Defensive security focused on monitoring, hardening, application security, and practical workflows.
I'm a cybersecurity student at Collin College with a focus on defensive security operations and application security.
My work centers on understanding how systems expose attack surfaces and how to detect, document, and remediate those exposures. I care about the kind of security that matters in high-assurance environments, defense, finance, energy, and healthcare, where constraints are strict and the margin for error is small.
Day-to-day, my focus areas include penetration testing, security monitoring and log-driven investigation, application security, and the DevOps pipelines that connect them. I care about repeatable processes, measurable risk reduction, and practical tooling.
This portfolio is a living record of projects, labs, and case studies as they are validated and published.
A practical monitoring workflow using SIEM tools, log ingestion pipelines, basic triage procedures, and documentation templates. Covers alert correlation, baseline establishment, and escalation decision-making.
Wireshark-focused analysis of DNS, HTTP, and TCP patterns. Covers traffic baselining, anomaly identification, and structured documentation of suspicious indicators for incident response handoff.
Practical notes on Windows Event Log architecture, authentication events (4624/4625/4648), audit policy configuration, and structured investigation workflows for lateral movement detection.
Cisco