MSP Security Engineer
11+ years in MSP environments — Level 2/3 escalations, endpoint security,
and Microsoft 365 administration for remote, U.S.-based clients.
MSP-hardened.
Security-focused.
I'm Junie Danguecan — a Senior IT Support Engineer and Endpoint Security Specialist based in Quezon City, Philippines, with 11+ years of experience in MSP environments. I specialize in Microsoft 365 administration, endpoint security, and Level 2/3 escalation support for U.S.-based clients across multiple time zones.
I'm automation-first by habit: I build PowerShell scripts that replace repetitive tasks, deploy and manage RMM platforms like Datto and ConnectWise, and configure security tools like SentinelOne, Intune, and Microsoft Defender for Endpoint. I focus on creating documentation that actually gets used and runbooks that reduce repeat incidents.
Currently pursuing CEHv13 and expanding my expertise in penetration testing, vulnerability assessment, and advanced threat hunting.
Skills & Expertise
MSP & RMM Tools
- Datto RMM — remote monitoring & management
- ConnectWise — ticketing & remote support
- ManageEngine Endpoint Central
- KACE Systems Management Appliance
- Hudu & IT Glue-style documentation
Microsoft 365 & Azure
- Azure AD / Entra ID administration
- Exchange Online & email migration
- Intune MDM/MAM & device compliance
- Microsoft 365 E5 Security suite
- Purview DLP & Sensitivity Labels
Endpoint Security
- SentinelOne EDR — policy & alert investigation
- Microsoft Defender for Endpoint
- BitLocker enforcement via Intune/GPO
- Vulnerability & patch management (M365 TVM)
- Malware analysis & remediation
Security & Compliance
- Incident response (NIST framework)
- Phishing investigation & email header analysis
- GDPR data protection compliance
- Security baseline & GPO enforcement
- Runbook & compliance report authoring
Scripting & Automation
- PowerShell — deployment & compliance automation
- Intune device configuration scripts
- Security baseline enforcement scripts
- Windows Server (2012–2022) administration
- Active Directory & Group Policy management
Infrastructure & Networking
- VMware vSphere & Hyper-V virtualisation
- VLANs, VPN, DNS/DHCP management
- SonicWall & NordLayer network security
- Jira, Confluence, SLA-driven ticket management
- SQL queries & data pipeline troubleshooting
Work Experience
Cyber Security Engineer / IT Support Engineer
Manages Microsoft 365 tenant and endpoint security for multiple client environments. Serves as independent escalation point for remote clients, handling after-hours issues and complex security incidents.
- Managed Microsoft 365 tenant (Azure AD, Exchange, Intune) and endpoint security (Defender, SentinelOne) across multiple client environments
- Led email migration project from Google Workspace to Office 365 with zero downtime
- Deployed and managed SentinelOne across client endpoints — configured policies and investigated security alerts
- Built PowerShell scripts to automate Intune device configuration and compliance checks
- Managing Purview sensitivity labels and DLP policies; created detailed runbooks to reduce repeat issues
- Provided remote support via Datto RMM and ConnectWise; handled escalations and after-hours client issues independently
IT Support Specialist / Project Manager
Delivered Microsoft 365 administration and endpoint security management for MSP clients. Managed projects end-to-end while supporting remote escalations via Datto RMM and ConnectWise.
- Managed Microsoft 365 tenant (Azure AD, Exchange, Intune) and endpoint security (Defender, SentinelOne) for multiple client environments
- Led email migration from Google Workspace to Office 365 with zero downtime
- Deployed and managed SentinelOne across client endpoints; configured policies and investigated security alerts
- Built PowerShell scripts to automate Intune device configuration and compliance checks
- Created detailed ticket documentation and runbooks to improve team knowledge and reduce repeat issues
System Engineer L3
Served as the Level 3 escalation point for complex technical issues across an MSP client base. Administered Microsoft 365 and handled endpoint security using the full M365 E5 security stack.
- Served as Level 3 escalation point for complex technical issues across MSP client base
- Managed Microsoft 365 administration (Azure AD, Intune, Defender for Endpoint) and remote endpoint support via Datto RMM
- Configured and deployed Intune policies for device compliance, BitLocker encryption, and application management
- Monitored and responded to security alerts; performed incident triage and remediation using Microsoft 365 E5 security tools
- Documented solutions and created standardised procedures for common escalations
Cyber Security Engineer
Built and enforced security baselines using Microsoft 365 E5 Security. Monitored and responded to cybersecurity incidents, collaborated with U.S.-based security teams, and led vulnerability remediation workflows.
