A passionate Security Engineer and Cloud Security Architect with expertise in securing cloud environments, building secure infrastructure, and protecting sensitive data. I specialize in cloud-native security solutions, network security, and threat detection. With h 61A2 ands-on experience across AWS, Azure, and DoD environments, I'm constantly exploring new tools to bolster cybersecurity defenses.
π§ Current Projects:
- π Cloud Security Monitoring with osquery: Integrating osquery with a cloud-native SaaS backend (similar to Uptycs) for real-time event analysis and alerting. This project focuses on improving cloud security triage and incident remediation workflows.
- π‘οΈ EDR and Threat Hunting using MITRE ATT&CK: A virtual lab designed to simulate EDR environments, optimizing threat detection and response times using tools like Cybereason and MITRE ATT&CK tactics.
- π Proactive Security Assessments: Conducting vulnerability assessments and applying NIST 800-53 standards to fortify system defenses, particularly in DoD environments.
- Kali Linux & Windows Server Security Lab: Securing operating systems using NIST 800-53 and STIG guidelines for vulnerability management, patching, and network configuration hardening.
- AWS Secure Architecture: Designing a secure cloud environment using AWS Lambda, IAM roles, and GuardDuty to monitor and automate responses to security events.
- SIEM & Log Monitoring Setup: Building a SIEM in my home lab to enhance log monitoring and threat detection using open-source tools like ELK Stack.
- ACAS Scan Lab: Setting up a virtual DoD lab to perform ACAS scans and vulnerability assessments similar to those performed at Hanscom Airforce Base.
- Languages: Python, Bash, PowerShell
- Cloud Platforms: AWS, Azure
- Security Tools: Wireshark, Burp Suite, Metasploit, osquery
- Frameworks & Standards: NIST Cybersecurity Framework, NIST 800-53, MITRE ATT&CK
- Certifications: CISSP, CCSP (provisional passes), Cysa+, Cloud+, Sec+
