With over 27 years of direct experience across diverse industries, Ray brings specialized expertise to help organizations meet their information technology and security needs. Recognized as an expert by peers and former clients, Ray offers comprehensive solutions for designing, implementing, and managing systems with optimal security for both present and future operations.

“Throughout my career, I've successfully guided organizations ranging from solo entrepreneurs to enterprises of 1,000+ employees. I've helped these companies securely implement, maintain, and merge technology infrastructures during periods of growth, while ensuring their teams have the right tools to maximize productivity and performance.” - Ray

Meet with ray

Technical Expertise

Risk Management / Compliance (NIST/SOC/ISO 27001/CMMC) / Microsoft AD, On-Premise and Azure Entra / Microsoft Exchange, On-Premise and o365 / Microsoft AIP / Microsoft Defender ATP / Microsoft Intune / Microsoft SharePoint, On-Premise and Online / Microsoft Conditional Access and SSO / AWS Cloud / VMware vSphere / Veeam / VDI / Switching and Routing / Wireless / Backup Systems / Enterprise Archiving / Palo Alto, Sonicwall, and Fortigate Firewalls, IDS, IPS / Azure Kubernetes, Application Gateways, API Management Service, Data Factory / Azure Log Analytics, Sentinel, Monitor, Networking, Firewalls, Storage, Key Vaults, SQLmi, SQL, Virtual Machines / Azure Purview IRM, DLP, CC / Application and Execution Control / VoIP Systems / Kaseya and KACE RMM /ZScalar Airgap

Technology Expertise Timeline
            Technology Expertise Timeline (1999-2025)
            Areas of Specialization & Skill Acquisition
        
                1999
                
                2001
                
                2003
                
                2005
                
                2007
                
                2009
                
                2011
                
                2013
                
                2015
                
                2017
                
                2019
                
                2020
                
                2022
                
                2025
            
                Security
                Infrastructure
                Virtualization
                Microsoft
                Management
            
                Firewalls/IDS/IPS (2003)
                
                Vulnerability Mitigation/System Hardening (2008)
                
                Compliance (NIST/SOC/CMMC/ISO) (2009)
                
                Backup Systems (1999)
                
                Switching and Routing (2003)
                
                Wireless (2003)
                
                VoIP Systems (2004)
                
                VMware vSphere (2005)
                
                VDI (2007)
                
                Oracle Linux/Redhat/CENTOS/Ubuntu (2007)
                
                Microsoft Exchange On-Premise (2000)
                
                Microsoft Active Directory (2001)
                
                Microsoft Sharepoint On-Premise (2013)
                
                Microsoft 365 (2009)
                
                Azure Entra (2009)
                
                Microsoft Defender ATP, Intune (2017)
            
                Kaseya RMM (2006)
                
                Business Management (2006)
                
                Powershell/VB (2007)
                
                KACE RMM (2009)
                
                Azure Purview, IRM/DLP/CC (2018)
                
                Azure Sentinel SIEM & SOAR (2016)
                
                Defender for Cloud/Identity (2017)
                
                AWS Cloud (2015)
                
                Risk Management (2013)
                
                eDiscovery and Compliance (2005)
            
                Expertise Categories
                
                Security & Compliance
                
                Infrastructure
                
                Virtualization
                
                Microsoft On-Premise
                
                Microsoft Cloud
                
                Management & Tools
                
                Azure Advanced
                
                Other Cloud Platforms
                
                Areas of Deep Expertise
            
                Core Expertise Areas
                
                Security Architecture
                • Firewall/IDS/IPS (22+ years)
                • Vulnerability Management (17+ years)
                • Compliance Frameworks (16+ years)
                
                Infrastructure
                • Network Design (22+ years)
                • Virtualization (20+ years)
                
                Azure Cloud Security
                • Azure Sentinel SIEM & SOAR
                • Defender for Cloud/Identity
            
