bastiaan@365:~$ whoami
IT Engineer with 8+ years of experience in IT infrastructure, endpoint management and Microsoft 365.
From managing 15,000+ endpoints at KLM to healthcare IT at a leading oncology hospital β now looking for my next challenge in Security Engineering.
I'm passionate about AI-assisted workflows β I actively use AI tools to automate tasks, build documentation, and accelerate my work. This profile? Built with AI.
| Domain | Technologies |
|---|---|
| π§ Microsoft 365 | Intune Β· Entra ID Β· Defender Β· Conditional Access Β· Exchange Online |
| π‘οΈ Security | Suricata IDS/IPS Β· OPNsense Β· Zero Trust Β· GDPR Β· NEN 7510 Β· NIS2 |
| π€ AI & Automation | Claude Β· LLM workflows Β· AI-assisted development Β· Prompt engineering |
| π Monitoring | Grafana Β· InfluxDB Β· Telegraf Β· Syslog Β· Alerting |
| π Networking | VLANs Β· WireGuard VPN Β· DNS-over-TLS Β· DNSSEC Β· TCP/IP |
| π₯οΈ Infrastructure | Windows Server Β· Active Directory Β· PowerShell Β· SCCM/MECM Β· Linux |
I build and maintain a fully segmented home network as a hands-on security lab:
- π OPNsense firewall with 7 isolated network segments
- π¨ Suricata IDS/IPS for real-time threat detection
- π WireGuard VPN with kill switch and Mullvad integration
- π TIG stack (Telegraf, InfluxDB, Grafana) on Raspberry Pi
- π‘ Home Assistant on isolated VLAN
- π DNS-over-TLS with blocklists, DNSSEC validation and Unbound
- βοΈ Automated hardening scripts with rollback capability
Full write-up and details on my website β bastiaan365.com
| Repository | Description |
|---|---|
| π homelab-infrastructure | Full homelab setup with OPNsense, Suricata IDS/IPS, 7 VLANs, WireGuard VPN and TIG monitoring |
| π§ powershell-it-toolkit | PowerShell scripts for Windows IT: PC cleanup, AD management, Intune deployment, M365 automation |
| π‘οΈ ubuntu-hardening-scripts | Automated security hardening for Ubuntu/Debian with CIS benchmarks and rollback capability |
| π dns-security-setup | Secure DNS with Unbound: DNS-over-TLS, DNSSEC validation, ad/malware/tracker blocklists |
| π grafana-dashboards | Custom Grafana dashboards for network traffic, Suricata alerts, DNS queries, system metrics |
I believe in learning by doing. AI is not just a tool I use β it's how I accelerate everything:
- Building scripts, documentation and tooling with AI-assisted development
- Exploring LLM integrations for IT automation and monitoring
- Using prompt engineering to streamline daily IT operations
- Every day I learn something new through AI β and I apply it immediately
| Certification | Status |
|---|---|
| MD-100: Windows Client | β |
| MD-101: Managing Modern Desktops | β |
| AZ-900: Azure Fundamentals | β |
| SC-900: Security, Compliance & Identity | β |
| ITIL v4 Foundation | β |
| Lean Six Sigma Orange Belt | β |
| CompTIA Security+ | β³ In progress |
- π’ 8+ years in IT across aviation, healthcare, legal and childcare sectors
βοΈ KLM β Lifecycle management of 15,000+ Windows endpoints & 20,000+ iPads- π₯ KLM Health Services β 3+ years as ICT consultant, NEN 7510 compliance
- π Aviation Engineering background β engineering mindset in everything I do
- π‘οΈ Security-focused β from homelab to enterprise, security is my common thread
- π€ AI-driven β actively integrating AI into my workflows and skill development
- π bastiaan365.com
- πΌ LinkedIn
- βοΈ bastiaan@bastiaan365.nl
- π Almere, Netherlands