Hi, I’m Mostofa Kaiser 👋

I’m a Cybersecurity and IT Specialist with experience in Microsoft 365 security, Entra ID administration, Active Directory, and cloud platforms. At the U.S. EEOC, I manage Exchange, SharePoint, Teams, Intune, compliance, and security roles while using KQL for advanced threat hunting and vulnerability monitoring. Outside of work, I run a Proxmox-based homelab (MAKCloud) where I build and secure enterprise-like environments including Nextcloud, EVE-NG, Kali Linux, and Windows Server AD. With an M.Sc. in Cybersecurity and a B.Sc. in Computer Science, I’m passionate about strengthening IT systems and delivering secure, reliable solutions.

View Projects Download Resume
Portrait of Mostofa Kaiser

Skills

Enterprise Administration & Cloud Security

  • Microsoft Entra ID Roles: Exchange (transport rules, shared mailboxes, mail flow), SharePoint (sites/libraries/permissions), Teams (channels, collaboration policies), Intune (device enrollment, compliance, app deployment), User (account lifecycle, license management), Security Operator (Advanced Hunting with KQL, threat policies, vulnerability monitoring), Compliance Administrator (eDiscovery, phishing email purges).
  • Active Directory & GPOs: Identity and access management, MFA integration (Duo Security), delegation, account audits, and group policy management.
  • Microsoft 365 Security & Compliance: Defender, SCuBA baselines, SPF, DKIM, DMARC, DLP, mailbox auditing, and anti-phishing/malware protection.
  • Cloud Platforms & Services: Azure (backup, identity, monitoring), AWS (compute/storage basics), Cloudflare (DNS, tunneling, SSL/TLS security, DDoS mitigation).

Systems & Virtualization

  • Proxmox VE: VM/container deployment, RAID configuration, automated snapshots, disaster recovery drills, resource monitoring.
  • Homelab Engineering: Nextcloud (20TB RAID1), EVE-NG (network simulation), Kali Linux (cyber lab), Windows Server (AD DS), Apache Guacamole (secure RDP/SSH).
  • Backup & Reliability: Acronis Backup, Azure Backup, retention policies, RAID monitoring, and recovery validation.

Networking & Security Tools

  • Network segmentation, VLANs, NAT, and firewall configuration.
  • Wireshark (packet analysis), VPNs (secure tunneling), TLS/SSL certificate management.
  • Email security policies (whitelist/blacklist domains, IPs, URLs).
  • PuTTY, VirtualBox, and remote desktop/web-based access gateways.

Programming & Automation

  • Scripting & Automation: PowerShell (file integrity monitoring, automation), Bash, Batch scripting, KQL.
  • Programming Languages: Java, Python, C, C++, Dart, HTML, CSS, JavaScript, Assembly (SPARC).
  • Automation & CI/CD: Infrastructure documentation, automated maintenance scripts, monitoring pipelines.

Software Development & Databases

  • Firebase (cloud storage, authentication), API integration, SQL Server Management Studio (SSMS).
  • Flutter (mobile app development), Android Studio, Visual Studio, GitHub.
  • Web development (portfolio site hosting, Apache, Nginx, SSL/TLS hardening).

Professional Competencies

  • IT Support & Customer Service (Zendesk ticketing, enterprise applications).
  • Vulnerability Management & Patch Administration.
  • Leadership, Collaboration, Communication, Decision Making, Continuous Learning.

