Mark Lencioni

Sr Technologist looking to help companies with Cybersecurity and Digital Transformation. Focusing on IAM, Hybrid Cloud, and AI.

Kuna, Idaho, United States

About

20+ years building, breaking, fixing, and leading enterprise technology across six Fortune 500s and multiple regulated verticals — banking, global retail, SaaS, federal, big tech, shipping and logistics. What I do: design and operate platforms that have to be there at 3 AM. Recent work — 24-engineer org leadership at Meta through the COVID remote-work scaling event, FedRAMP High VDI on AWS GovCloud at Okta, GCC High federal cloud engineering at Cisco, and end-to-end CMMC Level 2 program leadership at Matson Navigation (control-by-control NIST 800-171 mapping, SSP authoring, tabletop exercises, the works). On the side, I'm building a PowerShell-based security posture assessment tool that maps to NIST 800-53, CMMC 2.0, ISO 27001:2022, and 33 CFR Part 101. Frameworks I work in daily: NIST 800-53/171, CMMC 2.0, FedRAMP High, PCI DSS, SOC 2 Type 2, SOX, ISO 27001, HIPAA. Stack: Microsoft Azure (commercial + GCC High), AWS (commercial + GovCloud), M365, the full IAM/PAM/PKI fabric (Okta, Ping, Entra ID, Active Directory, CyberArk, DigiCert, Semperis), Terraform, PowerShell. Microsoft-heritage but fluent on Linux and Unix from the data center days. ITIL v3 certified (refreshing to v4), Lean Six Sigma Green Belt, MCSE. CCP/CCA and CISSP in progress for 2026. I lead with process discipline (ITIL, Agile/Kanban, Lean) and people-first management (Lencioni, Maxwell, Carnegie). I've had great mentors and I try to be one. I'm at my best when the problem is hard, the operating model is broken, and someone needs to close the ownership gaps.

Experience

  • Sr IAM Architect at Matson, Inc.
    Apr 2024 - Apr 2026 · 2 yrs 1 mo

    •     Established delivery standard for security engineering •     Saved over 100 hours per month by implementing automated firewall allow and blocklist solutions •     Wrote playbooks for SecOps on Key IAM incidents •     Ran tabletop exercises of potential security incidents and measured the results •     Established an Agile cadence in the team with Kanban-style task management •     Spearheaded modern PKI and Zero Trust initiatives •     Consulted on Endpoint Engineering strategies related to MDM and SCCM to Intune Migration •     Liaised with the business to understand future needs and pilot new technologies for the workforce •     Led the InfoSec team in all aspects of the craft unofficially through influence and mutual alignment •     Worked with the CSO to reorganize the team to be more efficient in delivery and support •     Led CMMC Level 2 initiative. Remediate missing documentation and adjust core processes to align with the required controls. •     Assessed systems according to NIST 800-171 Standards •     Performed security awareness training and enhanced user cybersecurity awareness through information campaigns

  • Sr. Systems Engineer at WaFd Bank
    Sep 2023 - Apr 2024 · 8 mos

    Worked as a Sr Systems Engineer supporting all aspects of the Windows Network.

  • Sr. DevOps Engineer at Cisco
    Mar 2023 - Sep 2023 · 7 mos

    I was working with the Cisco Government Trust & Technology Services Team, paving the way for the most secure and cutting-edge technology providing services to Uncle Sam.

  • Principal System Engineer at Okta
    Feb 2022 - Jan 2023 · 1 yr

    Participated in Agile Project Delivery using Atlassian Jira. Successfully delivered highly secure Virtual Desktop Infrastructure using AWS Gov Cloud attaining Fed Ramp High Authorization to Operate (ATO) certification. Worked with Microsoft 365 GCC High Productivity Solution for Fed Ramp Automated Windows systems hardening to CIS and STIG Standards using Group Policy. Integrated with existing CI/CD Processes using AWS Code Commit, S3, AWS SSM, Chocolatey for Business, and other DevOps tools (Git, Lambda, Terraform, Packer). Worked cross-functionally to identify several automation opportunities within the IT support organization. Engineered solutions in the following Platforms, Okta Workforce Identity, Microsoft M365, Google Workspace, Box, Asana, Smartsheet, Atlassian Jira, Atlassian Confluence, Slack, AWS Managed Active Directory, VMWare Workspace One, and Proofpoint. Supported Productiv application to help identify cost savings opportunities in SaaS spending. Administered VMWare Workspace One for Windows Endpoint Management. Provided documentation for solutions using Atlassian Confluence

  • Principal Systems Engineer - Head of Productivity Engineering at Meta
    Jun 2019 - Feb 2022 · 2 yrs 9 mos

    Grew the team from 5 engineers to 25 engineers over two years. Managed service revenue went from $2.9 million to $8 million Worked with Full Time Employee Leadership to understand the technology needs Worked with FTE PMO to plan and execute projects aligned with technology needs Standardized operational metrics. Trained, Measured, and Improved the team performance using these metrics Wrote Business Requirements Documents and worked with Software Engineers to build solutions aligned with the business needs Wrote automation scripts for SaaS license and security management in the following platforms: Microsoft 365, Google Workspace, Asana, Workplace Chat, Tableau, and internal systems using GAM, PowerShell, and Python. Developed the Migration Center of Excellence to facilitate content migrations for Acquisitions and large data management efforts using DryvIQ (formerly SkySync) software. Added additional scope to the team by adding tableau help and support organization Established learning and development practices by hiring and leading a team of trainers dedicated to increasing organizational productivity. Facilitated transition to a fully remote workforce during Covid Pandemic.