Skip to main content

I'm always excited to take on new projects and collaborate with innovative minds.

Location

Cincinnati, Ohio, United States

Social

Ilya Sulakov

Hey, I'm Ilya

Secure AI & Access Systems | Designed, Built & Deployed for Production_

I help enterprise security teams and founder-led operators put secure AI and identity systems into production—internal gateways, privileged access, and automation that holds up under real operational and audit scrutiny.

Secure AI & GovernanceIAM, PAM & Cloud SecurityResilient Platforms & Automation
Book a free consultationMulti-step form · tailored follow-up within 24h
...and more
Connect on LinkedIn

+

Years Experience

+

Projects Completed

+

Satisfied Clients

+

Certifications

Accomplishments

Key Achievements and
Recognition_

Youth Villages Lived Experience Impact Grant

Secured grant funding for the SUN Pathways AI platform development

CyberCincy Conference Speaker

Featured speaker at Cincinnati's largest AI community conference

Congressional Panelist

Testimony before a special congressional committee that drove bipartisan legislation to address inequities in foster youth communities

Guest Lecturer at Harvard University

Delivered a lecture at the Harvard Kennedy School on the relationship between at-risk communities and access to technology

Recent Projects
  • Ongoing:

    KC Enterprise AI & Operations Platform
  • 3 months:

    Optifacts Legacy System Modernization
  • 2 months:

    Privileged Access Management (PAM) Jump Server
  • 4 months:

    KC Fireflies Secure Meeting Bot
  • 3 months:

    AI Gateway (Light LLM Proxy)
Services

Security solutions customized to meet your requirements

Cloud Security & Infrastructure

Securing hybrid and cloud-native environments on Microsoft Azure with containerization, network segmentation, and robust security architectures.

Vulnerability Management & Compliance

Proactive vulnerability scanning, audit remediation, and compliance automation using tools like OpenVAS, NESSUS, and custom automation solutions.

Privileged Access Management

Designing and implementing secure jump servers and PAM solutions with session recording, LDAP integration, and multi-protocol support (SSH, RDP, VNC).

Legacy System Modernization

Modernizing legacy applications with containerization (Docker), API development (FastAPI), and load balancing to enhance reliability without full rewrites.

Security Automation

Automating security processes with Python, Power Automate, SharePoint, and Azure APIs to create centralized asset inventories and compliance dashboards.

AI Security & Ethics

Securing AI applications, implementing ethical AI practices, and providing thought leadership on LLM value systems and utility convergence for secure business solutions.

Excited to take on new projects and collaborate.
Let's chat about your ideas. Reach out!

Experience

+14 years of passion for cybersecurity & innovation

Luxottica
Luxottica
Mar 2024 - Present
The Conrad Group
The Conrad Group
Sep 2023 - Present
CJR
CJR
Jul 2023 - Mar 2024
Connecticut Children's
Connecticut Children's
Dec 2021 - Oct 2022
System Administrator

North American retail IT: partner with store operations, corporate IT, audit, and security stakeholders to ship integrated software platforms—generative AI, Azure automation, and audit-friendly operations for POS-adjacent systems.

  • Built an internal agentic platform where AI chat connects to live tools, executes safely in Open Terminal, and publishes governed knowledge to KC-Wiki via MCP—LiteLLM gateway, Traefik/Podman stack, Azure inventory MCP, Guacamole, and Prometheus/Grafana for retail IT stakeholders
  • Architected KC Fireflies, a TypeScript, Node.js, and Playwright automation on Azure Container Instances (about $0.30 per 90-minute meeting) with OpenAPI-backed transcript retrieval, routing to enterprise knowledge and planning systems, and traceable action items across Teams, Google Meet, and Zoom
  • Delivered containerized Optifacts failover (Docker, Python/FastAPI), OpenVAS REST API integration (Java Spring Boot), and Apache Guacamole privileged-access POC meeting critical audit requirements
  • Initiated on-demand vulnerability scanning with OpenVAS/Greenbone and automated Azure asset inventory (SharePoint, Power Automate, Azure Management API) for recurring multi-subscription visibility
  • Delivered internal generative AI with a vendor-agnostic gateway and LDAP-backed Lux GPT, adding guardrails, cost controls, and Model Context Protocol tooling for live Azure discovery with ephemeral token handling and audit-ready reporting
Creative Problem SolvingCybersecurityLeadershipProject ManagementMicrosoft AzureSharePointCortexTechnical Project LeadershipArtificial Intelligence (AI)Prompt EngineeringDevOpsStreamlitDevice Login Authentication2FA WorkflowsExecutive ReportingEphemeral Data Handling

