Network Infrastructure, Security & Automation Engineer · Boca Raton, FL

Designing secure,
observable, and
resilient infrastructure.

14+ years of experience designing, operating, and securing enterprise and cloud networks. Specialized in Zero Trust architectures, hybrid AWS/OCI connectivity, infrastructure automation, observability, and incident response.

Read my story Download resume LinkedIn
14+
Years of experience
40%
VPN ticket reduction (Zero Trust)
AWS / OCI
Hybrid cloud connectivity
MSc
Computer Systems Engineering
Andrii Danylov
Andrii Danylov
LinkedIn Profile Download Resume (PDF) andrii@andriidanylov.com

About Me

Network Infrastructure & Security Engineer

I'm a Network Infrastructure and Security Engineer based in South Florida with over 14 years of experience building, operating, and securing enterprise networks.

My work spans hybrid cloud connectivity, Zero Trust architectures, enterprise wireless, network observability, incident response, and infrastructure automation. I enjoy solving complex operational problems through telemetry, automation, and systems thinking.

Throughout my career I've worked across enterprise, education, cloud, and service provider environments, progressing from hands-on network operations to leading infrastructure modernization and security initiatives supporting thousands of users.

Today I focus on network infrastructure, cloud security, automation, and observability — helping organizations build systems that are reliable, scalable, and secure.

Zero Trust / SASE Hybrid Cloud (AWS / OCI) Network Observability Incident Response Infrastructure Automation Python / APIs / Terraform Enterprise Wireless Microsoft Entra ID XDR / EDR Jenkins / Git

Background

From Physics to Infrastructure

Kyiv National University

Applied Physics & Radiophysics

My technical journey began studying Applied Physics and Radiophysics at Kyiv National University. Physics taught me to think in systems, understand root causes, and approach complex problems analytically — a foundation I draw on every day.

Early Networking

Where theory meets real-world impact

Working with internet service providers and enterprise environments, I became fascinated by networking because it sits at the intersection of theory and real-world impact. Every application, service, and user experience depends on reliable connectivity. I wanted to build and operate the infrastructure that everything else runs on.

United States · Graduate Studies

Enterprise Infrastructure

After relocating to the US and completing graduate studies in Computer Systems Engineering, I expanded into enterprise networking, wireless architecture, cloud connectivity, and automation — applying operator instincts at enterprise scale across diverse industries.

Present

Security & Cloud

Over the last several years my focus has shifted toward Zero Trust architectures, hybrid cloud networking, observability, and security engineering — areas where networking, security, and software increasingly converge. I'm energized by the complexity and the stakes.

Work

Featured Projects

Enterprise Zero Trust Transformation
2,000+ Users · SASE · Identity-Based Access

Architected and led migration from traditional VPN and segmented connectivity to a cloud-delivered Zero Trust platform supporting users, branch offices, cloud workloads, and DMZ environments.

Results
VPN support tickets reduced by 40%
Service desk workload reduced by 30%
Simplified compliance operations
Hybrid AWS / OCI Connectivity
Multi-Cloud · Production Workloads · Private Networking

Designed and operated secure multi-cloud networking supporting production workloads across AWS and Oracle Cloud Infrastructure, ensuring routing integrity, segmentation, and end-to-end observability.

Focus Areas
Routing and segmentation across cloud boundaries
Private connectivity and security controls
Observability and troubleshooting at cloud scale
Incident Response Engineering
XDR · Telemetry · Detection & Containment

Partnered with security teams to investigate and contain suspicious activity across enterprise and cloud environments, improving detection fidelity and response velocity.

Results
Improved detection coverage across endpoints and network
Reduced mean time to contain
Enhanced telemetry collection and visibility
Infrastructure Automation Platform
Python · APIs · Jenkins · Git · Terraform

Developed Python-based automation for network operations, access management, compliance validation, and operational reporting — reducing manual toil and improving consistency across change workflows.

Focus Areas
Network operations automation via REST APIs
Compliance and access management workflows
CI/CD integration with Jenkins and Git
Stack: Python · APIs · Jenkins · Git · Terraform

Experience

Career path

Senior Network Security Engineer
Cinch Home Services
2026 – Present

Leading Zero Trust architecture, AWS/OCI security, incident response, and infrastructure modernization initiatives across enterprise environments.

