headshot_roundsquare

Information Security Portfolio

Technical Skills and Management

Python, Bash, YAML, SQL, Routing, Switching, Cisco IOS, Cisco ISE, 802.1X, Docker & Docker Compose, Snort & Suricata IDS/IPS, Wazuh SIEM/XDR, Wireshark, Firewalls, VLANs, VPNs, DNS, Virtualization, Logging and Monitoring, Threat Hunting

Security Consulting Engineer Intern @ Cisco (May 2023-August 2023)

Engineered cyber defense with Cisco Identity Service Engine (ISE) & Active Directory for 802.1X (PEAP, EAP-TLS) with MAC Authentication Bypass (MAB) while implementing Guest Portal, Profiling, Posturing, Logging for enhanced security
Shadowed mentor during customer calls to gain insights into Cisco ISE and refined consulting skills
Created a Master Cisco ISE 3.1 Upgrade Method of Procedure (MoP) template for internal use within 3 weeks
Collaborated with Information Security Engineers on FedRAMP compliance in 4 meetings, gaining insights into Continuous Monitoring, Change Management, and securing market access for Cisco’s SaaS offerings within the Global Cloud Compliance business unit

Cybersecurity Analyst @ XG Consultants Group (July 2022-November 2022)

Provided essential Cybersecurity advisory, crisis management, risk assessment, and resolution support to 6 Chubb’s clients facing potential threats and suspicious activities, ensuring effective threat response and risk analysis
Formulated robust security policies and controls to boost organizational security posture, facilitate risk management, and safeguard IT system against malicious activities
Implemented the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) for compliance and matched Center for Internet Security (CIS) Critical Security Controls to baseline Identifying, Protecting, Detecting, Responding, and Recovering guidelines
Trained employees about Cybersecurity best practices, business continuity plan, and incident response for Public Background Screening Accreditation (PBSA) audit within 5 months

Cybersecurity Specialist Intern @ N Brereton Medical Technologies (December 2021-May 2022)

Conducted thorough threat and risk analysis, delivering actionable recommendations to improve business security
Designed security protocols with Security lead and team members to mitigate threats such as phishing, ransomware, and data loss, thereby safeguarding critical assets and sensitive information
Initiated and integrated the NIST Cybersecurity Framework (NIST CSF) publication to baseline security posture
Coordinated meetings with 5 fellow interns to support security lead with assigned tasks and contributing to a collaborative and efficient work environment

Established a networking rack featuring OPNsense firewall, 3 unique VLANs, and 3 distinct subnets for effective network segmentation of 6 directly attached devices, 12+ wireless clients, and 2 IoT devices
Integrated Suricata for network intrusion detection and prevention, Zenarmor NGFW with custom network security policies, Crowdsec Security Engine for crowdsourced threat intelligence, and recursive Unbound Domain Name System (DNS) along with 7 blocklists as a network wide DNS sinkhole for over 15 devices
Deployed and clustered 2 Proxmox nodes for virtualization, enhancing network security by using Wazuh SIEM/XDR to monitor 4 agents, Tailscale VPN & Cloudflare tunnels for secure access, and Nginx Reverse Proxy Manager within virtual machines, Docker, and LXC containers
Developed logging and monitoring solution for 5 VMs and 7 containers, leveraging industry-leading tools including Prometheus, InfluxDB, Uptime Kuma, Glances, and Grafana