$ whoami

Edward Griggs

Microsoft 365 Security & Systems Administration · Identity, Compliance & Automation

// Yorktown, VA · open to SOC · Detection · SysAdmin · AI roles

01 / about

about

Security+ certified systems and security administrator securing and automating a federal GovCon Microsoft 365 environment for 50 employees. I run identity, endpoint, and security operations across Entra ID, Intune, Defender, and Purview, and I own the governance and documentation behind it.

I was the primary author of the SSP and POA&M, roughly 70% of the compliance documentation, behind a perfect 110/110 SPRS score and CMMC Level 2 readiness. I raised Microsoft Secure Score from 54.5% to 83.6% across 30+ endpoints and recovered 1,200+ staff-hours a year through PowerShell, Power Automate, Microsoft Graph, and AI automation.

110/110
SPRS score
Perfect DoD NIST SP 800-171 self-assessment
54.5 → 83.6%
Microsoft Secure Score
+29 points across 30+ endpoints
1,200+
Staff-hours automated / yr
PowerShell, Power Automate, Graph, and AI
50
Employees supported
Federal GovCon Microsoft 365 environment, end to end
02 / skills

skills

Security Operationsscanning…
Incident detection & responsePhishing investigationsAlert triageLog collectionContinuous monitoringEndpoint hardeningSecurity baselinesMicrosoft Secure Score remediation
Microsoft 365 & Identityscanning…
Entra IDExchange OnlineSharePointTeamsIntuneDefenderPurviewMicrosoft Graph APIActive DirectoryMFASSORBACConditional AccessDLP
Compliance & Governancescanning…
NIST SP 800-171CMMC Level 2SSPPOA&MSPRSRMFCUIFARDFARS 252.204-7012Audit evidencePolicy & SOPs
Automation & Scriptingscanning…
PowerShellPythonPower AutomateMicrosoft Graph APIREST APIsSQLExcel automationAI automation
Systems & Webscanning…
Windows administrationEndpoint lifecycleNext.jsReactTypeScriptTailwindWordPressVercelGit/GitHub
03 / experience

experience

[Jul 2023 – Present]Systems Administrator@ Aalis Management Consulting · Alexandria, VA

Build and administer the full Microsoft 365 environment for a federal GovCon firm supporting 50 employees, across Entra ID, Exchange Online, SharePoint, Teams, Intune, Defender, and Purview.

Primary author of the SSP and POA&M, producing roughly 70% of the compliance documentation and control evidence behind a perfect 110/110 SPRS score on the DoD NIST SP 800-171 self-assessment, mapped to CMMC Level 2 readiness.

Manage identity and access across the tenant with MFA, RBAC, Conditional Access, and automated provisioning, onboarding, and offboarding; personally onboarded and offboarded 45+ employees.

Administer Intune endpoint management and security baselines across 30+ endpoints, raising Microsoft Secure Score from 54.5% to 83.6% through configuration remediation and endpoint hardening.

Conduct incident and phishing investigations and security event response, and ran 7 phishing awareness campaigns to reduce user-driven risk.

Designed and launched Aalis Connect, an 11-page SharePoint intranet for roughly 41 staff, and administer 14 SharePoint sites with governance and knowledge-management controls.

Recovered 1,200+ staff-hours annually through PowerShell, Power Automate, Microsoft Graph API, Python, and AI automation across offer letters, status reports, onboarding, reviews, and IT triage.

[Nov 2024 – Apr 2026]IT & Security Specialist@ NewView Oklahoma · Oklahoma City, OK (Remote)

Supported secure handling and closeout of 5,000+ federal contract records while maintaining compliance with FAR, DFARS, records retention, and audit-readiness requirements.

Configured Microsoft 365 security settings, MFA, SharePoint permissions, certificate-based authentication, and least-privilege access controls protecting sensitive government contract information.

Conducted access reviews and records governance to enforce least-privilege access and meet FAR and DFARS audit requirements.

Automated Excel-based document generation and reporting across contract closeout operations averaging roughly 500 contracts per month, improving efficiency, consistency, and accuracy.

[Dec 2020 – Jul 2023]Web & IT Support Specialist@ Planting Hope Global · Remote

Served as the primary IT resource for a distributed nonprofit workforce, providing account provisioning, password resets, troubleshooting, and remote support.

Managed WordPress hosting, SSL certificates, website updates, patching, backups, and access controls to maintain security and operational continuity.

Implemented role-based access controls and security best practices to protect organizational and donor information.

Authored IT documentation, user guides, and runbooks supporting onboarding, troubleshooting, and business continuity.

04 / projects

projects

Prompt Injection Security Research

2026

Authored and published "Hijacking the Prompt: A Survey of Prompt Injection Attacks, Detection, and Defense in Large Language Models" on ODU Digital Commons. Built a Python/Flask classifier matching 13 prompt injection signatures to a six-category taxonomy, validated by 83 passing pytest tests.

AI SecurityPythonResearch

Vault 7: Cybersecurity Training Game

2026

Browser-based training game teaching phishing awareness, password security, and defensive decision-making through mission-style scenarios. Led a four-person team as Team Lead and Lead Developer; selected as the winning project in the COVA CCI Design Cohort.

Security EducationGame

edwardgriggs.com

2026

This site. A modern-terminal portfolio with scroll-driven scanner bars and a log-line work history. Next.js, React, Tailwind, Framer Motion, deployed on Vercel.

Next.jsDesign
05 / certs

certs

CompTIA Security+
SY0-701 · Earned January 2026
Google Cybersecurity Certificate
IBM Introduction to Artificial Intelligence
IBM Introduction to Software Engineering
06 / education

education

B.S. in Cybersecurity
Old Dominion University · Expected May 2026
Fine Arts
The University of Virginia's College at Wise
07 / contact

contact

$ ./contact --where-to-find-me

Open to SOC, detection engineering, sysadmin, and AI/automation roles across VA, NC, DC, MD, and remote. The fastest way to reach me is email or LinkedIn.

where to find me

edwardjgriggs@gmail.com