$ whoami
$ role --current
IT Engineer @ Tech Guardian — 950 endpoints, 28 client orgs
$ role --target
Infrastructure Architect / Sysadmin
950+ endpoints managed
↓33% avg. ticket time
300+ (Volunteer) VMs managed
8-server cluster (primary admin)

# whoami --verbose

I manage the infrastructure behind 28 client organizations at Tech Guardian, a managed services provider including endpoint management, Microsoft 365 / Exchange / Purview administration, CMMC and NIST 800-171 compliance scoping, and firewall administration across Sophos XGS deployments. My actual scope runs well past the Level 1 title: 2nd/3rd-level escalation, compliance work, and the automation tooling that keeps all of it running.

Outside of work, I run production infrastructure for a nonprofit called NUCC, co-captained UC Irvine's CCDC team through a national-level competition, and help organize multiple local CyberSecurity events in the Southern California area. I'm looking for an Infrastructure Architect or Sysadmin role where I can continue learning and grow.

Education B.S. Computer Science, UC Irvine
Languages Python, PowerShell, Bash, Go
Handle Fireflyhacker
Location Menifee, CA (remote open)

# status --log

Tech Guardian — IT Engineer 2024 — present
  • Manage endpoint fleet of 950+ workstations across 28 client organizations
  • Administer Microsoft 365, Exchange, and Purview across the client base
  • Scope CMMC and NIST 800-171 compliance work for clients moving toward certification
  • Manage firewall fleet across Sophos XGS and OPNsense deployments
  • Built a device-audit automation tool that cut average ticket time by roughly one-third
  • Replaced 30 client firewalls in 30 days during a hardware refresh push
  • Recovered a 250+ device UniFi network from failure in under 8 hours
  • Primary escalation point for the team, resolving ~5 complex client escalations per week
  • Drove CIPP adoption, significantly reducing break-glass account usage across the client base
  • Built an automated provisioning pipeline for new workstations, cutting average provision time by 50% and saving $400/month

# ps aux

Device Audit Automation

production

A Python tool built for Tech Guardian that automates fleet compliance auditing across client endpoints, catching drift before it turns into a ticket. Cut average ticket resolution time for device audits by roughly a third across the client base.

PythonAutomationMSP

Repurposed Firewall Docker Host

active

Turned a decommissioned Sophos appliance into a plug-and-play Docker host with four isolated containers, each wired to its own physical port, so plugging into a different port on the box hands you a different environment. It also plays DOOM on port 1.

DockerNetworkingHomelab

CyberUCI Infrastructure

active

Proxmox and TrueNAS backing an environment with Authentik SSO, NetBird VPN, and OPNsense routing. 300+ VMs, across 8 total servers, the primary infrastructure for multiple university cybersecurity clubs.

ProxmoxTrueNASAuthentikNetBird

Passgen

stable

A password generator written in Go. Complied to run on basically anything, designed for a cybersecurity competition.

GoCLI
view repo →

$ groups payton

active

WRCCDC - Volunteer

Help run the infrastructure for the Western Regional Collegiate Cyber Defense Competition, the same competition I previously competed in.

active

DEF CON Party - Organizer

Run an independent party at DEF CON with several hundred attendees, coordinating a volunteer staff.

active

NUCC - Volunteer

Run production infrastructure for NUCC's events and act as a mentor to the growing number of college cybersecurity clubs that participate.

active

OC2600 - Member

Regular member of the local security meetup. Come find us the first friday of the month at 23B in Fullerton.

active

IVU - Helper

Help make sure everything goes smoothly at IVU events. Come find us the second friday of the month in Irvine.

$ contact --resolve