whoami

Fred Junior Ntwali_

Identity & Access Management // Cloud Security // DevSecOps

IAM professional at Smith+Nephew building enterprise-grade identity security across Microsoft Entra ID, Active Directory, and AWS. CS graduate. Based in Wrocław, Poland.

View Projects Get In Touch GitHub ↗
5
Certifications
4
Projects
2+
Yrs Experience
Introduction

Meet Fred

// intro_video.mp4 — coming soon

About

Who I Am

I'm a Computer Science graduate and Identity & Access Management professional currently working at Smith+Nephew, a global medical technology company — managing enterprise access across Active Directory, Microsoft Entra ID, and ServiceNow.

I hold three security certifications — SC-300, CompTIA Security+, and SC-900 — and I'm currently studying for AWS Solutions Architect Associate and AZ-104, pushing deeper into cloud infrastructure and Azure administration simultaneously.

Outside of work I build. I learn by doing — which means I've broken things in ways that taught me more than any course. My final-year engineering thesis designed and implemented a production-grade hybrid IAM framework integrating Microsoft Entra ID with on-premises Active Directory, validated against NIST SP 800-63 and ISO/IEC 27001.

I'm looking to move into cloud security, IAM engineering, DevOps, or DevSecOps — roles where security and infrastructure overlap.

$ cat profile.json
{
  "name": "Fred Junior Ntwali",
  "role": "IAM & Cloud Security",
  "location": "Wrocław, Poland",
  "degree": "BSc Information Technology",
  "focus": [
    "Cloud Security",
    "IAM Engineering",
    "DevSecOps",
    "DevOps"
  ],
  "status": "open_to_opportunities"
}
$ _|
Projects

What I've Built

01 // thesis
Hybrid IAM Framework — Microsoft Entra & On-Prem AD
Designed and implemented a production-grade hybrid IAM framework integrating Microsoft Entra ID with on-premises Active Directory. Covered Entra Connect, Zero Trust, Conditional Access, MFA, RBAC, PIM, and Microsoft Sentinel. Tested against real attack vectors. Validated against NIST SP 800-63 and ISO/IEC 27001.
Microsoft Entra ID Active Directory Zero Trust PIM Sentinel
02 // aws
AWS Cloud Travel Journal Application
Cloud-native web application enabling users to record, organise, and share travel experiences securely in the cloud. Built and deployed entirely on AWS using cloud-native services for compute, storage, and identity.
AWS Cloud Native IAM S3
03 // infrastructure
vProfile — Multi-Tier Java App: Local to AWS Lift & Shift
Provisioned a multi-tier Java application locally using Vagrant & VirtualBox with MySQL, Memcache, RabbitMQ, Tomcat, and Nginx. Then migrated the full stack to AWS EC2 via lift & shift, validating service connectivity across all tiers.
AWS EC2 Vagrant Nginx Tomcat MySQL
04 // security tooling
SecureMe Pro Vault — Python Security Tooling
Python-based security tooling focused on credential and access management. Built to automate and strengthen identity-related security operations — learning by building and breaking.
Python Security Automation IAM
Certifications

Credentials

✓ Achieved
SC-300 Identity & Access Administrator
Microsoft
✓ Achieved
CompTIA Security+
CompTIA
✓ Achieved
SC-900 Security, Compliance & Identity
Microsoft
⟳ In Progress
AWS Solutions Architect Associate
Amazon Web Services
⟳ In Progress
AZ-104 Microsoft Azure Administrator
Microsoft
Experience

Where I've Worked

Mar 2025 — Present
Smith+Nephew
Wrocław, Poland · Hybrid
UAM Specialist
  • Execute end-to-end User Access Management across enterprise systems via ServiceNow, Active Directory, and Microsoft Entra ID
  • Administer AD and Entra ID — managing user objects, security groups, RBAC assignments, privileged accounts, and account recovery at enterprise scale
  • Investigate access-related incidents by analysing sign-in logs, audit logs, and access activity — supporting security reviews and incident triage
  • Perform access certifications and remediation, enforcing least-privilege principles across the identity estate
  • Mentor colleagues on complex IAM tasks and contribute to knowledge base documentation
Mar 2025 — Nov 2025
Smith+Nephew
Wrocław, Poland · Hybrid
IT Service Desk Agent
  • Managed end-to-end incident and service request lifecycle via ServiceNow within agreed KPIs and SLAs
  • Performed User Access Management tasks via ServiceNow, Active Directory, and Microsoft Entra ID
  • Diagnosed and resolved technical incidents at first contact, minimising escalations
  • Contributed to and maintained the ServiceNow Knowledge Base
Contact

Get In Touch

Open to opportunities in cloud security, IAM engineering, DevOps, and DevSecOps. Based in Wrocław, Poland — open to remote across the EU.