            Time

Industry Experience

Testimonials

“Ray has provided technical services for our company for several years, long before I started working here. When I became IT Director here in 2007, I was in a position to establish new relationships with vendors based on my assessment of which would best benefit our organization. In a very short time Ray proved to me through his actions that he was very dependable, knowledgeable and trustworthy. His responsiveness, technical expertise, sensitivity to our company's needs and willingness to share knowledge make Ray an extremely valuable asset in our technological bag of tricks.”
“I would recommend Ray for any IT role, where his exceptional blend of technical expertise and professional qualities would shine. While working alongside Ray for 10 years, collaborating on over 100 IT projects, I know Ray as a determined problem-solver who takes initiative, managing projects independently and delivering high-quality results with minimal direction. His reliability, adaptability, and ability to quickly master new technologies make him an invaluable asset to any IT team.
Beyond his technical prowess, Ray’s strong work ethic and collaborative nature enhance team productivity. Always willing to share knowledge, his positive attitude and subtle humor uplift morale, even in challenging situations, making him a pleasure to work with.
I strongly endorse Ray; his skills and character would significantly benefit any organization.”
“Ray is a joy to work with, he is both knowledgeable and customer service oriented. He has superior technical ability and great people skills.”
“Ray is a top-notch engineer with excellent customer skills. He was the engineer we'd call on, when there was a difficult technical problem. He was always able to find the root cause and provide customer satisfaction.”
“I am continually amazed at his breath of knowledge, his unrelenting focus on customer satisfaction, and his ability to create opportunity and synergies with his clients. From my wide view of the industry, any client would be extremely well served by engaging his services and more importantly, would be safe in the knowledge that Ray's expertise is at work for them.”
“I've had the honor of knowing Ray for 10 years. Ray is a brilliant engineer, a true visionary, and a top notch person. Ray provides an example, both professional and personal, which inspires all those around him. Frankly he does not need my recommendation, but I offer my highest.”

Book a consultation

Ray Wilkerson

Azure Cloud/Infrastructure/Cyber Security Architect

Email Ray

Skilled at planning, implementing and maintaining regulatory compliance: NIST/CMMC/ISO 27001/DFAR

Summary

As a Cloud and On-Premises Security & Infrastructure Architect with over 20 years of experience, I excel in designing and implementing secure, scalable solutions across diverse IT environments. My expertise spans traditional data centers, modern cloud platforms (Azure, M365), and hybrid infrastructures, encompassing networking, identity management, and data protection.

Since founding Secure Vizion in 2006, I've led teams through complex projects for high-profile clients, from on-premises system overhauls to large-scale government cloud migrations. My approach combines unique problem-solving abilities, unwavering reliability, and a focus on aligning IT strategies with business objectives.

A US Navy veteran who previously held a Secret NOFORN clearance, I bring a disciplined, security-focused mindset to every project. My goal is to drive innovation and organizational success in the ever-evolving IT and cybersecurity landscape, leveraging my technical acumen and leadership skills across all infrastructure types.

Competencies

US Navy veteran - Held a Secret NOFORN clearance; served honorably for 10 years

Microsoft M365 E5 - Planned, deployed, maintained, migrated, and supported communication and security platforms on-premises and in the cloud.

Microsoft Purview - Planned, deployed and supported data loss prevention, insider risk management, and information protection policies

Active Directory/EntraID – Design, implement, and manage IAM to include group policy, authentication and authorization requirements. This included ownership of the onboarding and offboarding process for user identity along with implementation of SSO, Enterprise Apps and App registrations as required.

Microsoft Azure Cloud Infrastructure - Planned, deployed and supported Role Based Access Control (RBAC), Single Sign On (SSO), Conditional Access, ARC, Log Analytics, Sentinel, Cloud App Security, Virtualization, Teams, Exchange, Active Directory, SharePoint, Defender ATP, Intune, SQL/SQLmi, Kubernetes, Application Gateway, Data Factory, Logic Apps, Virtual Networks, Virtual Network Gateways, Key Vaults, Updates, and Azure Policy.

Remote Monitoring and Management - Designed, configured, supported, and operated Kaseya, Kace, and Intune systems.

Firewalls/Intrusion Prevention - Secured networks with Palo Alto, Cisco ASA, SonicWALL, FortiGate, and ZScalar Airgap.

Linux – Installed, supported, and secured RedHat, Ubuntu, and Oracle systems.

VMware vSphere/ESXi – Designed, Installed, supported, secured, and debugged virtual machines.

Microsoft Server (2000-2019) – Installed, supported, secured, and debugged servers and enterprise applications.

Switching/Routing/Wireless – Designed, deployed, configured, and supported Cisco, Brocade, Meraki, Ruckus, and HP networks.

