Venkat Sreepad
Udata.
IT Infrastructure Lead
Global RetailService DeliveryMicrosoft 365Network & Security
IT Infrastructure Lead with 4+ years delivering end-to-day IT operations across multi-site retail and healthcare environments. Own service delivery through Spiceworks, leading escalations, incident coordination, and execution quality across global corporate and retail operations supporting ~800 employees and ~2,000 managed devices. Transitioning into dedicated cybersecurity — actively building SIEM deployment, detection engineering, and penetration testing skills.
4+YEARS EXPERIENCE
~800EMPLOYEES SUPPORTED
~2,000MANAGED DEVICES
2PRODUCTS BUILDING
CORE COMPETENCIES
Technical depth.
Service Delivery & Leadership
EXPERTSpiceworks ITSMEscalation ManagementIncident RCAOffshore Team LeadershipRunbooks & KBField Dispatch
Microsoft 365 & Identity
ADVANCEDExchange OnlineEntra ID HybridSharePoint AdminIntune MDMRBAC / Security GroupsGPOMulti-tenant Admin
Network & Security Administration
ADVANCEDCisco MerakiAruba/HPESonicWallOPNsenseUniFiIPSec VPNVLAN DesignFirewall Policy
Security Platforms
ADVANCEDCheck Point InfinityHarmony EndpointHarmony Email/O365SophosDuo Security MFASymantec Endpoint1PasswordProton PassZoho Vault
Endpoint & Device Management
ADVANCEDIntuneMiradore MDMApple Business ManagerCompliance PoliciesConfig ProfilesABM Enrollment
Security Ops & Offensive
ACTIVELY DEVELOPINGWazuh SIEMLog Ingestion & ParsingDetection RulesKali LinuxTryHackMeHackTheBoxVulnHubNetwork EnumerationBurp SuiteSecurity+
Homelab SIEM deployment · Isolated pentest lab · Security+ in progress
ADDITIONAL TOOLS & PLATFORMS
PowerShellProxmoxVMwareDockerTrueNAS/ZFSOracle Cloud (OCI)AWS EC2Nginxn8nNetBird VPNPi-holeKasm WorkspacesRustDeskFullCircle ERPBlueCherry ERPCPSI EMRAdobe Admin ConsoleConnectWiseSplashtop
PROFESSIONAL EXPERIENCE
Where I've worked.
IT Infrastructure Lead
Ashunya Inc. · Clients: FRAME Denim | The Elder Statesman | Good American
📍 Orange County / Los Angeles, CA (Multi-site)
SERVICE DELIVERY & LEADERSHIP
- Own day-to-day service delivery through Spiceworks, triaging incidents, setting priorities, leading escalations, and ensuring timely resolution across corporate offices and global retail locations.
- Lead and coordinate offshore IT support resources — providing technical guidance, assigning work, validating outcomes, and handling escalations to maintain SLA-driven operations across time zones.
- Coordinate field support for offshore/hard-to-reach stores by scheduling dispatch technicians, managing incident communications, verifying completion, and documenting changes for auditability.
- Build and maintain internal documentation (runbooks/KB), perform root-cause analysis on recurring issues, and implement corrective actions to reduce repeat incidents.
MICROSOFT 365 / IDENTITY / ENDPOINT (MULTI-TENANT)
- Administer Microsoft 365 across separate tenants, owning Exchange Online, Teams, SharePoint, and OneDrive — policies, permissions, governance controls, shared mailboxes, and delegation.
- Own Good American SharePoint administration and governance supporting ~15 TB across ~20 sites, including permissions governance, access troubleshooting, and site controls standardization.
- Support identity and access across mixed architectures: Hybrid Entra ID, cloud-only Entra ID, and legacy M365 — ensuring consistent RBAC, least privilege, and documented access standards.
- Own endpoint and device management for ~2,000 managed devices using Intune and Miradore + ABM, including enrollment, compliance policies, config profiles, baseline enforcement, and remediation.
SECURITY / NETWORK / ARCHITECTURE
- Administer Sophos endpoint security and Check Point Infinity (Harmony Endpoint + Harmony Email/O365) across FRAME, Good American, and TES — policy config, threat monitoring, alert triage.
