Travis Baraki

831-915-6718 | [email protected] LinkedIn | GitHub | tbaraki.net

Experience

Cradlepoint

Senior Information Security Engineer April 2024 - Present
Security Engineer, IAM September 2022 - March 2024

  • Implemented a wholistic redesign of key identity provider configurations using infrastucture-as-code tooling, ensuring controls are applied effectively across all users and applications. Deployed phishing-resistant MFA factors, enabled passwordless authentication flows, and enforced the use of high assurance (NIST AAL3) authenticators for highly privileged sessions.
  • Defined functional and technical requirements for PAM and IGA solutions.
  • Act as an identity and engineering SME in architectural/technical security reviews, control mapping, and in the development of policies, standards, and operating procedures.
  • Championed a federation model to support B2B processes and continuity in a highly dynamic M&A environment.
  • Onboard log sources for SIEM coverage. Identify, develop, and tune detection and threat hunting queries.

Ygrene Energy Fund

IT System Administrator March 2022 - July 2022

  • Refined and validated Autopilot deployment profiles enabling zero-touch device deployment to remote users.
  • Packaged applications and PowerShell scripts for Intune deployment to automate complex post-installation configuration tasks.
  • Provisioned and configured Okta SSO for SaaS and self-hosted applications.

Spreckels Union School District

Information Services Director July 2015 - February 2022
District Technology Coordinator July 2014 - June 2015
Technology Aide September 2013 - June 2014

  • Led the modernization of the District’s technology program. Managed vendor relationships. Hired, supervised, and mentored Tier I support staff.
  • Migrated directory services to Entra ID to support SaaS SSO, MFA, and zero-touch Autopilot deployment. Automated user lifecycle management and application provisioning.
  • Deployed and configured EDR solution.
  • Redesigned LAN/WAN reducing circuit spend. Deployed NGFW solution to support network segmentation and extranet services.

About Me

Experienced IT leader focused on identity, strong authentication, governance, and automation.

Education

BSc. Physiology and Developmental Biology

University of Alberta

Certifications

Okta Certified Professional

01/2023

SC-300

Microsoft Identity and Access Administrator Associate - 08/2022

AZ-900

Microsoft Azure Fundamentals - 12/2021

Skills

Identity
OktaEntra ADMFASSO - SAML - OAuth - OIDCSCIMIGAPAMPIMLifecycle ManagementB2B Federation
Frameworks/Benchmarks
CISSOXSOC2NIST 800-53FedRAMP
Blue Team
EDRLog CollectionDetection and ResponseThreat Hunting