Summary
Security+ certified cybersecurity professional with hands-on experience in SOC operations, including SIEM monitoring, alert triage, and incident investigation. Experienced in analyzing network and endpoint activity, correlating security events, and identifying threats through lab environments, CTF competitions, and real-world vulnerability disclosure coordinated with CISA.
Technical Skills
- Security Monitoring: Log analysis, triage, and escalation
- Networking: Routers, switches, VPNs, firewalls, wireless infrastructure
- Security Operations: SIEM monitoring, alert triage, incident response, log analysis.
- Operating Systems: Windows, Linux (Ubuntu, Kali)
- Security Tools: Wireshark, Nmap, Metasploit, Nessus, Burp Suite, Splunk, Elastic Stack, Suricata, Snort, Autopsy, FTK Imager
- Programming/Scripting: Python, Bash, PowerShell
Certifications
- CompTIA Security+ (SY0-701) - Issued July 2024
Security Case Study
While conducting independent, passive OSINT research using publicly available tools, I identified multiple internet-exposed Automated Tank Gauge (ATG) systems associated with fuel infrastructure.
To remain within ethical and legal boundaries, all activity was limited to non-intrusive observation. No authentication attempts, exploitation, or interaction with live systems was performed. Exposure was validated through publicly observable indicators only, with care taken to avoid any action that could impact system availability or behavior.
After documenting more than ten exposed systems, I analyzed common misconfigurations and assessed potential operational and safety risks associated with publicly accessible ICS/OT components. Findings were compiled into a structured report designed to clearly communicate risk to non-technical stakeholders.
Following responsible disclosure practices, the findings were submitted to CISA through a coordinated disclosure process. The focus was on highlighting broader infrastructure risk trends rather than identifying individual organizations.
This case study reflects my approach to security work: careful scoping, ethical restraint, clear documentation, and effective communication of real-world risk.
Capture The Flag (CTF) Competitions
- Achieved 3rd place in a National Guard–hosted cybersecurity CTF at Fayetteville Technical Community College while competing solo against full teams; solved challenges in PCAP analysis, digital forensics, enumeration, AI prompt injection and web exploitation.
- Competed in the North Carolina National Guard statewide Minuteman Cyber Cup, placing 12th out of 32 teams; led my team in points by solving challenges in OSINT, network analysis, and web exploitation.
Experience
- Gained hands-on experience in Security Operations Center (SOC) workflows, including alert monitoring, triage, and incident investigation.
- Identified and analyzed simulated threats, reinforcing understanding of SOC workflows and incident response processes.
- Analyzed security events and logs using SIEM tools to identify suspicious activity and potential threats.
- Applied blue team methodologies to detect, investigate, and respond to simulated attack scenarios.
- Utilized tools such as Wireshark and vulnerability scanning platforms to support threat analysis and network monitoring.
- Documented findings and contributed to incident reports, improving understanding of response procedures and escalation processes.
- Developed foundational knowledge of attacker techniques and defensive strategies through practical lab exercises and guided training.
- Identified and documented 10+ exposed ICS/OT Automated Tank Gauge (ATG) systems through OSINT tools such as Shodan, demonstrating passive reconnaissance and critical infrastructure risk assessment.
- Submitted a coordinated vulnerability disclosure to CISA, following industry-standard responsible disclosure practices and highlighting systemic misconfigurations affecting multiple critical infrastructure sites.
- Investigated Windows-based endpoint and network threats by analyzing logs in Splunk and Elastic Stack.
- Built and managed a virtual home lab environment simulating enterprise networks to practice incident response and detection workflows.
- Configured and fine-tuned Suricata and Snort for IDS/IPS use cases; analyzed alerts and improved rule sets based on threat behavior.
- Developed and tested YARA rules for identifying malicious files and anomalous patterns during malware analysis exercises.
- Conducted hands-on adversary emulation to better understand lateral movement and credential attacks.
- Provides excellent customer service in a fast-paced environment, demonstrating strong communication and interpersonal skills.
- Manages cash and credit transactions accurately, ensuring accountability and attention to detail.
- Trains new staff on company policies and procedures, showcasing leadership and teamwork abilities.
- Troubleshot computers and computer peripherals for store operations.
- Provided guidance to customers on printing, graphic design, and shipping services.
- Used Adobe Creative Cloud (Photoshop) and Microsoft 365 programs daily.