Skills, Accomplishments & Technical Interests

Professional Skills

  • SIEM Management (Splunk, Sentinel, Cribl)
  • Threat Hunting & Log Correlation
  • Packet Analysis (Wireshark, TCP/IP stack)
  • IDS/IPS Configuration and Tuning
  • Vulnerability Assessment & Scanning (Nmap, Nessus)
  • Incident Response & Triage
  • Scripting and Automation (Python, Bash)
  • Endpoint Security (CrowdStrike Falcon, EDR migrations)
  • Reverse Engineering (Ghidra, Assembly Fundamentals)
  • Malcolm Framework for Traffic Analysis

Key Accomplishments

  • Designed and developed “Winston” — a malware analysis toolkit for SOC environments, integrating threat intel APIs.
  • Migrated a biotech research company from SentinelOne to CrowdStrike, securing 80 endpoints and redesigning network topology.
  • Implemented Jira Service Desk company-wide, integrating automation for ticket routing and triage.
  • Self-taught reverse engineering fundamentals to compete in the Huntress CTF, placing 87th out of 1,018 teams.

Technical Interests & Side Projects

  • Ongoing development of Winston and other custom CLI tools
  • Raspberry Pi–based network appliances (monitoring, DNS filtering)
  • Performance tuning with Pi-hole and Wazuh
  • OpenVPN tunneling and internal server routing
  • ChatGPT experimentation using OpenWebUI on Linode
  • Traffic injection tests with BeEF and lab VMs
  • Home speed monitoring dashboards and uptime alerts