Education

  • 2021:

    Central Connecticut State University

    Bachelor of Science - BS in Cyber/Electronic Operations and Warfare(Attended)

  • 2019:

    University of New Haven

    Cyber Security & Networks in Cyber Security(Attended)

  • Graduated:

    Farmington High School

    High School Diploma in Business, Management, Marketing, and Related Support Services

Certifications

  • Certified:

    Prompt Engineering for ChatGPT

    Vanderbilt University

  • Certified:

    Cybersecurity Tools & Cyber Attacks

    IBM

  • Certified:

    Advanced Concepts in Cloud Architecture

    LinkedIn

  • Certified:

    Building and Auditing a Cyber Security Program

    National Association of State Boards of Accountancy (NASBA)

Projects
See All Work

Featured Security & AI Work

KC Enterprise AI & Operations Platform

Architected Luxottica NA's internal agentic work platform: Lux GPT for governed chat and RAG, Open Terminal (sandboxed engineering terminal in Lux GPT) for safe execution, and KC-Wiki for agent-accessible knowledge with LDAP-backed publishing workflows—all routed through LiteLLM, Traefik, and enterprise observability on a GitLab-managed Podman stack.

Skills

My Skills

Cloud & Infrastructure

Microsoft AzureAzure Computer Vision APIAzure Image RecognitionAzure Container Instances (ACI)Azure Blob StorageAzure AIAzure Kubernetes Service (AKS)DockerContainerizationVirtual Machines (VMs)Network SegmentationLoad BalancingFailover ArchitectureGoogle Workspace APIGoogle Drive APIKasm WorkplacesReverse ProxyNvidia GPU Management

Security

Cloud SecurityPrivileged Access Management (PAM)Vulnerability Management (OpenVAS, NESSUS)Audit RemediationPCI DSSNetwork SecurityLDAPKerberosAI SecurityAI Security & AlignmentCompliance Management (HIPAA)Secure File ManagementAccess Control & RBACData Security & PrivacyWebhook SecurityContainer SecurityCustom GuardrailsSecure API DesignBearer Token AuthenticationAudit LoggingSession ManagementCredential EncryptionAuthentication & AuthorizationDevice Login Authentication2FA WorkflowsEphemeral Data HandlingIAM Integration

Development

Python (FastAPI)Python (Flask)TypeScriptNode.jsPlaywrightPower AutomateSharePointAPI IntegrationRESTful API IntegrationAzure DevOpsN8NShell ScriptingWeb Application DevelopmentGoogle SitesOpen Web UILight LLMModel Context Protocol (MCP)WebhooksFirefly AIAPI GatewayAzure CLIAzure Management APIApache GuacamoleSQLitePostgreSQLHealth ChecksAPI DocumentationStreamlit

AI & Automation

Generative AILarge Language Models (LLMs)AI Security & EthicsAI for Social ImpactAI-Powered Platform DevelopmentImage ProcessingFacial RecognitionVector StoresCost OptimizationRate LimitingCustom GuardrailsAI Gateway ArchitectureOpenAI APIAnthropic ClaudePerplexityGoogle RAGOllamaCost TrackingReal-time Infrastructure QueryingExecutive Reporting

Integration

Microsoft TeamsGoogle MeetZoomEnterprise knowledge workflowsTask planning integration

Other

Project ManagementTechnical LeadershipDevOpsPrompt EngineeringCreative Problem Solving
Latest Posts

From Blog

2025-128 min read
Grant-Funded Impact: Building Under Real Constraints

When funding is grant-based, scope and reporting matter as much as code. I discuss how to architect for outcomes, measurable impact, and sustainable operations after the grant.

2025-117 min read
From Conference Talk to Career Signal: Speaking with Intention

A strong talk is a compressed case study: problem, insight, proof, and a clear next step. I share how I prepare narratives that align with the work I want more of.

2025-108 min read
Compliance That Ships: HIPAA-Aligned Design for Builders

Healthcare-adjacent teams need HIPAA-aware patterns: least privilege, audit trails, and data minimization. I outline how to design features that auditors can trace without slowing delivery.

Let's connect

LinkedIn
Ilya Sulakov
Location
Cincinnati, Ohio, United States