Built a simulated Security Operations Center (SOC) to combat alert fatigue. This project uses a Python script to automatically correlate internal network logs against external threat intelligence feeds, turning low-context data into high-fidelity, actionable alerts that allow analysts to focus on genuine threats. 

Python | Automation | Threat Intelligence | Log Analysis | Network Security Monitoring (NSM) | IDS | SecurityOnion | Abuse.ch

This project bridges the gap between a purely technical vulnerability scan and a business-level risk management decision. I used OpenVAS to find vulnerabilities and then translated the technical output into a formal Plan of Action & Milestones (POA&M), creating an auditable trail for a GRC team to track remediation and ensure compliance.

Vulnerability Management | Governance, Risk, & Compliance (GRC) | Risk Assessment | OpenVAS | VirtualBox | Reporting & Documentation

Developed a focused Python utility that cuts through the noise of brute-force login attempts. The script parses raw SSH authentication logs, identifies IP addresses with excessive failed logins within a specific timeframe, and generates a visual report, turning thousands of log entries into clear, actionable security insights.

Python | CSV processing | datetime & timedelta Arithmetic | Object-Oriented Design | argparse CLI | Matplotlib Visualization, Virtual Environments

Demonstrating a "shift-left" security mentality, I used Terraform to define and deploy a secure, repeatable, and auditable cloud environment in AWS entirely from code. This project enforces the principle of least privilege and every component is consistent and secure by design, eliminating manual configuration errors.

AWS | Terraform | Infrastructure as Code (IaC) | Cloud Security | Amazon EC2 | Amazon VPC | Nginx | DevSecOps