Michael McMurray

Hello world! I’m Michael McMurray, a Senior Security Engineer and CISSP (exam passed; certification pending) with over a decade of experience in IT and cybersecurity, spanning all eight security domains and a wide range of industries.

My background includes leading security efforts in identity and access management (IAM), cloud security architecture, and enterprise risk management. I help organizations design and operate secure systems at scale.

Beyond engineering solutions, I’m known for my ability to lead through influence. I’m frequently trusted to drive cross-functional security and IT initiatives and to translate complex security challenges into practical guidance for both technical and non-technical stakeholders. I take pride in building collaborative relationships and helping organizations balance security, usability, and business objectives in complex environments.

Highlight Experience & Education

Industry: All Healthcare Media & Entertainment Manufacturing Legal Services Real Estate & Rentals Optics & Photonics Higher Education Hospitality
Focus: All IAM & Identity Cloud Application Security Infrastructure SecOps & IR Data Security GRC Architecture AI & ML Leadership Education
Technology: All All Cloud Software & Services All On-prem Software & Services Identity Platforms DevOps & Automation Devices & Management Networking Hardware Security Tools Virtualization

Professional Experience

Media & Entertainment Incident Response Password Management ISO 27001 SOC 2 SOC 3 CSAP MPA Best Practices Hybrid Identity Training Drive Initiatives CISSP AWS Azure GCP Networking Entra ID Active Directory SharePoint Slack Zoom Atlassian Shotgrid SAST DAST GitHub Palo Alto Arista Jamf Intune PDQ Deploy Windows macOS Rocky Ubuntu RHEL FreeBSD Endpoint Protection Splunk Vulnerability Management Microsoft Purview PowerShell Python Warp AI Azure AI AWS Bedrock Abnormal AI Containerization CI/CD SIEM

Senior Security Engineer

LAIKA Studios (2025 - Present)

As a Senior Security Engineer, I lead security architecture and automation initiatives driving large-scale improvements in identity, detection, cloud security, and AI risk management across the studio.

  • Designed and deployed a PKI using SecureW2 and SCEP to enable passwordless authentication on managed devices, saving the studio an estimated $400K annually through reduced login friction and password resets
  • Introduced AI-powered phishing and spam mitigation capabilities, significantly improving email threat detection and user safety
  • Re-architected the organization's SIEM strategy, leading the migration to Splunk
  • Negotiated a vendor partnership worth over $1M to approximately $250K
  • Architected and rolled out AWS Secrets Manager integrations for development pipelines, improving secret handling and reducing credential exposure
  • Supported secure large-scale data transfers involving multiple petabytes of VFX data using AWS and Signiant for new studio partnerships
  • Authored and maintained a broad set of security and IT policies reviewed and approved by the C-suite, including IAM, vendor remote access, change management, incident response, email security, MFA, and studio AI usage policies
  • Created a data sensitivity classification matrix and authored multiple data handling and governance policies to support risk-based decision making
  • Architected a cross-platform solution to block the use of unapproved web-based AI tools
Media & Entertainment Incident Response Password Management ISO 27001 SOC 2 SOC 3 CSAP MPA Best Practices Hybrid Identity Training Drive Initiatives AWS Azure GCP Networking Entra ID Active Directory SharePoint Slack Zoom Atlassian Shotgrid SAST DAST GitHub GitLab Palo Alto pf Arista Jamf Intune PDQ Deploy Windows macOS iOS Rocky Ubuntu RHEL FreeBSD Endpoint Protection Rapid7 Vulnerability Management Microsoft Purview PowerShell Python Warp AI Azure AI AWS Bedrock Containerization CI/CD SIEM

Security Engineer

LAIKA Studios (2023 - 2025)

As a Security Engineer at LAIKA, I designed and operated security capabilities across identity, cloud, endpoint, and data platforms while partnering closely with engineering, IT, and creative teams to reduce risk without slowing production.

