Security Networking Operational Support IT Lifecycles Customer Service Safety Coding Continuous Improvement
Lucas

Lucas Mancini

IT Professional

Palmer, MA

Professional Profile

Download Resume

Skills

Technical

  • Networking & Security: VLANs, Routing, Firewall Tools, Cloudflare Zero Trust, NGINX, Docker, AdGuard Home, DNS Management, Network Hardening, TCP/IP, VPN, DHCP, Zero Trust Architecture, Threat Management, Incident Response, Patch Management, Data Protection, Vulnerability Management, Encryption, Access Management, Security Assessments, Security Engineering, Network Security, Automation, Auditing, Security Policies

  • Cloud Platforms: AWS Educate (Foundations, Cloud 101, Cloud Ops, Networking, Security, Storage, Compute, Serverless, Databases)

  • Operating Systems: Windows, Linux, MacOS, iOS, Android

  • Software & Tools: SCCM, Active Directory, ServiceNow, Coupa, Bomgar, Airwatch, XWiki, HTML

  • Other: Technical Writing, Project Management, Documentation, Troubleshooting, Strong Communication

Accomplishments

Certifications & Training

  • ACMT (Apple Certified Mac Technician)

  • CompTIA A+ (expired 2021)

  • ServiceNow Administrative Fundamentals

  • OSHA-10

  • Cloud+ Training (AWS Fundamentals)

  • Ethical Hacking (coursework)

  • Switch/Router Essentials (CCNA coursework)

Professional

  • Implemented network infrastructure upgrades and assisted in transitioning fulfillment center networks to a production environment with zero downtime caused

  • Deployed TrueNAS SCALE with NGINX reverse proxy and Cloudflare Zero Trust tunnel for secure remote access to NAS and application services

  • Designed and executed Zero Trust architecture leveraging Cloudflare WARP, posture checks, and DNS-level protection for internal and external services

  • Completed Capture The Flag (CTF) cybersecurity challenges and developed incident response reporting as part of BS Cybersecurity coursework

Educational

  • Dean's List

  • 4.0 GPA

  • NSCS (National Honor Society)

  • Alpha Sigma Lambda

  • Phi Kappa Phi

Languages

English



🔐 Security

These initiatives supported physical and network security by upgrading surveillance systems, reinforcing infrastructure access controls, and implementing failover mechanisms to protect critical systems.

🛡️ Infrastructure Security, Surveillance & Resilience

  • Camera System Upgrade for Facility Surveillance
    Collaborated with low-voltage vendors and project managers to replace over 600 security cameras across the Fulfillment Center. This upgrade significantly improved surveillance coverage, enhanced incident response capabilities, and strengthened physical security for the Loss Prevention and Safety teams. #Surveillance #LossPrevention
  • Parking Lot Camera Integration
    Secured outdoor areas by configuring access to law enforcement-monitored surveillance. #Surveillance #EmployeeProtection
  • Console Server Upgrade for Secure Infrastructure Access
    Upgraded the facility’s console server to the latest standard, ensuring secure, uninterrupted access to internal networking equipment for use in high-severity incident response and troubleshooting. #AccessControl #InfrastructureSecurity
  • Demarc Redundancy & Monitoring for Critical Network Security
    Identified single points of failure in WAN infrastructure and implemented UPS-based failover systems to ensure continuous connectivity. Integrated environmental and device-level monitoring to proactively detect outages, enhancing overall network resilience and availability of critical security systems. #NetworkResilience #Failover

🚫 Cybersecurity & Zero Trust Initiatives

  • TrueNAS SCALE + Cloudflare Zero Trust Implementation
    Migrated NAS services to TrueNAS SCALE for improved containerization and automation. Deployed NGINX reverse proxy with Docker-managed Cloudflare Tunnel to secure services behind HTTPS without public IP exposure. Implemented Cloudflare Zero Trust Access with WARP device posture checks. Integrated AdGuard Home for DNS-level threat protection. Automated SSL management via Cloudflare API. Hardened firewall and reduced attack surface through port audits.#ZeroTrust #CloudSecurity #TruNAS #Cloudflare #DNSSecurity
  • 🚩 Centralia Technology - Capture The Flag
    Completed a CTF challenge focused on log analysis, identifying over 180,000 instances of “USER” entries across multiple log files. Applied pattern recognition and data filtering strategies to efficiently analyze large datasets. Demonstrated practical skills in log monitoring, tool use, and real-world troubleshooting relevant to IT and cybersecurity roles. #CybersecurityAwareness #LogAnalysis
  • 🛡️ Sifers-Grayson Security Strategy
    Designed a layered security strategy for Sifers-Grayson, including a DMZ with firewalls, IDPS, and NAT to protect R&D systems. Recommended enterprise tools like IAM, SIEM, ALM, and forensic imaging to enhance access control, threat detection, and compliance. Focused on defense-in-depth, scalability, and real-world cybersecurity application. #RiskAssessment #SecurityTools&Technologies
  • 🧯 Sifers-Grayson Incident Response Report
    Led end-to-end incident response reporting for a simulated breach at Sifers-Grayson, including malware, phishing, and insider threats. Assessed impact, proposed containment and recovery strategies, and developed post-incident plans including policy creation, firewall implementation, user training, and system hardening. #ThreatAnalysis #IncidentResponse&Recovery
  • 🧠 Sifers-Grayson Security Posture Enhancement: Research and Analysis Brief
    Prepared a technology briefing recommending five key security solutions for Sifers-Grayson: EDR/MDR, MFA, Zero Trust, SIEM, and Security Awareness Training. Aligned each solution with known vulnerabilities and outlined implementation strategies to enhance detection, response, and overall network resilience. #CybersecurityResearch #SecurityArchitecture
  • Forage Mastercard Cybersecurity Virtual Experience
    Simulated work as a Security Awareness Analyst identifying and reporting phishing threats. Assessed business units to determine training needs and implemented targeted security awareness programs. #CyberAwareness #PhishingDefense
  • Forage AIG Shields Up: Cybersecurity Virtual Experience
    Conducted vulnerability analysis for AIG’s Cyber Defense Unit based on CISA alerts. Authored remediation guidance and scripted an ethical hacking tool to prevent ransom payments via decryption key brute-forcing. #ThreatIntelligence #PythonSecurity
  • Forage Tata Cybersecurity Analyst Simulation
    Collaborated with a simulated cybersecurity consulting team to implement IAM strategies aligned with business goals. Delivered technical documentation and presentations demonstrating strong communication and IAM expertise. #IAM #CyberConsulting
  • Forage ANZ Cybersecurity Management Simulation
    Investigated suspicious emails and analyzed network traffic using packet capture tools to detect potential threats. Simulated threat triage and incident response procedures. #PacketAnalysis #ThreatInvestigation
  • Forage Datacom Cybersecurity Simulation
    Simulated a real-world incident response by analyzing a client’s cyberattack, producing a detailed report, and conducting a comprehensive risk assessment with actionable recommendations. #RiskAssessment #IncidentResponse
  • Forage Deloitte Australia Cyber Simulation
    Analyzed web activity logs to identify suspicious behavior during a client breach scenario. Supported forensic investigation by answering targeted security questions and uncovering unusual user activity. #LogAnalysis #CyberOps
  • * Selected academic and personal security projects — work samples available upon request.