About

I am an IT Security postgraduate and cybersecurity practitioner focused on SOC operations, SIEM monitoring, incident triage, log analysis, and practical defensive security. My work is centered on validating alerts, correlating endpoint, server, and network logs, documenting incident timelines, and improving detection quality through hands-on security monitoring.

My academic background includes an MS in IT Security and a BS in Computer Science, giving me both cybersecurity specialization and a strong technical foundation in software, systems, and networking. Before moving deeper into cybersecurity, I worked as a Software Engineer, where I contributed to application development, synchronization utilities, testing, documentation, and technical support.

That combination of security education, software engineering experience, and SOC practice helps me understand how systems are built, how they fail, and how security controls can be monitored, tuned, and improved in real operational environments.

My current focus is defensive security and SOC operations. I work with SIEM alert monitoring, Wazuh operations, alert validation, Windows and Linux log review, firewall/router telemetry, incident timelines, case documentation, and escalation support.

I am also building practical skills in detection improvement, SOAR-assisted enrichment, vulnerability assessment, Active Directory security, cloud security, and network security. My goal is to keep improving as a security practitioner who can investigate alerts, validate risk, document clearly, and strengthen monitoring quality.