  • Engineered and operated the studio's security detection and response capabilities, including MDR, SIEM, vulnerability management, attack surface management, and threat intelligence platforms
  • Led the migration of over 100 applications from ADFS to Entra ID, modernizing authentication
  • Developed and rolled out story-driven cybersecurity awareness training tailored to real-world studio threats and workflows
  • Developed AI-powered automation for new software and vendor security evaluations, significantly reducing manual review effort
  • Worked closely with cloud engineering teams to enable secure, large-scale VFX rendering across AWS, GCP, and Azure
  • Utilized Admin By Request to implemented privileged access management (PAM) across the studio
  • Led endpoint security modernization efforts, including migrations to Microsoft Defender for Endpoint, rollout of Jamf Protect, and implementation of CIS hardening benchmarks across Windows, macOS, and Rocky Linux
  • Re-architected Entra conditional access policies and migrated MFA from Duo to Microsoft Authenticator with automated user risk remediation
  • Performed internal security audits across cloud and identity platforms, including AWS, GCP, Azure, Entra ID, and Active Directory permission and role reviews
  • Responded to and mitigated multiple security incidents, including a subdomain takeover attempt and several SSO token hijacking attempts
  • Led the secure migration of the organization's cloud storage strategy to SharePoint; including designing and implementing DLP policies and controls
  • Assisted with the implementation of the studio's new public website and online shop, ensuring secure integrations and data handling
Manufacturing Optics & Photonics Data Security ACID ISO 9001 ISO 20000-1 Hybrid Identity Training Drive Initiatives Azure AWS Entra ID Active Directory SharePoint FileMaker Bash Python Power Automate CI/CD Containerization

Application Developer

Lumencor, Inc. (2022 - 2023)

Now a Application Developer, I focused on building secure, identity-integrated and automated application workflows while working closely with stakeholders to streamline manufacturing.

  • Led projects expanding the capabilities of our in-house FileMaker app to support manufacturing and business objectives
  • Integrated FileMaker with Entra and Exchange via APIs to enable identity-aware automation and secure system-to-system communication
  • Built and maintained automation responsible for sending thousands of transactional emails daily, improving reliability and reducing manual effort
  • Partnered with stakeholders across manufacturing and operations to automate time-intensive processes, including purchase requests and assembly instruction revisioning
  • Containerized and migrated our microservices to AWS to improve performance, consistency, and operational efficiency
  • Authored security, risk mitigation, and hardware lifecycle policies to strengthen governance and ensure scalable, secure system growth
  • Applied secure design principles and risk-based decision making across application and infrastructure changes
Manufacturing Optics & Photonics Password Management M365 Data Controls ISO 9001 ISO 20000-1 Hybrid Identity Training Drive Initiatives Azure Networking Entra ID Active Directory SharePoint FileMaker Cisco Meraki Jamf Intune Windows macOS iOS Endpoint Protection PowerShell Bash Zero Touch Provisioning Power Automate CI/CD

IT Engineer

Lumencor, Inc. (2021 - 2022)

During my first year at Lumencor I hit the ground running, spearheading several major initiatives.

  • Streamlined onboarding with zero-touch endpoint provisioning, saving valuable time for HR, managers, and IT
  • Configured and deployed Jamf Pro, Connect and Protect, and Bitwarden, a password management solution
  • Collaborated with manufacturing teams to develop effective technical training for ESL employees
  • Migrated all 108 employees to SharePoint, rapidly providing secure hybrid collaboration during the pandemic
  • Redesigned the Cisco Meraki network to fix multiple issues including device handoff
  • Configured Entra SSO for in-house and SaaS apps
  • Migrated to Hybrid AD solution ensuring scalability and resilience
Healthcare Manufacturing Legal Services Real Estate & Rentals Hospitality Incident Response Security Audits HIPAA Network Design Hybrid Identity Training Azure GCP Networking Entra ID Google Cloud Identity Microsoft 365 SharePoint Google Workspace Custom LoB App ServiceNow IT Glue Ubiquiti Cisco WatchGuard Windows macOS iOS Ubuntu Jamf Intune SentinelOne PowerShell Python

Junior System Administrator

Bellingham IT (2020 - 2021)

I outgrew the technician role and began work on complex client projects and onboarding.

