Infrastructure & Security Highlights
- TrueNAS + Zero Trust deployment Designed and deployed a TrueNAS SCALE storage platform secured with an NGINX reverse proxy and Cloudflare Zero Trust tunnels, enabling authenticated remote access to NAS services while masking internal network exposure and enforcing identity-based access controls.
- Zero Trust architecture implementation Implemented a layered Zero Trust access model using Cloudflare WARP, device posture checks, and DNS-level filtering to protect internal and externally exposed services across the homelab environment.
- Enterprise network transition support Supported production network infrastructure upgrades during fulfillment-center environment transitions, contributing to hardware lifecycle deployment and service continuity with zero operational downtime.
- Cybersecurity CTF and incident response work Completed Capture-the-Flag cybersecurity exercises and developed structured incident response reports analyzing attack vectors, detection methods, and mitigation strategies as part of undergraduate cybersecurity training.
Skills
- Network & Security
VLANs, Routing, Firewalls
Cloudflare Zero Trust, NGINX, Docker
DNS Management, TCP/IP, VPN, DHCP
Network Hardening, Encryption
Threat Detection & Incident Response
Vulnerability & Patch Management
Access Control & Security Policies - Cloud PlatformsAWS Fundamentals (Compute, Networking, Storage)
Cloud Security Concepts
Cloud Operations Basics - Operating SystemsWindows, Linux, MacOS
Mobile Platforms: iOS, Android - Software & ToolsActive Directory, SCCM, ServiceNow
Bomgar Remote Support, AirWatch MDM
HTML Documentation Platforms - Operations & DocumentationTechnical Writing
Process Documentation
Troubleshooting
Project Coordination
Stakeholder Communication
Certifications & Training
- ACMT (Apple Certified Mac Technician)
- CompTIA A+ (completed; credential expired)
- ServiceNow Administrative Fundamentals
- Switch/Router Essentials (CCNA coursework)
- AWS Cloud Fundamentals Training
- Ethical Hacking (coursework)
- OSHA-10
š ļø Infrastructure Lifecycle Modernization & Platform Upgrades
- š¹ Security Camera System Refresh
Coordinated vendor-led replacement of 600+ surveillance cameras across site, improving coverage reliability and strengthening physical security infrastructure for Loss Prevention and Safety operations.
#SecuritySystems#VendorCoordination
- š§ Commodity to Cisco Switches (BDL2/BDL3)
Replaced legacy Broadcom switches with Cisco hardware across IDFs and Robotics stations, improving segmentation, reliability, and security across production network infrastructure.
#NetworkUpgrade#SwitchMigration
- šļø Milestone Server Infrastructure Overhaul
Replaced legacy surveillance servers with HP infrastructure and implemented monitoring and backup workflows to improve scalability, reliability, and availability of the video management platform.
#ServerInfrastructure#HighAvailability
- š Console Server Upgrade
Upgraded to the latest console server model, ensuring stable access to network infrastructure for critical incident response.
#InfrastructureSupport#ConsoleAccess
- ā” UPS Replacement
Replaced outdated UPS units and batteries in IDFs to improve site power resilience and eliminate risk from failing hardware.
#PowerRedundancy#RiskMitigation
- š ATS/PDU Upgrade
Modernized MDF power infrastructure by replacing PDUs and ATS units to support increased load capacity and improve redundancy for critical network equipment.
#PowerUpgrade#FacilityInfrastructure
- š Demarc Redundancy Implementation
Implemented UPS-based failover protection and monitoring for critical WAN demarcation equipment, improving network availability and resilience during power events.
#Failover#CriticalNetwork
- š» VBI Device Upgrade
Upgraded VBI workstation platforms and operating systems, restoring operational functionality and preventing approximately $127K/month in potential productivity losses.
#SystemUpgrade#CostAvoidance
- š Polycom IP Phone Deployment
Mentored technicians through replacement and configuration of Polycom VoIP endpoints, supporting rollout continuity and strengthening internal deployment capability.
#Mentorship#VoiceInfrastructure
- š± TC55 Mobile Devices
Consolidated TC55 mobile device inventory for lifecycle retirement and redeployed updated hardware across departments to maintain operational continuity.
#AssetLifecycle#MobileDeviceSupport
- š§© Dell Thin Clients
Refreshed Dell thin client platforms with updated wireless hardware and OS imaging, integrating devices into monitoring and asset management workflows supporting pre-pack operations.
#HardwareRepair#Imaging
- š Kindle Upgrade Rollout
Replaced legacy Kindle devices with Kayak models through coordinated rollout scheduling, provisioning, and lifecycle retirement workflows across Operations teams.
#DeviceRefresh#OperationalSupport
Contact Me
Open to Opportunities
Security Analyst & Infrastructure Security Roles
Iām a cybersecurity-focused IT professional with 7+ years of experience supporting infrastructure and systems in enterprise environments, with a growing specialization in Zero Trust and cloud security. Iām open to roles in Security Operations, Cloud Security, and advanced IT support.
- 7+ years in IT infrastructure and support
- B.S. in Cybersecurity & Technology
- AWS, Cloudflare Zero Trust, Docker, NGINX, TrueNAS
- Hands-on security and homelab project experience
Contact
š§ Email: lucas@backyardcloud.net
š Phone: 413-284-2086
š LinkedIn: linkedin.com/in/mancinil
š Location: Massachusetts/Connecticut, United States
šÆ Target: Security Analyst ā¢ SOC Analyst ā¢ Cloud Security ā¢ Infrastructure Security