Wonhee Richard Lee Sr. Systems Administrator -- Cloud | Network | Cybersecurity | SaaS | Endpoint | AI Automation Cypress, CA | (213) 703-1366 | scale600@gmail.com linkedin.com/in/scale600 | github.com/scale600 | aws.techcloudup.com ================================================================================ PROFESSIONAL SUMMARY ================================================================================ Senior Systems Administrator with 15+ years of experience in cloud infrastructure, security compliance, and SaaS integration. At Sena Technologies, led GDPR/CCPA readiness, IT audit response, Bose vendor security assessments, and fake website takedown initiatives. Spearheaded deployment of Google Workspace, Okta SSO, Microsoft Intune, and RingCentral VoIP. Leverages AI-powered CLI tools (Claude Code, Open Code) to automate multi-cloud and SaaS administration across AWS, Azure, GCP, Google Workspace, and Intune. Built n8n on GCP for workflow automation, manages AI agents, and uses GitHub Actions for CI/CD. Personal hands-on projects include Edge AI (Transformers.js + WebGPU), IoT Kiosk (Blazor + Caddy), self-hosted n8n with Groq Llama, and full-stack apps (Streamlit, Flutter/Firebase). ================================================================================ EDUCATION ================================================================================ - University of the People, CA M.S. in Information Technology (in progress) - Stanton University, CA Master of Business Administration (MBA) - Woosong University, Daejeon, Korea B.S. in Computer Science & Architecture - KITA (Korea Intl. Trade Assoc.) Trade Master Program (IT Trade Business) - Aptech Computer Institute, India MCP, MCSD - Republic of Korea Army Mandatory service; leadership in mission-critical ops ================================================================================ CERTIFICATIONS ================================================================================ - CompTIA Network+ - ISC2 Certified in Cybersecurity (CC) - AWS Certified Solutions Architect (SAA) - AWS Certified SysOps Administrator (SOA) - Oracle Cloud Infrastructure (1Z0-1085-23) - Oracle Cloud Data Management (1Z0-1105-23) - Oracle Cloud AI (1Z0-1122-23) - SSYB (Six Sigma Yellow Belt) - FEMA IS-906, 907, 912, 453 ================================================================================ TECHNICAL SKILLS ================================================================================ Cloud & DevOps: AWS (EC2, S3, RDS, Route53, Lambda, VPC, CloudFormation, ECS) Azure AD (Entra ID) GCP (Compute Engine, Cloud Run, IAM, n8n) DevOps & Automation: Terraform, Ansible, Jenkins, Docker, GitHub Actions AI & CLI Automation: Claude Code, Open Code CLI -- automate Google Workspace Admin, AWS CLI, GCP CLI, Azure CLI, Intune CLI; n8n (self-hosted on GCP); AI Agent management SaaS & Collaboration: Google Workspace, Microsoft 365 (Intune, SharePoint, Defender), Okta, Notion, Slack, FrontApp, RingCentral Security & Compliance: IAM, MFA, DMARC/DKIM/SPF, SAML SSO, GDPR, CCPA, KnowBe4, IT Audit, Data Breach Response Networking & Systems: TCP/IP, DNS, DHCP, VPN, VoIP, VLAN, BGP RedHat, Ubuntu, Windows Server | Cisco, HP DL380 Programming & Frameworks: Python, Bash, PHP, MySQL, PostgreSQL, C# (Blazor), Flutter, Streamlit, JavaScript/TypeScript (Transformers.js) Web & Performance: WordPress (Nginx + FastCGI + LiteSpeed), Caddy, Cloudflare (SSL/HSTS/edge cache), ZRAM, memory swap optimization ================================================================================ WORK EXPERIENCE ================================================================================ Sr. Systems Administrator (Cloud & Security) Sena Technologies Inc. (Manufacturing / Bluetooth) -- Irvine, CA Mar 2019 -- Present PROJECT MANAGEMENT HIGHLIGHTS - Led migration of M365, Okta SSO, Notion, Slack, Google Workspace for 300 employees; managed timeline, budget, vendor coordination, and change management. - Launched web services on AWS, GCP, and Alibaba Cloud; oversaw infrastructure setup, compliance, and go-live. KEY RESPONSIBILITIES - Cloud Infrastructure & Operations Managed AWS core services (EC2, S3, RDS, EFS, ElastiCache, VPC, Route53, ELB) and automated deployments using CloudFormation and ECS. Reduced infrastructure costs ~20-25%. - AI-Driven CLI & Multi-Cloud Automation Used Claude Code & Open Code CLI to automate Google Workspace Admin, AWS CLI, GCP CLI, Azure CLI, Intune CLI. Built n8n on GCP for workflow automation. Managed AI agents. Created GitHub Actions CI/CD pipelines. - Security, Compliance & IT Audit Led GDPR/CCPA compliance, served on Data Breach Response Team (DBRT), managed IT audits, enforced Microsoft MFA. - Vendor Security Assessment (Bose) Responded to Bose TPRM ISRA; achieved Trusted Developer status. Defined US vs. Korea security boundary. - Brand Protection & Fake Website Takedown Blocked multiple fraudulent domains (senafr.fr, senascanada.com, etc.). Integrated brand protection workflow into admin tool. - Network & Office Infrastructure Redesigned VLAN, upgraded Cisco switches/HP servers, replaced RingCentral