Zero Trust Architecture AWS / OCI Incident Response Infrastructure Modernization
Network Security Engineer
Cinch Home Services
2025 – 2026

Security operations, XDR investigations, wireless and network optimization, and SASE platform administration supporting enterprise connectivity and visibility.

Security Operations XDR Investigations SASE Administration Wireless Optimization
Network Engineer
Cinch Home Services
2022 – 2025

Led SASE migration, designed AWS cloud connectivity, managed branch networking across multiple sites, and developed infrastructure automation workflows.

SASE Migration AWS Connectivity Branch Networking Infrastructure Automation
Senior Network & Systems Administrator
IT Management Corporation
2020 – 2024

Owned enterprise infrastructure, compliance initiatives, Python-based operational automation, and wireless architecture across multi-site environments.

Enterprise Infrastructure Compliance Python Automation Wireless Architecture
Network Engineer
IT Management Corporation
2016 – 2020

Designed and managed enterprise Wi-Fi, NAC, routing and switching, and security hardening across a managed services environment.

Enterprise Wi-Fi NAC Routing & Switching Security Hardening

Writing

Professional articles

Practitioner-level writing on cloud security, Zero Trust architecture, identity governance, and the real-world tradeoffs of enterprise infrastructure decisions.

Identity 2025
Microsoft Copilot and the AI Governance Gap: What Security Teams Are Missing

Most M365 deployments expose sensitive data to Copilot before governance controls are in place. Here's what that looks like in practice — and how to fix it.
Zero Trust 2025
Entra Private Access for On-Prem AD: What Public Preview Gets Right (and What's Still Missing)

A hands-on evaluation of Microsoft's Global Secure Access for replacing traditional VPN access to on-premises Active Directory workloads.
AWS 2024
EKS Security Group Remediation at Scale: A Flow Logs-Driven Approach

How to extract actionable IP intelligence from VPC Flow Logs via CloudWatch Logs Insights, split it by scope, and drive security group cleanup without service disruption.
SASE 2024
Building a Cato POP Health Monitor: Three-Source Architecture with Slack Alerting

Why a single API source isn't enough for POP health visibility — and how combining CMA snapshot, accountMetrics, and StatusHub gives you real signal.
Endpoint Security 2024
What Zoho Assist Shell-Drop Patterns Actually Look Like in EDR Telemetry

A practical walkthrough of identifying remote-access tool abuse patterns — WMI activity, shell drops, process chains — without a SIEM, using EDR query alone.
Network Design 2023
Connectivity Debt: The Hidden Cost of Deferred Network Infrastructure Investment

A framework for quantifying and communicating the business risk of aging wireless and LAN infrastructure — useful for budget conversations with non-technical stakeholders.

Life outside work

The other stack

Engineering bleeds into everything. These are the places I find the same satisfaction outside of work — building, going fast, or understanding how things actually work.

🪁
Kiteboarding

South Florida is one of the best places in the country for it. There's something about reading wind and water conditions in real time that scratches the same itch as network troubleshooting — every session is different, nothing is deterministic, and the feedback loop is instant.

🏎
Enthusiast cars

Currently building out a 2026 VW GTI S — ceramic coating, paint protection film, and incremental mods. I like cars the same way I like networks: understanding them at the component level before touching anything, and making deliberate changes I can explain.

🔐
Hack The Box & red team research

I run a local AI inference stack on a Mac Mini M4 with Ollama for penetration testing research, remotely accessible on a security-first setup. Working through HTB challenges keeps offensive technique knowledge sharp — important for a defender who needs to think like an attacker.

🏃
Community running

Active in local South Florida running groups. Running is one of those rare activities where showing up consistently beats everything else — a useful reminder when debugging complex network issues that sometimes the answer is just methodical iteration.

⚛️
Physics (still)

The physics undergrad never fully left. I still revisit thermodynamics and electromagnetism through the Feynman method — relearning what I thought I knew until I can explain it to someone without using jargon. Relevant to optical communications, RF propagation, and more.

🔧
Home infrastructure & DIY

Lake Worth homeowner who would rather understand how an appliance or HVAC system works than call a technician to fix it. Same diagnostic instinct as network troubleshooting — isolate the variable, read the signal, test the hypothesis.

Get in touch

Let's talk infrastructure

Open to conversations about solutions engineering, network security architecture, and building things that scale. Reach out directly or connect on LinkedIn.

Send an email LinkedIn Resume (PDF)