| Cisco Umbrella | DNS security and web filtering, enterprise-wide at Crane |
| East/West segmentation | Network segmentation across multi-site environments |
Identity & Access Management
| Technology | Context |
|---|
| Active Directory | Full lifecycle — design, administration, forest consolidation, decommission |
| Entra ID / Azure AD | Hybrid and cloud-only deployments; sync, conditional access, app registrations |
| Okta | Full deployment as sole identity provider; SAML/OIDC app integrations, RBAC, lifecycle automation |
| SAML / SSO | Integrations across Okta, Azure AD, SafeNet/Thales, and third-party apps |
| PKI / Certificate Services | Deployed AD Certificate Services from scratch; certificate lifecycle management |
| RADIUS | Authentication backend for 802.1X NAC and wireless policy |
| SafeNet / Thales | MFA and certificate-based authentication |
| BetterCloud | Automated user lifecycle management integrated with Okta and Jira |
Cloud & Microsoft 365
| Technology | Context |
|---|
| Microsoft Azure | Networking, Azure AD, VM management, conditional access |
| Microsoft 365 | Full tenant administration; Exchange Online, SharePoint, Teams |
| Exchange Online | Migrations from on-prem Exchange across multiple client engagements |
| Google Workspace | Administration and integrations in SaaS-forward environments |
| Intune | MDM for Windows and macOS; co-management alongside SCCM and standalone |
| SCCM / MECM | Endpoint management, OS deployment, patch compliance |
Systems & Infrastructure
| Technology | Context |
|---|
| Windows Server 2008–2022 | Full administration across all versions in production environments |
| Linux (Ubuntu, CentOS) | Server administration, scripting, Docker host management |
| VMware vSphere | Virtualization administration across multiple sites |
| Hyper-V | Secondary hypervisor in mixed environments |
| Cisco HCI | Hyperconverged infrastructure deployment at NAES |
| Proxmox | Homelab — primary hypervisor for personal lab environment |
| Synology / TrueNAS | NAS administration; storage management for lab and small environment use |
| Rack & Stack | Full physical deployments — servers, switches, UPS, SAN, from scratch |
Automation & Scripting
| Technology | Context |
|---|
| PowerShell | Primary scripting language; modules for Juniper API, AD sync, bulk operations |
| Ansible | Configuration management and playbook development |
| Jira Service Desk | Workflow automation for IT request handling and user lifecycle |
| BetterCloud | SaaS user automation integrated with Okta |
| REST API integration | Juniper Mist NAC API, HR system integrations, custom tooling |
Security & Compliance
| Technology | Context |
|---|
| CMMC / NIST 800-171 | Implementation across Crane’s defense contractor environment; near-perfect audit score |
| Carbon Black App Control | High Enforcement mode deployment across enterprise endpoints |
| Rapid7 | Vulnerability management and reporting |
| Kolide | Endpoint security posture monitoring integrated with Okta device trust |
| Penetration Testing | Internal pen test against legacy AD environment at US Steel |
| Cisco Umbrella | DNS-layer security and threat intelligence |
Containers & Lab
| Technology | Context |
|---|
| Docker | Container management in both lab and light production contexts |
| Kubernetes | Cluster deployment and management; primarily lab-based evaluation |
| Unifi | Home network — Dream Machine Pro, enterprise-grade routing and APs |
| EVE-NG | Network lab simulation for topology testing and cert study |