Firewall (Palo Alto Networks, Sonicwall, Fortinet)

Switching /Routing/Wireless (Cisco, Brocade,Ruckus, Extreme,HP)

M365/G365

Azure Networking

Azure Kubernetes Services

VMware vSphere/ESXi

SAN (Pure Storage/Tegile/Compellent/NetAPP)

Tegile

Citrix

Parallels

Azure Sentinel

Azure ARC

Azure Backups

Veeam Backup and Replication

VeeamONE

Splunk

Audiocodes

Avaya

SIEM

Governance

KQL

Powershell

Intune

Defender ATP/XDR

eDiscovery

Retention

Disaster Recovery

Incident Response

SOAR

Insider Risk Management

Data Loss Prevention

Data Lifecycle Management

Information Protection

Airgap

Application Control

Logic Apps

KnowBe4

Datacenter

Linux (RedHat/Oracle/Ubuntu)

Azure Monitor

SQL, Azure SQLmi

Security Awareness

Firewall (Palo Alto Networks, Sonicwall, Fortinet) Switching /Routing/Wireless (Cisco, Brocade,Ruckus, Extreme,HP) M365/G365 Azure Networking Azure Kubernetes Services VMware vSphere/ESXi SAN (Pure Storage/Tegile/Compellent/NetAPP) Tegile Citrix Parallels Azure Sentinel Azure ARC Azure Backups Veeam Backup and Replication VeeamONE Splunk Audiocodes Avaya SIEM Governance KQL Powershell Intune Defender ATP/XDR eDiscovery Retention Disaster Recovery Incident Response SOAR Insider Risk Management Data Loss Prevention Data Lifecycle Management Information Protection Airgap Application Control Logic Apps KnowBe4 Datacenter Linux (RedHat/Oracle/Ubuntu) Azure Monitor SQL, Azure SQLmi Security Awareness

Work Experience

Azure Cloud, Infrastructure and Security Architect, The Local Pond August 2018–Present

Project Technical Lead - Led the migration team for a large, secured US government site, successfully transitioning 15,000 users from Skype for Business to Microsoft Teams, and migrating 15,000 user mailboxes and 2,000 shared mailboxes to M365 Exchange Online on the GCC cloud. Exceeded project milestones significantly:

Completed Teams migration by 7/15, 2.5 months ahead of the 9/30 deadline.

Achieved 90% mail data migration to Exchange Online by 8/15, 1.5 months early.

Drafted migration plans and schedules, communication plans, and all scripting and support documentation.

Guided the team through complex security requirements and follow-on issues.

Infrastructure, Cloud and Security Architect Recurring service; Continued long-term partnership with a biotech chemical firm, supporting their growth from 16 to nearly 250 employees worldwide:

Designed, championed and deployed just-in-time access for privileged RBAC roles using Microsoft PIM, implementing a mature privilege use auditing mechanism and a maintenance schedule for privilege access review.
Planned and deployed the company MFA scheme, including multiple MFA for highly privileged roles, MFA for server logon, and SSO requirements to enforce this MFA across external systems.
Collaborating with departments, systematically reduced user privilege to minimum required for job function, reducing the exposure footprint from lateral movement by 98%
Designed and deployed conditional access controls with session, app and location checks which reduced our attack surface by 90%
Implemented M365 E5 Security licensing, consolidating vendors and enhancing organization-wide security visibility.
Designed and managed employee security training program, including creation and scheduling of realistic phish testing, dramatically improving company security posture.
Designed the IP and segmentation scheme, implementing layer 3 firewalls among all internal resources, and layer 7 firewalls between trusted and untrusted segments.

Designed and implemented comprehensive Azure solutions, including:

Configured VPN connectivity and custom routing for secure, on-premises-only access.

Managed approximately 6TB of data across Exchange, SharePoint, Teams, OneDrive, and Azure storage accounts.

Deployed and managed 3 AKS clusters with Application Gateways, SQL Managed Instances, and migrated 25% of Windows servers to Azure.

Implemented Log Analytics workspaces, Key Vaults, and numerous Enterprise Apps, all secured by NSGs and communicating over private networks.

Designed and implemented Conditional Access policies in Azure.