- Administer Duo Security MFA and support password vault platforms (1Password, Proton Pass, Zoho Vault, LastPass) for secure credential workflows across all brands.
- Manage multi-vendor networks across Cisco Meraki, Aruba/HPE, SonicWall, and OPNsense — VLANs, Wi-Fi operations, firewall policy updates, and incident response across LAN/WAN/VPN.
- Design and implement store infrastructure (Wi-Fi, network, surveillance/NVR) for new and offshore locations — standards, segmentation, bandwidth/storage sizing, deployment, and post-deployment validation.
KEY PROJECTS
- Led enterprise Egnyte → FileCloud migration (~6 TB, 50+ users): share inventory, shared-drive redesign, RBAC permission governance, cutover planning, and post-migration validation.
- Developed PowerShell automation for provisioning and audit reporting: automated AD user creation (CSV-driven), OU placement, group assignment, Exchange Online delegation; produced audit-ready reports for group membership, delegation, DG membership, and stale/disabled accounts.
OPERATIONAL FOOTPRINT
FRAME25 retail stores globally · 3 corporate offices · 3 3PO + 3 3PL partners
GOOD AMERICAN5 US retail + 10+ concession stores
THE ELDER STATESMAN2 corporate + 3 retail locations
Systems Administrator / Network Administrator
Ashunya Inc. · Client: Docs Health
📍 Los Angeles, CA · Healthcare
- Administered Windows Server (AD DS, GPO, DNS) and Microsoft 365/SharePoint Online for clinical and administrative users.
- Administered Symantec Endpoint Protection and Check Point services (Endpoint/Email + VPN), troubleshooting client health and secure remote access for clinical staff.
- Supported Duo MFA, Okta basic administration/SSO troubleshooting, and CPSI EMR access enforcement aligned with HIPAA least-privilege expectations.
- Delivered 30% performance gain and 40% downtime reduction through infrastructure remediation.
- Executed no-downtime office relocation/server migration, designed multi-floor UniFi Wi-Fi for 100+ users, and supported IP surveillance/NVR deployment.
Systems Support Engineer
Agusta Software
📍 Hyderabad, India · Healthcare Environments
- Delivered Windows endpoint support and AD administration for hospital environments supporting 200+ users, resolving incidents via ConnectWise/Splashtop with documented RCA.
- Administered file shares and permissions; reduced repeat incidents through standardization and procedural improvements.
PROJECTS & ENGAGEMENTS
High-impact work.
FRAME / TES / Good AmericanGlobal Retail · via Ashunya Inc.
Multi-site, CAMIGRATION
Egnyte → FileCloud Migration
~6 TB · 50+ users · enterprise data governance
SCOPE Full share inventory, shared-drive redesign, RBAC permission governance across all user groups.
APPROACH Phased cutover planning, permission mapping, post-migration validation and user support.
IMPACT Clean data architecture with auditable access controls and zero data loss.
AUTOMATION
PowerShell Provisioning & Audit Automation
AD + Exchange Online lifecycle automation
SCOPE CSV-driven AD user creation, OU placement, group assignment, Exchange Online delegation.
OUTPUT Audit-ready reports: group membership, delegation, DG membership, stale/disabled accounts.
IMPACT Eliminated manual provisioning errors; produced compliance-ready documentation on demand.
ARCHITECTURE
Store Infrastructure Design & Rollout
Wi-Fi · network · surveillance for new locations
SCOPE Standards, segmentation, bandwidth/storage sizing, deployment plans for new and offshore stores.
APPROACH End-to-end design including VLAN architecture, AP placement, NVR sizing, and post-deployment validation.
IMPACT Repeatable store deployment playbook reducing time-to-live for each new location.
AUTOMATION
Automated OS Fleet Upgrade
200+ endpoints · zero-touch · zero downtime
SCOPE Upgrade remote and retail endpoints to Windows 11 without scheduled downtime or onsite visits.
APPROACH Staged Miradore automation policies, health checks, and rollback safeguards.
IMPACT Zero open tickets during rollout. Hardened baseline aligned with security policy.
Docs HealthHealthcare IT · via Ashunya Inc.
Los Angeles, CAMIGRATION
Office Relocation & Server Migration
Zero-downtime hybrid transition
SCOPE Relocate all physical assets and migrate on-prem servers to hosted stack with clinical availability maintained.
