Lucas Mancini
IT Professional
Palmer, MA
Skills
Technical
- Networking & Security: VLANs, Routing, Firewall Tools, Cloudflare Zero Trust, NGINX, Docker, AdGuard Home, DNS Management, Network Hardening, TCP/IP, VPN, DHCP, Zero Trust Architecture, Threat Management, Incident Response, Patch Management, Data Protection, Vulnerability Management, Encryption, Access Management, Security Assessments, Security Engineering, Network Security, Automation, Auditing, Security Policies
- Cloud Platforms: AWS Educate (Foundations, Cloud 101, Cloud Ops, Networking, Security, Storage, Compute, Serverless, Databases)
- Operating Systems: Windows, Linux, MacOS, iOS, Android
- Software & Tools: SCCM, Active Directory, ServiceNow, Coupa, Bomgar, Airwatch, XWiki, HTML
- Other: Technical Writing, Project Management, Documentation, Troubleshooting, Strong Communication
Accomplishments
Certifications & Training
- ACMT (Apple Certified Mac Technician)
- CompTIA A+ (expired 2021)
- ServiceNow Administrative Fundamentals
- OSHA-10
- Cloud+ Training (AWS Fundamentals)
- Ethical Hacking (coursework)
- Switch/Router Essentials (CCNA coursework)
Professional
- Implemented network infrastructure upgrades and assisted in transitioning fulfillment center networks to a production environment with zero downtime caused
- Deployed TrueNAS SCALE with NGINX reverse proxy and Cloudflare Zero Trust tunnel for secure remote access to NAS and application services
- Designed and executed Zero Trust architecture leveraging Cloudflare WARP, posture checks, and DNS-level protection for internal and external services
- Completed Capture The Flag (CTF) cybersecurity challenges and developed incident response reporting as part of BS Cybersecurity coursework
Educational
- Dean's List
- 4.0 GPA
- NSCS (National Honor Society)
- Alpha Sigma Lambda
- Phi Kappa Phi
Languages
English
About
IT Infrastructure Engineer with 7+ years of experience in systems and networking, with a strong focus in security. Skilled in networking, vulnerability management, Zero Trust, data protection, encryption, and cloud security. Committed to continuous improvement and staying current with industry trends. Proven leadership in cross-functional IT/security initiatives, proactive problem-solving, and innovation in technological processes.
Projects
TrueNAS SCALE + Cloudflare Zero Trust Implementation
Migrated production NAS from TrueNAS Core to SCALE for improved containerization and automation.
Deployed NGINX reverse proxy with Docker-managed, encrypted Cloudflare Tunnel to secure services behind HTTPS and protect sensitive, confidential data while reducing public attack surface.
Implemented Cloudflare Zero Trust Access with WARP and device posture checks.
Integrated AdGuard Home for DNS-level data protection and malware filtering.
Automated encryption (SSL/TLS) using Cloudflare API, ensuring secure communication.
Conducted vulnerability management through Nessus scanning, port audits, firewall hardening, and secure configurations to safeguard sensitive, confidential data.
Academic Security Projects (UMGC)
Capture the Flag (CTF) Log Analysis: Identified 180,000+ user entries across log files, demonstrating skills in log monitoring, pattern recognition, and cybersecurity troubleshooting.
Security Strategy for Sifers-Grayson: Designed layered security architecture (DMZ, IDPS, SIEM, IAM) and recommended tools to enhance access control, threat detection, and regulatory compliance.
Incident Response Plan: Led end-to-end IR reporting for simulated breaches including malware, phishing, and insider threats; developed comprehensive containment and recovery strategies.
Security Posture Enhancement: Recommended adoption of EDR/MDR, MFA, Zero Trust, SIEM, security policies, and Security Awareness Training to strengthen organizational defenses.
Professional Experience
Technical Support; Build & Deployment Engineer
Jul 2021 - Current
Maintained enterprise network systems across MDF/IDF environments, supporting high-availability operations.
Led migration of legacy networks to modern FFN architecture with zero downtime, improving security and performance.
Managed backbone devices and validated end-to-end connectivity for secure, resilient operations.
Diagnosed and resolved complex hardware, software, and network issues to ensure business continuity.
Automated security processes and contributed to vulnerability management and network hardening.
Mentored junior staff and authored technical documentation, improving team efficiency and resolution times by 30%.
IT Support Specialist
Oct 2018 - Jul 2021
Provided IT support for network operations, account management, and enterprise systems across a 24/7 environment.
Resolved high-priority incidents impacting productivity, ensuring operational continuity for business-critical functions.
Deployed new hardware/software for teams, projects, and infrastructure upgrades.
Collaborated with cross-functional teams to streamline processes and improve service delivery.
Built trusted partnerships across departments by delivering consistent, reliable technical support.
IT Equipment & Inventory Specialist
Sep 2017 - Oct 2018
Managed IT equipment inventory to support operational demand, business continuity, and end-user readiness across a fast-paced environment.
Provisioned and deployed hardware/software for new hires, replacements, and large project rollouts.
Diagnosed and resolved hardware/software issues, reducing downtime and improving system reliability.
Coordinated RMA and vendor repairs, ensuring timely resolution and maintaining equipment readiness.
Streamlined deployment workflows, improving operational support and efficiency.
Education
University of Maryland Global Campus
Security Analyst 2023
Associate of Science in Computer Networks & Cybersecurity
University Of Maryland Global Campus
Expected 2025
Bachelor of Science in Cybersecurity & Technology