- Built and enforced security baselines and compliance policies using Microsoft 365 E5 Security suite
- Monitored and responded to cybersecurity incidents; performed malware analysis and phishing investigations
- Managed vulnerability remediation workflows using Microsoft Threat and Vulnerability Management
- Administered Microsoft Defender for Endpoint and Intune; deployed security configurations via GPO and Intune policies
- Collaborated with U.S.-based security teams on incident response and threat mitigation
- Created and maintained security documentation, runbooks, and compliance reports
IT Support
Managed Azure infrastructure and data engineering pipelines supporting business intelligence workflows. Ensured compliance with GDPR data protection policies.
- Managed Azure infrastructure (Data Lake, DevOps pipelines, Apache Kylin, Hadoop clusters)
- Performed SQL queries and data pipeline troubleshooting to support BI workflows
- Processed GDPR data deletion requests; ensured compliance with data protection policies
- Monitored infrastructure alerts and resolved issues proactively to maintain uptime
IT Support Engineer
Provided Level 1/2 support for a global workforce. Led an on-premises Exchange to Office 365 migration and managed endpoints using KACE and Microsoft Intune.
- Provided Level 1/2 support for global workforce; managed tickets, escalations, and SLA compliance
- Led email migration project from on-premises Exchange to Office 365
- Deployed software and managed endpoints using KACE Systems Management Appliance and Microsoft Intune
- Monitored production servers and network infrastructure; performed root-cause analysis
- Configured Office 365 security policies (spam filtering, mail trace, external sharing controls)
- Built knowledge base articles to improve first-call resolution rates
IT Service Desk L1
Single point of contact for internal IT support. Received, logged, and managed support calls via email, phone, and instant messaging with SLA-driven ticket management.
- Received, logged, and managed IT support calls as single point of contact for internal clients
- Logged, updated, and tracked trouble tickets; escalated unresolved issues to appropriate teams
- Identified and organised tickets by domain, priority, and severity
IT Service Desk Analyst
Resolved incidents and service requests, escalating complex issues to specialised teams while maintaining SLA compliance and protecting confidentiality of sensitive information.
- Resolved basic incidents and requests; escalated complex issues to specialised teams
- Maintained SLA compliance and protected confidentiality of sensitive information
- Created positive customer support experience through timely resolution and professional communication
Security Projects
Endpoint Security Baseline
Designed and deployed a full security baseline across 10 managed endpoints using ManageEngine Endpoint Central. Achieved 100% BitLocker encryption coverage and applied CIS-aligned group policies to all machines.
Phishing Simulation & IR Program
Built and operates a phishing simulation and incident response program using AppRiver and Microsoft Defender. Includes email header analysis workflows, escalation playbooks, and end-user security awareness training.
Microsoft Entra ID Hardening
Implemented a comprehensive Entra ID security posture improvement including Conditional Access policies, MFA enforcement for all users, Privileged Identity Management (PIM) configuration, and RBAC clean-up.
SIEM & Security Monitoring Pipeline
Setting up a centralized SIEM log analysis pipeline for proactive threat detection. Includes alert rule tuning, log ingestion from M365 and endpoint agents, and SOC-style triage procedures.
PowerShell Security Automation Suite
Built a library of PowerShell automation scripts covering user lifecycle management, security policy auditing, M365 tenant health checks, and automated incident triage data collection — reducing manual effort by hours weekly.
Data Loss Prevention (DLP) Policy Framework
Designed and implemented a DLP and sensitivity labeling framework using Microsoft Purview. Covers classification of sensitive data, policy enforcement across M365 workloads, and compliance reporting aligned with NPC/DPO requirements.
Certifications
Microsoft Certified
Azure Fundamentals (AZ-900)
Active(ISC)² Certified
Cybersecurity Certification (CC)
ActiveOPSWAT Certified
File Security Associate (OFSA)
ActiveEC-Council CEHv13
Certified Ethical Hacker
In ProgressLet's Connect
Open to MSP support engineer, cybersecurity engineer, and cloud security roles — including remote positions and UAE-based opportunities. 11+ years of Level 2/3 escalation experience, strong in Microsoft 365, Datto RMM, SentinelOne, and PowerShell automation. Let's talk.