I help companies detect threats faster and reduce false positives by building custom SIEM detection rules and automating incident response playbooks.
"I don't just monitor logs β I transform raw telemetry into actionable intelligence."
| Category | Tools & Technologies |
|---|---|
| SIEM & Detection | Wazuh, Elastic Stack (ELK), Splunk Fundamentals |
| Cloud Security | AWS (IAM, CloudTrail, GuardDuty, Security Hub) |
| DevSecOps | Docker, Kubernetes, Trivy, GitHub Actions, Terraform |
| Scripting & Automation | Python, Bash, PowerShell |
| Compliance & Frameworks | MITRE ATT&CK, NIST CSF, ISO 27001 |
| OS & Networking | Linux (Ubuntu/Debian), TCP/IP, Wireshark, Nmap |
| Project | Description | Key Skill Demonstrated |
|---|---|---|
| SIEM Wazuh Lab | Full SOC environment with custom decoders, active response, and threat intelligence integration. | Detection Engineering, Log Analysis |
| Adoum Portfolio | Modern cybersecurity portfolio with real-time threat dashboard integration. | Frontend, API Integration |
| Trading Bot Pro | Automated trading system with risk management and backtesting engine. | Python, Algorithmic Logic |
- π Active Project: Enhancing the Wazuh SIEM lab with Suricata IDS integration
- π± Learning: eJPT Certification path (INE)
- π― Open to Collaborate on: Open-source security tools, Detection-as-Code projects
- π¬ Ask me about: Wazuh deployment, AWS Security Best Practices, Career transition into Cyber
"The quieter you become, the more you are able to hear."
β Ram Dass