Developed, implemented and maintained advanced security solutions:

Splunk/Sentinel SIEM and SOAR solutions, including all analytics rule, logic app, and workbook creation.
The organization’s Incident Response plan and all incident response workflows. Acted as primary escalation for all security incidents, and final validation before incident closure. I was the Security Lead Engineer on the IRT.
On-premises firewalls, security segmentation, switches, and routers.

Established comprehensive IT governance:

Drafted company IT policies for acceptable use, data protection, travel with IT equipment, and work-from-home guidelines.
Created the company solicitation policy and enhanced the company contracts process to comply with regulations.
Established audit processes and schedules to ensure systems remain aligned with governance policy
Guided company and established systems, process and procedure for compliance with privacy laws such as GDPR, PIPEDA(Canada), PIPA(South Korea), APPI(Japan), POPIA (South Africa), CCPA(California), frameworks such as CMMC 2.0 (Fed), NIST 800-171, and regulations such as DFAR(Fed).
Led the organization's efforts to achieve and maintain CMMC certification, conducting comprehensive gap analyses, developing remediation plans, and ensuring compliance with CMMC L1/L2 standards.

Virtual CTO - Project; Acted as virtual CTO for a startup biotech firm preparing for UK stock exchange listing:

Drafted all IT policies, security processes, and procedures within a 3-month timeframe, focus on SOX compliance and documentation of policy and posture.

Planned their SOC 1 attestation while ensuring compliance with relevant privacy laws.

Throughout these engagements, consistently leveraged evolving technologies to meet complex client needs, demonstrating adaptability and forward-thinking leadership in cloud migration, security implementation, and regulatory compliance."

Founder/Chief Technology Officer, Secure Vizion March 2006–August 2018

Led the growth of Secure Vizion from a solo operation to a team of 9, expanding services and clientele across diverse industries including finance, biotech, manufacturing, semiconductor, medical, government, and defense contracting. At its peak, the company supported customers from Cerritos, California to Mexico City, demonstrating ability to manage and deliver services across a wide geographical area and a diverse client base.

Key Achievements:

Developed an innovative maintenance structure using Kaseya, incorporating over 3,000 custom scripts, enabling a small team to efficiently manage thousands of devices for 30+ contract customers.

Designed a unique SLA system ensuring issues were escalated based on specific business needs, providing tailored solutions rather than a one-size-fits-all approach.

Volunteered IT services for 7+ years to EvoNexus' Incubator program, supporting 40+ startups with infrastructure maintenance, system configuration, and IT guidance for post-graduation needs.

Led complex merger & acquisition IT integrations, including the absorption of two biotech firms, focusing on LIMS and lab process adaptation while preserving data accessibility.

Notable Projects:

Modernized security posture for a biotech firm: Segmented network by business functions, implemented least privilege access, developed disaster recovery policies, and created security awareness programs.

Overhauled infrastructure for a hedge fund managing $8B+ in assets: Migrated from individual servers to chassis blade servers running VMware vSphere, implemented chassis-based Cisco switches, new firewalls, and log correlation systems.

Designed custom solutions across industries: Created IVR systems for remote gate access (manufacturing) and prescription refills (healthcare), developed PowerShell tools for mailbox troubleshooting (used across multiple sectors).

For a chip manufacturer: Enhanced remote access productivity, consolidated system identities, and centralized Linux system management.

For a defense contractor: Overhauled the data protection system, enabling a lab environment for backup testing and implementing automated backup media and recoverability verification immediately following every backup.
For numerous industries, migrated communications systems such as Exchange, Telephony, VoIP and chat programs between businesses and into the Microsoft cloud.
For numerous small companies, I assisted in their regulatory journey with guidance through documentation of requirements and implementation of internal process, to implementation of controls to maintain and demonstrate compliance. These regulations included HIPPA, SOX, GLBA, PCI-DSS, NIST 800-53/171. Example ad-hoc solutions included implementation and migrations of eDiscovery and retention systems and all requisite security and process structure; planning guidance, vendor selection and testing of disaster recovery and site availability solutions; and creation of log correlation and retention systems.

Expanded service offerings to include:

Managed onsite and cloud services

Cloud migrations and ongoing support

Virtualization and security management

Comprehensive system audits

Over a 12-year tenure, drove continuous innovation in managed IT services, consistently delivering cutting-edge solutions that enhanced client operations and security postures across diverse business environments.

Additional experience information available on request

Schedule a meeting

Interactive Word Cloud