- Leading and implementing identity governance with SailPoint IdentityNow through approval procedures, certification
campaigns, role based access controls, and separation of duties policies driving enterprise productivity by eliminating manual
work across multiple teams and enabling app owners to securely grant or revoke access without involving IT. - Spearheading migration from GlobalProtect to Zscaler Private Access by re-architecting to zero trust access controls for private applications, servers, SQL databases, and AWS services (Airflow, EKS, and RDS).
- Introducing Okta privileged access for entitlement analysis, server account lifecycle management, vaulting of local server account passwords, SSH/RDP access with ephemeral certificates, and session recording through Okta access gateways
- Securing Okta tenant through stricter authentication/global session and behavior detection policies (location, device, IP, velocity).
- Deploying Okta FastPass, a phishing-resistant authenticator that detects and prevents the disclosure of sensitive authentication
data to fake applications or websites, and enabling passwordless logins through biometrics verification on managed devices. - Enforcing use of fine-grained OAuth 2.0 access tokens instead of overly permissive API tokens within integrations.
- Discovering, alerting, and remediating vulnerabilities with Axonius SaaS management platform to reduce overall risk.
- Migrating and deploying SecOps infrastructure to AWS through Terraform IaaC to improve scaling and redundancy.
Jairo Carbonell
IT Security Consultant
Managed Service Provider
Cybersecurity IAM Engineer
Web Designer
Investor
Automator
Jairo Carbonell
IT Security Consultant
Managed Service Provider
Cybersecurity IAM Engineer
Web Designer
Investor
Automator
About Me
Hello! I’m Jairo Carbonell.
Learning to adapt became essential to overcoming financial and educational hurdles as a first-generation Peruvian American. My passion for technology started at a young age. From taking apart computers and video game consoles to modify and enhance them to posting tech video tutorials on social media, my eagerness and ability to learn and teach continue to bring new opportunities.
I started my IT career in the summer of 2016 during my undergraduate studies at the University of Maryland as a part-time IT assistant. Shortly after, to get more experience and funding for college, I took on another part-time position on campus as an IT support technician. Then, I graduated in Fall 2017 with a B.A. in Economics and a Minor in Technology Entrepreneurship. This helped me turn my hobby of providing IT support to others into an official company (Seguro, LLC), where I consult and implement IT services for individuals and small businesses in my free time.
After graduation, I accepted a full-time contract with TEKsystems, an IT service management company, where I was an IT Support specialist at Georgetown University. This helped me progress in my career and expand on the services Seguro, LLC could provide.
When my Georgetown University contract ended in March 2018, I accepted a different contract position. This time, I started as an IT support technician at The Motley Fool through Robert Half Technology, a tech and IT staffing agency.
In October 2018, I had the opportunity to convert to employee status, which has been an empowering experience. They provide many personal and professional growth opportunities, allowing me to build on my investing knowledge and advance my IT career at The Motley Fool!
I enrolled in Montgomery College's cybersecurity A.A.S. program in 2018 to feed my insatiable curiosity about cybersecurity. I graduated with honors in Fall 2020. This program gave me the foundational knowledge to develop my role at TMF into a security systems administrator and, after a few years, a cybersecurity engineer.
In 2024, I enrolled in Georgia Tech's Master of Cybersecurity program, which offers an information security specialization to stay on top of emerging cyber threats.
Since then, I have been earning more IT certifications and applying new knowledge gained within my roles at Seguro LLC and The Motley Fool. I specialize in identity and access management, identity governance and administration, SaaS management, privilege access management, and IT/Cybersecurity consulting.
Resume
Experience
July 2023 - Present
Cybersecurity IAM Engineer
The Motley Fool
Nov 2018 - Present
Founder, IT & Cybersecurity Consultant
Seguro, LLC
- MSP partner with Okta to resell, deploy, and manage IT services to small-to-medium business clients.
- Designing, hosting, securing, and backing up WordPress sites through WPMU Dev hub automations and reseller tools.
- Network architecting and implementation (network closets, routers, access points, security cameras, NAS).
- Conducting security assessments, providing recommendations for disaster recovery and VPN remote access.
Oct 2019 - June 2023
Systems Administrator
The Motley Fool
- Enterprise admin for SaaS apps (Okta, Office 365, Google Workspace, 1Password, etc), responsible for SSO setups, profile
mappings, user lifecycle management, and group pushing from Okta to downstream apps. - Supported Jamf / Kandji (Mac) & SCCM/Intune (Windows) environments with app and OS deployments / patching.
- Architected out-of-box experience for devices through use of Jamf Connect / Kandji Passport and Microsoft Autopilot phasing
out legacy imaging procedures to reduce workload during sudden shift to remote workforce due to the pandemic. - Optimized and prepared the company's support systems for every day use with automation platforms (Okta Workflows,
Workato, Zapier) and/or scripts (Python, Powershell, JavaScript, Ruby).
Mar 2018 - Sep 2019
IT Support
The Motley Fool
- Provided support for accounts, devices, systems in a hybrid on-premises Active Directory and cloud Azure AD environment.
- Exchange/Office 365 support and administration (creating power shell scripts, shared mailboxes management, etc).
- Ensured all equipment and systems in Zoom-based conference rooms were working and ready for every day use.
- Provisioned Zoom cloud phone accounts for employees and configured call queues to route incoming calls from customers.
Aug 2017 - Feb 2018
IT Support
TEKsystems - IT contract at Georgetown University
- Operated the UIS service desk to provide in-person IT bilingual (Spanish) support for faculty, staff, and students.
- Delivered service and support for hardware devices and software applications in classrooms and offices on campus.
- Troubleshot and resolved Jamf (Mac) and SCCM (Windows) imaging issues during device upgrades.
Jun 2016 - July 2017
IT Assistant
UMD Division of IT - Operation and Field Support
- Port to jack mapping for academic and residential buildings on campus.
- Conducted Cisco ISE testing on north campus residential buildings.
- Supported our operations team by completing requests for hardware delivery/pick up, logging inventory, and cooperating with supervisors and teammates on a multimillion dollar project of upgrading the university's wireless system.
Aug 2016 - May 2017
User Support Technician
UMD Office of Academic Computing Services
- IT help desk duties included triaging incoming service requests via phone and email, tracking of service requests via a ticketing system, and providing basic over-the-phone/remote session support to BSOS faculty and staff.
- Computer lab support duties include assisting users with general computer use (workstation login, launching provided software, printing, internet access, etc), WEPA kiosk issues, and Lablink sessions.
Education
2018 - 2020
Montgomery College
Cybersecurity Program
Associate of Applied Science in Cybersecurity
2015-2017
University of Maryland, College Park
A. James Clark School of Engineering
Minor in Technology Entrepreneurship
2013-2017
University of Maryland, College Park
College of Behavioral & Social Science
Bachelor of Arts in Economics
Certifications
January 2024
Okta Certified Consultant
Credential ID 3a8272a7-ae90-412f-949c-a7d48aec72f7
July 2023
CompTIA Security+ ce Certification
Credential ID 351ceac2-05b9-4b6b-9da4-40b1650c4a27
April 2023
Okta Certified Administrator
Credential ID b198624a-df4b-4559-855a-3c2a18f4f56b
October 2021
Okta Certified Professional
Credential ID 4c87c83c-04ae-4f6a-a04f-b7e5c80b45d6
Blog
November 11, 2019
Spanning Review
As more organizations steer away from legacy on-prem file shares and move towards cloud-based storage solutions, disaster recovery methods need…