whoami

Fred Junior Ntwali_

Identity & Access Management // Cloud Security // DevSecOps

IAM professional at Smith+Nephew building enterprise-grade identity security across Microsoft Entra ID, Active Directory, and AWS. CS graduate. Based in Wrocław, Poland.

View Projects Get In Touch GitHub ↗
5
Certifications
4
Projects
2+
Yrs Experience
Introduction

Meet Fred

// intro_video.mp4 — coming soon

About

Who I Am

I'm a Computer Science graduate and Identity & Access Management professional currently working at Smith+Nephew, a global medical technology company — managing enterprise access across Active Directory, Microsoft Entra ID, and ServiceNow.

I hold three security certifications — SC-300, CompTIA Security+, and SC-900 — and I'm currently studying for AWS Solutions Architect Associate and AZ-104, pushing deeper into cloud infrastructure and Azure administration simultaneously.

Outside of work I build. I learn by doing — which means I've broken things in ways that taught me more than any course. My final-year engineering thesis designed and implemented a production-grade hybrid IAM framework integrating Microsoft Entra ID with on-premises Active Directory, validated against NIST SP 800-63 and ISO/IEC 27001.

I'm looking to move into cloud security, IAM engineering, DevOps, or DevSecOps — roles where security and infrastructure overlap.

$ cat profile.json
{
  "name": "Fred Junior Ntwali",
  "role": "IAM & Cloud Security",
  "location": "Wrocław, Poland",
  "degree": "BSc Information Technology",
  "focus": [
    "Cloud Security",
    "IAM Engineering",
    "DevSecOps",
    "DevOps"
  ],
  "status": "open_to_opportunities"
}
$ _|
Projects

What I've Built

01 // thesis
Hybrid IAM Framework — Microsoft Entra & On-Prem AD
Designed and implemented a production-grade hybrid IAM framework integrating Microsoft Entra ID with on-premises Active Directory. Covered Entra Connect, Zero Trust, Conditional Access, MFA, RBAC, PIM, and Microsoft Sentinel. Tested against real attack vectors. Validated against NIST SP 800-63 and ISO/IEC 27001.
Microsoft Entra ID Active Directory Zero Trust PIM Sentinel
02 // aws
AWS Cloud Travel Journal Application
Cloud-native web application enabling users to record, organise, and share travel experiences securely in the cloud. Built and deployed entirely on AWS using cloud-native services for compute, storage, and identity.
AWS Cloud Native IAM S3
03 // infrastructure
vProfile — Multi-Tier Java App: Local to AWS Lift & Shift
Provisioned a multi-tier Java application locally using Vagrant & VirtualBox with MySQL, Memcache, RabbitMQ, Tomcat, and Nginx. Then migrated the full stack to AWS EC2 via lift & shift, validating service connectivity across all tiers.
AWS EC2 Vagrant Nginx Tomcat MySQL
04 // security tooling
SecureMe Pro Vault — Python Security Tooling
Python-based security tooling focused on credential and access management. Built to automate and strengthen identity-related security operations — learning by building and breaking.
Python Security Automation IAM
Final Year Thesis

Featured Research

WSB Merito University Wroclaw · BSc Information Technology · 2026

Designing a Secure Identity and Access Management Framework Using Microsoft Entra and On-Premises Active Directory

Designed, implemented, and evaluated a production-grade hybrid IAM framework integrating Microsoft Entra ID with on-premises Active Directory. Covers hybrid identity synchronisation via Entra Connect, Zero Trust architecture, Conditional Access, MFA, RBAC, Privileged Identity Management, and Microsoft Sentinel. Tested against real attack vectors. Validated against NIST SP 800-63 and ISO/IEC 27001.

Microsoft Entra ID Active Directory Zero Trust Conditional Access PIM Microsoft Sentinel NIST SP 800-63 ISO/IEC 27001
58
Pages
2026
Defended
Certifications

Credentials

✓ Achieved
SC-300 Identity & Access Administrator
Microsoft
View Certificate ↗
✓ Achieved
CompTIA Security+
CompTIA
View Certificate ↗
✓ Achieved
SC-900 Security, Compliance & Identity
Microsoft
View Certificate ↗
⟳ In Progress
AWS Solutions Architect Associate
Amazon Web Services
⟳ In Progress
AZ-104 Microsoft Azure Administrator
Microsoft
Experience

Where I've Worked

Mar 2025 — Present
Smith+Nephew
Wrocław, Poland · Hybrid
UAM Specialist
  • Execute end-to-end User Access Management across enterprise systems via ServiceNow, Active Directory, and Microsoft Entra ID
  • Administer AD and Entra ID — managing user objects, security groups, RBAC assignments, privileged accounts, and account recovery at enterprise scale
  • Investigate access-related incidents by analysing sign-in logs, audit logs, and access activity — supporting security reviews and incident triage
  • Perform access certifications and remediation, enforcing least-privilege principles across the identity estate
  • Mentor colleagues on complex IAM tasks and contribute to knowledge base documentation
Mar 2025 — Nov 2025
Smith+Nephew
Wrocław, Poland · Hybrid
IT Service Desk Agent
  • Managed end-to-end incident and service request lifecycle via ServiceNow within agreed KPIs and SLAs
  • Performed User Access Management tasks via ServiceNow, Active Directory, and Microsoft Entra ID
  • Diagnosed and resolved technical incidents at first contact, minimising escalations
  • Contributed to and maintained the ServiceNow Knowledge Base
Contact

Get In Touch

Open to opportunities in cloud security, IAM engineering, DevOps, and DevSecOps. Based in Wrocław, Poland — open to remote across the EU.