Experience

Information Technology SpecialistU.S. Equal Employment Opportunity Commission (EEOC)

September 11, 2023 – Present • Full-time (40 hours/week)

Microsoft Entra ID Roles

  • Exchange Administrator: Manage transport rules, dynamic/static distribution lists, shared mailboxes, external contacts, message trace, and mail flow troubleshooting.
  • SharePoint Administrator: Manage SharePoint sites, libraries, and permissions; delegate access and ensure secure file collaboration.
  • Intune Administrator: Manage enrolled devices, enforce compliance/security policies, deploy applications, and monitor endpoint health.
  • Teams Administrator: Create and manage Teams channels, configure permissions, and support collaboration policies.
  • User Administrator: Create, modify, and de-provision user accounts; assign licenses and manage group memberships.
  • Security Operator: Advanced Hunting with KQL, review quarantined emails, adjust email threat policies (whitelist/blacklist domains, IPs, URLs), support vulnerability monitoring and patching.
  • Compliance Administrator: Manage eDiscovery cases, perform targeted mailbox searches, purge phishing emails across affected accounts.

Additional Responsibilities

  • Maintain and audit Active Directory accounts and GPOs to ensure secure and reliable IT operations.
  • Perform server patching and monitoring; administer Duo Security MFA across multiple user groups.
  • Manage backups using Acronis and Azure Backup; conduct periodic recovery drills to validate resilience.
  • Provide enterprise IT support via Zendesk, resolving user issues, improving ticket response time, and supporting enterprise applications.

Systems & Security EngineerMAKCloud

Self-Directed / Ongoing

Designed, deployed, and manage a production-grade homelab on a Proxmox virtualization platform, simulating enterprise IT, networking, and cybersecurity environments.

Core Infrastructure

  • Built and maintained a Proxmox Virtual Environment running multiple VMs and containers for enterprise-like workloads.
  • Configured Cloudflare Tunnel & DNS for secure remote access; eliminated exposed RDP/SSH; enforced SSL/TLS with hardened Nginx reverse proxy.
  • Automated snapshots, RAID health checks, and off-box backups; performed periodic disaster recovery drills to validate resilience.
  • Developed Bash & PowerShell scripts for backups, monitoring, and VM lifecycle tasks; documented infrastructure for repeatability.

Virtual Machines & Services

  • Nextcloud (Linux-based, 20TB RAID1 on TerraMaster D2-320 + IronWolf Pro drives): Secure self-managed cloud storage with multi-user accounts, sharing policies, TLS, versioning & retention.
  • Portfolio Website (Linux-based, Nginx + Cloudflare): Deployed professional portfolio on custom domain; strict HTTPS headers, Cloudflare DDoS mitigation, automated TLS renewal.
  • EVE-NG (Networking Lab): Enterprise network simulation; routing, VLANs, NAT, VPN tunnels; practice for CCNA/CCNP-level labs.
  • Kali Linux (Cybersecurity Lab): Metasploit, Wireshark, Burp Suite; isolated attack range; integrated with EVE-NG for blue/red team simulations.
  • Windows Server & Utility VMs: AD DS for IAM practice; MFA (Duo Security); remote access via Apache Guacamole with RBAC.

Monitoring & Security

  • Uptime monitoring, log reviews for anomalous authentication, resource dashboards for capacity planning.
  • Least-privilege, firewall rules, and ongoing patch management across all VMs.

Backup Scan CoordinatorKroger

Jun 2016 — Aug 2021 • President’s Club 2020

  • Monitored sales events for accuracy; managed price-change paperwork, labels, and tags.
  • Trained new associates and guided ordering/receiving workflows.

Projects

CIS Benchmark ImplementationEEOC

  • Collaborated with the server team to scan and assess CIS Benchmark compliance on Windows servers in a hybrid Active Directory environment.
  • Reviewed security controls with stakeholders and implemented approved configuration changes.
  • Assisted in updating Group Policy Objects (GPOs) and re-running scans to validate benchmark alignment and improvements.
CISWindowsGPO

Secure Cloud Business Applications (SCuBA)EEOC

  • Contributed to the implementation of CISA SCuBA baselines in Exchange Online, including SPF, DKIM, DMARC, DLP, and mailbox auditing settings.
  • Supported efforts to enhance email security posture through anti-phishing rules, malware protection policies, and alert configurations using Microsoft 365 Defender.
SCuBAExchange OnlineM365 Defender