  • Developed advanced understanding of Microsoft cloud services and Google Workspace
  • Designed complex networks tailored to client requirements
  • Successfully managed security audits, network build-outs, and client on-boarding
  • Provided comprehensive solutions that exceeded client expectations
Healthcare Manufacturing Legal Services Real Estate & Rentals Hospitality Incident Response Security Audits HIPAA Network Design Hybrid Identity Training Azure GCP Networking Entra ID Google Cloud Identity Microsoft 365 SharePoint Google Workspace Custom LoB App ServiceNow IT Glue Ubiquiti Cisco WatchGuard Windows macOS iOS Ubuntu Jamf Intune SentinelOne PowerShell Python

IT Technician

Bellingham IT (2019 - 2020)

At Bellingham IT, an IT Managed Service Provider (MSP), I learned how to managed client expectations while delivering excellent customer service.

  • Gained comprehensive understanding of all operating systems
  • Responded efficiently to incidents, service requests, and data breaches
  • Provided exceptional service across a multitude of industries
  • Conducted HIPAA compliance audits with strong commitment to privacy and security
Optics & Photonics Networking Microsoft 365 SharePoint FileMaker Windows Cisco SQL PowerShell

IT Intern

SPIE (2018)

While attending WWU I interned at SPIE, the international society for optics and photonics.

  • Developed PowerShell scripts automating IT tasks
  • Wrote multilingual KB articles and SOPs
  • Worked with network and database administrators on security hardening
  • Implemented security measures protecting data systems from unauthorized access
Higher Education Training Microsoft 365 SharePoint Jamf macOS & iOS

Technology Consultant

Western Washington University (2016 - 2019)

While attending WWU, I assisted the school of early childhood education with IT tasks.

  • Provided technical support for educational technology in elementary and early childhood classrooms
  • Helped students and professors effectively use technology in classroom settings
  • Troubleshooted technical issues and provided training on educational tools
Healthcare Real Estate & Rentals Hospitality Project Management Networking Hardware Repair macOS iOS Windows Ubiquiti

IT Contractor

Self Employed (2013 - 2016)

During high school, I worked as a self-employed IT contractor.

  • Provided IT services to local community clients
  • Gained experience in troubleshooting, building/repairing computers, and configuring small business networks
  • Developed skills in project management, customer service, and technical expertise
  • Built foundation for pursuing further education and professional development

Education

Higher Education Cybersecurity Education Penetration Testing Vulnerability Exploitation Cyber Range Network Monitoring Wireshark ELK Stack

B.S. in Computer and Information Systems Security

Western Washington University (2016 - 2020)

  • Participated in the Washington state Public Infrastructure Security Cyber Education System (PISCES) project; providing SIEM monitoring for government networks
  • Facilitated campus-wide cybersecurity talks to raise awareness and promote safe digital practices
  • Designed and created vulnerability exploitation exercises that serve future students
  • Honed penetration testing skills in WWU’s cyber range
  • Gained hands-on experience with Wireshark and the ELK stack
  • Studied abroad in Thailand as an exchange student, developing my own ethics, cultural awareness, and adaptability
Higher Education Cybersecurity Education Digital Forensics Cyber Defense Leadership Robotics

AAS-T in Cybersecurity and Computer Forensics

Peninsula College (2014 - 2016)

  • Achieved honor roll status throughout both years of study
  • Served as President of the Cyber Security Club, organizing events focused on privacy, safety, and security awareness
  • Participated in the FIRST Robotics program as Lead Designer, contributing to collaborative engineering and design efforts
  • Studied abroad in Japan as an exchange student, developing a global perspective and cross-cultural communication skills

Notable Achievements

Eagle Scout

Eagle Scout

Demonstrated exceptional leadership by planning and executing over 200 hours of community service projects. This experience taught me organization, communication, and problem-solving skills that I apply to IT projects throughout my career.

PRCCDC

Pacific Rim Collegiate Cyber Defense Competition (PRCCDC)

  • Second Place - Western Washington University
  • Fourth Place - Peninsula College
FIRST Robotics

Industrial Design Award

As the lead designer on my high school's FIRST Robotics team, I contributed to award-winning mechanical designs that balanced form, function, and aesthetics, earning the FIRST Robotics Industrial Design Award.