Krijn Brugging

Azure Administrator  |  Transitioning to Cloud Security

Krijn Brugging

Azure administrator managing Entra ID, Intune, and Microsoft 365. AZ-104 certified, currently studying AZ-500. 175+ hours of hands-on security labs. Building toward cloud security engineering.

[email protected] · LinkedIn · TryHackMe · Havelte, Netherlands

Experience

Speak B.V. Oct 2025 - Present

IT Administrator, Heerenveen, Netherlands

  • Migrated 20 users to Microsoft Entra ID, establishing cloud-based identity management
  • Improved Microsoft Defender security score from 45% to 75% through Intune policies, Defender configuration, and conditional access
  • Implemented SSO using 1Password SCIM bridge and Entra ID, streamlining authentication across the organization
  • Administer Microsoft 365 stack daily: Entra ID, Intune, Exchange, Defender, and Admin Center
  • Manage SSL certificates, DNS zone changes, and VPS monitoring with Zabbix for client environments
  • Handle user account provisioning and deprovisioning lifecycle
  • Support Umbraco CMS environments and web infrastructure
Bonaire Yacht Charters Jul 2024 - Feb 2025

Captain & Host, Kralendijk, Bonaire

  • Captained yacht charters while delivering high-standard guest experiences
  • Held multiple maritime certifications: RYA Day Skipper, VHF, STCW, ENG 1
Dutch Military - Royal Netherlands Navy Oct 2023 - Jun 2024

Navy Diver in Training, Den Helder, Netherlands

  • Participated in one of the toughest selection programmes in the Dutch armed forces
  • Developed strong teamwork, adaptability, and safety-conscious discipline
Previous roles (2011-2023)
  • Hospitality, Aruba 2014-2023 Bar, restaurant, and hotel work across multiple venues in Aruba
  • Hospitality & general labour, Netherlands 2011-2014 Various bar, restaurant, and general labourer roles

Certifications

In Progress

Microsoft Azure Security Technologies

Associate-level certification covering Azure security posture, identity protection, network security, data and application security, and security operations.

Currently studying - exam pending
AZ-500 2026

Microsoft Azure Administrator Associate

Associate-level certification covering Azure identity, governance, storage, compute, and virtual networking administration.

AZ-104 Mar 2026 Exp Mar 2027

Microsoft Azure Fundamentals

Foundational certification validating cloud concepts, Azure services, security, privacy, pricing, and support.

AZ-900 Nov 2025

CompTIA Security+

Industry-standard security certification covering threat management, cryptography, identity management, and network security fundamentals.

SY0-701 Jun 2025 Exp Jun 2028

CompTIA Network+

Validates essential networking skills including infrastructure, troubleshooting, operations, and network security concepts.

N10-009 Jun 2025 Exp Jun 2028

CompTIA A+

Foundational IT certification covering hardware, operating systems, networking, and troubleshooting across a range of devices and OSes.

Core 1 & 2 May 2025 Exp Jun 2028

CompTIA CSIS - Secure Infrastructure Specialist

Stackable designation awarded for completing A+, Network+, and Security+, recognising a broad foundation in secure IT infrastructure.

Stackable Jun 2025

CompTIA CIOS - IT Operations Specialist

Stackable designation awarded for completing A+ and Network+, recognising core skills in IT operations and networking.

Stackable Jun 2025

TryHackMe: Security Engineer

64-hour hands-on learning path covering security engineering principles, secure development, and infrastructure hardening.

TryHackMe Aug 2025 64h 30min

TryHackMe: SOC Level 1

87-hour learning path on Security Operations Centre fundamentals: SIEM, log analysis, phishing, threat intelligence, and incident response.

TryHackMe Aug 2025 87h 50min

TryHackMe: DevSecOps

26-hour path integrating security into development pipelines, covering SAST, DAST, container security, and CI/CD hardening.

TryHackMe Sep 2025 26h 45min

Umbraco Professional

Official Umbraco certification for CMS administration, content architecture, and platform management in web environments.

Umbraco Nov 2025 Exp Nov 2027

Skills

Cloud & Azure

Azure Administration Virtual Networks Storage Identity & Access Governance Compute Azure Monitor

Security

Microsoft Defender Threat Detection Log Analysis SOC Analysis Vulnerability Assessment Incident Response DevSecOps

Identity & Access

Entra ID Intune Conditional Access SSO / SCIM 1Password RBAC M365 Admin Exchange

Networking

TCP/IP DNS DHCP Subnetting VLANs VPN SSL/TLS

Security Tooling

Splunk ELK / Elastic Wireshark Burp Suite Snort / Suricata YARA

Infrastructure

Windows Linux Nginx Cloudflare Zabbix Docker

DevOps & CI/CD

GitHub Actions Jenkins SonarQube OWASP ZAP

Web & CMS

Umbraco CMS Administration Web Hosting

In Progress

AZ-500 Python Terraform

Homelab & Training

Raspberry Pi

Self-Hosted Infrastructure

Raspberry Pi 5 homelab - live production

  • Hosts meetkrijn.dev on Raspberry Pi 5 via Nginx reverse proxy
  • Cloudflare proxy for DDoS protection, CDN, and SSL termination
  • SSH hardening: key-only auth, custom port, fail2ban
  • UFW firewall with minimal attack surface
  • rsync-based deployment pipeline from local dev to Pi
Raspberry Pi 5 Nginx Cloudflare Linux SSH Hardening UFW
Live site ↗
TryHackMe

TryHackMe - Security Labs

Hands-on offensive and defensive training

175+ Hours completed
3 Learning paths
  • SOC Level 1 - SIEM, log analysis, threat intel, IR (87h)
  • Security Engineer - secure infra, hardening, PKI (64h)
  • DevSecOps - CI/CD security, container hardening (26h)
SOC SIEM Incident Response Security Engineering DevSecOps
TryHackMe profile ↗

My Story

Before moving into IT, I spent over a decade working in hospitality, in bars, restaurants, and hotels across the Netherlands and Aruba. Those years taught me to stay calm under pressure, communicate across cultures, and take real ownership of outcomes. Skills that no certification can hand you.

In 2023 I pushed myself further by entering the Royal Netherlands Navy’s diver training programme, one of the most demanding selection courses in the Dutch military. After that, I spent time as a captain and host with Bonaire Yacht Charters in the Caribbean, leading guests through island sailing experiences while holding RYA, STCW, and VHF certifications.

When I returned to the Netherlands I committed fully to IT. In under a year I earned CompTIA A+, Network+, and Security+, completed over 175 hours of hands-on TryHackMe training across security engineering, SOC operations, and DevSecOps, and joined Speak B.V. where I quickly moved beyond support into administering Entra ID, Intune, Microsoft 365, and client infrastructure. The goal is clear: a career in cloud security.