Family Calendar Mobile AppGSU

  • Created a fully functional family calendar using Google Calendar API, Firebase, and Flutter.
  • Users can create an event and send invitations for the event to friends and family members after secure login.
  • Event creators can modify the event on Google Calendar and see who responded to the invitation.
FlutterFirebaseGoogle Calendar

Real-time File Integrity MonitorPowerShell

  • Developed a real-time file integrity monitor with SHA-512 hashing for immediate alerts on unauthorized changes, plus a user-friendly console for baseline creation and monitoring.
  • Implemented an efficient solution for continuous file monitoring—with low CPU overhead—demonstrating advanced knowledge of PowerShell file operations and system security.
PowerShellSecurity

Social Media Mobile ApplicationGSU

  • Built a basic functional chat application utilizing Flutter & Firebase.
  • Users can create an account or login to get access to their account.
  • Users can post their thoughts and chat with friends.
FlutterFirebaseAuthChat

File Manager Android AppAndroid

  • Developed an Android app that provides file management functionality using Java and Android Studio.
  • Implemented system calls to access and manipulate files on the device.
  • Included features such as file search, sorting, and basic file operations.
AndroidJavaFile I/O

Personal Portfolio WebsiteMAKCloudhttps://portfolio.makcloud.org/

  • Developed a responsive portfolio website using HTML, CSS, and JavaScript, built and tested in Visual Studio Code.
  • Hosted on a self-managed Proxmox homelab running Linux, Apache, and Cloudflare integration for domain and containerized service management.
  • Implemented HTTPS through Cloudflare Tunnel with DNS, SSL, and modern security headers to ensure encrypted, secure, and reliable public access.
HTMLCSSJavaScriptVS CodeApacheProxmoxCloudflareHTTPS

Nextcloud Cloud Storage ServerMAKCloudhttps://storage.makcloud.me

  • Built and managed a self-hosted Nextcloud storage solution with TLS encryption, data retention policies, and automated backup pipelines.
  • Deployed on a Proxmox homelab with 20TB RAID1, secured through Cloudflare Tunnel & DNS for reliable remote access.
  • Implemented multi-user accounts, MFA, and role-based permissions with monitoring tools to simulate enterprise-grade collaboration.
NextcloudProxmoxRAID1CloudflareTLSMFARBACBackups

Homelab Virtualization & Cloud Access EnvironmentProxmox + Cloudflarehttps://lab.makcloud.org/

  • Proxmox server with multiple VMs/CTs (Windows, Ubuntu, EVE-NG, Kali Linux, Cloudflare & Guacamole CT) for enterprise IT, networking, and cybersecurity practice.
  • Cloudflare Tunnel + custom domains (makcloud.me) for HTTPS-only access to Proxmox, Nextcloud, Guacamole—no exposed ports.
  • Guacamole RDP/SSH gateway with MySQL backend for centralized, browser-based VM access.
ProxmoxCloudflare TunnelGuacamoleMySQLHTTPS

Custom Email Infrastructure SetupMakCloud.org

  • Configured enterprise-grade email using Zoho Mail with Cloudflare DNS: MX, SPF, DKIM, DMARC.
  • Integrated DMARC reporting with rua and ruf to monitor spoofing; daily aggregate reports.
  • Achieved 10/10 mail-tester score; improved Microsoft deliverability; enforced p=quarantine.
Zoho MailCloudflare DNSSPFDKIMDMARCDeliverability

Education

Master of Science in Cybersecurity — Kennesaw State University

May 2025 • GPA 4.00/4.00 • Dean’s 4.0 Club (2×)

Bachelor of Science in Computer Science — Georgia State University

May 2023 • GPA 3.92/4.00 • President’s List (9×) • Summa Cum Laude

Achievements

Contact

Mostofa Kaiser

Tucker, GA 30084

(470) 313-6666

mostofa.kaiser@makcloud.org

portfolio.makcloud.org

linkedin.com/in/mostofa-kaiser

github.com/makaiser14

Download my resume (OneDrive)