desk phones, built Intune auto-monitoring with Azure Functions. - SaaS Adoption & Integration Spearheaded Google Workspace (DMARC/DKIM/SPF), Okta SSO, Notion, Intune, Slack/FrontApp, RingCentral VoIP. - Web & Digital Asset Management Managed sena.com, created product categories on SITEFINITY, participated in web hosting cost transition. - IT Asset & Financial Support Collected software contracts (Google, Adobe), decommissioned aging PCs, documented IT asset processes for the Korea office. -------------------------------------------------------------------------------- Systems Manager & Web Developer Newgens, Inc. (Network Infrastructure) -- Buena Park, CA 2015 -- 2018 - Designed and maintained LAN/WAN and wireless networks; monitored with MRTG. - Enforced network security policies and access control. - Developed LAMP stack websites (PHP, jQuery, MySQL) and e-commerce platforms (OpenCart, WooCommerce, BigCommerce). - Managed cloud hosting on AWS and Azure. - Served as Project Manager and Network Engineer for onsite/offsite internet and telecom infrastructure build-outs for shopping malls: thesourceoc.com | plazamexico.com -------------------------------------------------------------------------------- System Administrator JM Dreamline, Inc. (eCommerce) -- Los Angeles, CA 2014 -- 2015 - Administered LAMP stack, e-commerce analytics, and office routers (TCP/IP, DHCP, DNS). - Executed online marketing initiatives to drive sales. -------------------------------------------------------------------------------- IT Manager Shiny Star, Inc. (eCommerce) -- Los Angeles, CA 2012 -- 2014 - Managed Amazon FBA, OpenCart/WooCommerce listings, inventory, and SEO. - Oversaw office network (router/switch, TCP/IP, DHCP, WINS, DNS) and network storage. -------------------------------------------------------------------------------- System Administrator TboPlay / &TV Communications (Streaming Media) -- Los Angeles, CA 2008 -- 2012 - Managed Linux (CentOS) systems: CDN, SDS, CMS, SMS, NMS, and network multiviewer (NMV200H). - Ensured stability of LAN/WAN and wireless networks. -------------------------------------------------------------------------------- IT Project Manager & Coordinator Gownet Co., Ltd (Systems Integration) -- Seoul, Korea 2004 -- 2008 - Directed cross-functional teams for HP, IBM, Citibank, BMW, JP Morgan, Goldman Sachs, etc. - Managed ERP administration, IT room construction, equipment relocation, and cabling projects. - Created comprehensive network diagrams and IT procedure documentation. ================================================================================ PERSONAL & HANDS-ON PROJECTS ================================================================================ All projects are live and self-managed on AWS, GCP, Netlify, and Cloudflare. Terraform (IaC) and GitHub Actions (CI/CD) applied where applicable. [ Core Cloud & Security Projects ] 1. aws.techcloudup.com AWS Cloud Admin hub: IAM least-privilege generator, EC2 start/stop, S3 security audit, CloudTrail/CloudWatch dashboard. LIVE + DEMO split. 2. gcp-gke.techcloudup.com Private GKE cluster: Terraform -> GKE + Cloud Armor -> GitHub Actions WIF -> Grafana observability + Velero DR. 3. dba-azure.techcloudup.com DBA/API/BI Lab: Azure Function App, Azure SQL Database, Custom REST API + Power BI, Azure Key Vault, Application Insights & Azure Monitor. 4. waf.techcloudup.com Real-time SQLi/XSS blocking: Cloudflare WAF (custom rule + url_decode) -> GCP VM (Nginx + Flask). 5. ids.techcloudup.com Live IDS dashboard: Suricata (eve.json) -> cron forwarder -> n8n -> Flask API -> real-time alerts + network activity. 6. takedown.techcloudup.com On-demand phishing domain investigator: browser form -> Flask SSE -> investigate.sh (DNS/WHOIS/SSL/HTTP) -> real-time terminal stream + ZIP download. 7. dashboard.iviewio.com AWS IoT Core: MQTT/mTLS, OTA, Device Shadow, Jobs, Lambda, API Gateway, DynamoDB, CloudFront, Terraform, GitHub Actions, audit logging, ISO 21434. 8. n8n.techcloudup.com Self-hosted n8n on GCP: Groq Llama + Tavily + Google Sheets -> auto-publishes to 9 WordPress sites. 9. techcloudup.com Cloud tech blog: AI-driven automated posts, Nginx, PHP-FPM, GCP, Cloudflare CDN. 10. erp.iviewio.com ERPNext on GCP: Frappe, Debian, MariaDB, Redis, Node.js, Nginx, Supervisor, Let's Encrypt SSL. 11. crm.iviewio.com EspoCRM on GCP: Ubuntu, MariaDB, PHP, Nginx, Let's Encrypt SSL. 12. emailm.iviewio.com Listmonk mailing on GCP: Docker Compose, PostgreSQL 17, 2GB swap. 13. sns.iviewio.com Mixpost Lite on GCP: Docker Compose (Traefik + MySQL + Redis), HTTPS. 14. monica.iviewio.com Monica PRM on GCP: Docker, MariaDB, Caddy, Let's Encrypt TLS. [ Web, IoT & AI Projects ] 15. kiosk1.iviewio.com/kiosk IoT Kiosk web server: GCP, Blazor Server, MudBlazor UI, Caddy TLS. 16. ai.kiosk1.iviewio.com Zero-cost Edge AI (browser object detection): Netlify, Transformers.js, DETR ONNX, WebGPU/WASM. 17. ai.kbeathub.com K-Drama AI recommendation engine: Streamlit, Groq API (Llama), GCP. 18. hanrecipe.kbeathub.com Mobile WebApp -- Recipe app with auth: Flutter, Firebase (Firestore), Riverpod, Google Auth.