APPROACH Migration runbooks, multi-ISP cutovers, site-to-site VPN rebuild for new footprint.
IMPACT Day-one readiness — all VPNs, file services, and integrations online for 250+ staff.
INFRASTRUCTURE
Multi-Floor Wi-Fi & Surveillance Deployment
100+ clinical devices · 4 floors
SCOPE High-throughput UniFi deployment for imaging, telehealth, and guest segments with full NVR coverage.
APPROACH RF propagation modeling, controller policy staging, QoS tuning, NVR placement.
IMPACT >30% throughput gains, seamless roaming, full surveillance coverage.
MinatoLabsPersonal products & lab initiatives
minatolabs.com● IN DEVELOPMENT
Arken — Zero-Knowledge Cloud Storage
Client-side encryption · compliance-ready · coming soon
CONCEPT Zero-knowledge storage platform encrypting files on-device before upload. Keys never leave the user.
TARGET Healthcare, legal, and financial teams requiring audit trails, legal hold, and HIPAA-conscious storage.
STATUS Active build. Early access waitlist open.
View Arken →● IN DEVELOPMENT
SnapStep — Desktop Workflow Documentation
PHI-safe screen capture · PDF & Markdown export · offline-first
CONCEPT Desktop app that captures workflow clicks into annotated step-by-step guides for PDF or Markdown export.
TARGET Healthcare documentation teams, IT admins, corporate trainers in PHI-sensitive environments.
STATUS Active build. Early access waitlist open.
View Snapstep →HOMELAB & SECURITY LAB
Personal infrastructure.
A multi-site hybrid environment spanning OCI, Proxmox, and macOS — used for production tooling, security research, SIEM deployment, and offensive security practice.
PRODUCTION INFRASTRUCTURE
OCI Cloud VM
Ampere A1 · Always-Free
Nginx Proxy ManagerCouchDBObsidian LiveSyncDockersync.minatolabs.com
Ubuntu 24.04 · 141.148.174.227
Homelab Server
Ryzen 9 5950x
Proxmox VETrueNAS/ZFSKasm WorkspacesRustDeskHeimdall DashboardMultiple VMsDocker
On-prem · Primary virtualization host
Remote Mac
macOS
NetBird VPNPi-hole DNSRustDeskDocker
Remote access node · Always-on
SECURITY LAB
Wazuh SIEMACTIVE BUILD
Self-hosted Wazuh deployment for log ingestion, parsing, and detection rule development. Building out agent deployment, custom decoders, and alerting pipelines as a hands-on foundation for security operations work.
WazuhLog IngestionDetection RulesAgent DeploymentCustom DecodersSIEM
Pentest LabACTIVE BUILD
Isolated VMware lab environment with Kali Linux (Kali Purple) and VulnHub target VMs on a host-only network segment. Practicing enumeration, exploitation, and post-exploitation with snapshot discipline (pristine + clean-base). Supplemented by TryHackMe, HackTheBox, and PortSwigger Web Academy.
Kali LinuxVMwareVulnHubTryHackMeHackTheBoxPortSwiggerNetwork EnumerationBurp Suite
CERTIFICATIONS IN PROGRESS
CompTIA Security+BTL1CRTP (future)
EDUCATION & CERTIFICATIONS
Academic background.
GRADUATE
M.S. Information Technology
Cybersecurity Concentration
California Lutheran University
Thousand Oaks, CA · Feb 2022 – Aug 2024
UNDERGRADUATE
B.Tech. Electronics & Communication Engineering
CMR Institute of Technology
Hyderabad, India · May 2016 – Jan 2021
CERTIFICATIONS
HIPAA Compliance Certification
Certificate available upon request
CompTIA Security+
In progress · 2025
CONTACT
Let's work together.
Open to consulting engagements, full-time IT/infrastructure/security roles, and collaboration.
PHONE+1 (805) 871-9667
EMAILvenkat@minatolabs.com
LINKEDINlinkedin.com/in/venkatsreepad
GITHUBgithub.com/minatolabs
AVAILABILITY STATUS
Open to Opportunities
Available for consulting, full-time IT infrastructure, and security-focused roles. Particularly interested in environments with a security operations or compliance component. Targeting a dedicated cybersecurity role within the next 12–18 months.