Cybersecurity-focused IT professional with 9+ years of infrastructure experience, building SOC-ready skills in threat detection, log analysis, incident triage, phishing investigation, and defensive security operations.
SOC Analyst, Junior Cybersecurity Analyst, Security Analyst, and cyber defense support roles.
Infrastructure troubleshooting background applied to real alert context and defensive analysis.
Alert triage, logs, suspicious activity, network visibility, Windows controls, and documentation.
Resume, Credly, LinkedIn, GitHub, and hands-on project writeups are available from this page.
Practical security investigations demonstrating incident response, endpoint triage, phishing analysis, authentication log review, IOC analysis, DNS investigation, web attack detection, MITRE ATT&CK mapping, and remediation recommendations.
Investigated suspicious outbound communication, malicious process execution, unauthorized account creation, and potential data exfiltration using network and endpoint evidence.
Skills: Wireshark analysis, endpoint investigation, Windows Event Logs, IOC analysis, MITRE ATT&CK mapping, incident response
Reviewed Windows security logs to identify suspicious authentication activity, correlate Event IDs, and document analyst findings.
Investigated a phishing alert involving email header review, IOC analysis, threat intelligence enrichment, MITRE mapping, user risk, and containment recommendations.
Analyzed authentication-related web logs to identify repeated login attempts, suspicious credential patterns, and brute-force-style activity from a single source IP.
Reviewed Windows DNS Client Operational logs to identify suspicious domain resolution activity and document follow-up SOC recommendations.
Reviewed web server logs to detect encoded external URL injection, attacker obfuscation patterns, and open redirection probing against a web application.
These projects preserve the technical depth from the original SOC portfolio: packet analysis, encryption, Windows controls, network setup, and hands-on defensive learning.
Implemented and tested Windows security controls including file integrity corrective controls, login banner directive controls, object access auditing, and share hardening with least privilege.
Skills: Windows security controls, PowerShell, auditing, least privilege, file integrity
Captured and analyzed Telnet and SSH sessions to compare plaintext and encrypted remote administration traffic and explain the visibility difference.
Skills: Wireshark, packet analysis, Telnet, SSH, protocol comparison
Used OpenSSL to encrypt and decrypt data with AES-256-CBC, compare raw encrypted output with Base64 output, and restore plaintext.
Skills: OpenSSL, AES-256-CBC, Base64, Linux terminal, encryption workflow
Used JCrypTool to explore Caesar cipher, AES symmetric encryption, and RSA asymmetric encryption while comparing classic and modern cryptographic methods.
Skills: Caesar cipher, AES, RSA, symmetric encryption, asymmetric encryption
Configured a home wireless router and connected client devices in Packet Tracer to simulate a small network environment and test connectivity.
Skills: Wireless configuration, client connectivity, IPv4 basics, troubleshooting
Built a Packet Tracer network with multiple LAN segments and wireless connectivity, including DHCP, static IPv4, gateway, DNS, cabling, and verification.
Skills: IPv4, DHCP, static IPs, DNS, default gateway, router and switch cabling
Current learning is focused on SOC fundamentals, Splunk practice, Security+ preparation, network defense, and verified cybersecurity badges.
Cybersecurity foundations, incident response, security operations, and entry-level analyst workflows.
CyberSecurity Asset Management, scanning strategies, vulnerability management, and VMDR exposure.
Networking and network defense foundations that support practical SOC readiness.
Preparing for SY0-701 with focus on threats, architecture, implementation, operations, and security controls.
Hands-on log analysis, search practice, dashboard awareness, and security monitoring fundamentals.
Public badge profile for quick verification of completed credentials and professional training.
A focused view of the capabilities represented by the projects, labs, training, and infrastructure background.
Supported enterprise network and telecommunications environments through installation, testing, troubleshooting, and maintenance of infrastructure components and structured cabling. Provided advanced technical support in live client environments and built practical readiness for security monitoring and incident triage.
Diagnose, repair, test, and document technical issues across mobile devices using structured troubleshooting, root-cause analysis, customer communication, and service-quality discipline.
Building hands-on cybersecurity capability through Security+ preparation, Splunk learning, phishing analysis, authentication log review, web attack detection, Packet Tracer labs, Wireshark analysis, and Windows security control projects.
Hands-on SOC analyst training completed between 2024–2025, covering phishing analysis, SIEM investigation concepts, MITRE ATT&CK mapping, alert triage, and web attack analysis.
Hands-on SOC investigation platform used for phishing investigations, SIEM alert triage, MITRE ATT&CK mapping, incident response workflow exposure, and web attack analysis.
Networking and security labs involving wireless routers, LAN segmentation, DHCP configuration, static addressing, DNS, default gateways, and connectivity troubleshooting.
Practical exposure to investigation workflows including IOC review, phishing analysis, URL reputation checks, log review, analyst notes, and incident documentation.
Recruiters and hiring teams can access my resume, certifications, LinkedIn, GitHub, and cybersecurity projects.