About Me
I’m a Security Analyst working in a Security Operations Center. My job involves going through logs and alerts to find threats that have slipped past our preventative controls, then translating those findings into terms that non-technical stakeholders can actually understand. I also build security workflows that help teams respond to incidents faster.
Background
I grew up around computers—my dad worked in technology, so I was always on them as a kid. That early exposure turned into a genuine interest, and eventually I decided to make it a career.
In 2018, I enrolled in a cybersecurity program at my local community college. During that program, I earned my CompTIA Network+, Security+, and some other certifications. In 2021, I discovered and reported a client-side request forgery vulnerability in an open source hotel management platform, which earned me CVE-2021-41074. I finished my bachelor’s degree in Information Technology from Western Governors University in 2022, then went on to complete my master’s in Information Technology Management from the same school.
What I Focus On
My core areas are networking, SIEM tools, incident response, threat hunting, and automation. Early on, I wanted to patch every vulnerability and stop every attack. I’ve since learned that’s not realistic. Now I focus on helping organizations build security programs that can adapt and respond to threats while still letting people do their jobs.
One thing I think gets overlooked in this field: the basics matter more than fancy tools. I’ve seen businesses trying to implement advanced security measures when they’re still writing down credit card numbers on paper. Start with strong passwords, multi-factor authentication, and phishing awareness. I once talked to someone worried about whether their EDR would protect against Log4j when they were running a version that was six or seven major releases behind. Get the fundamentals right first.
How I Approach Things
I try not to just follow the same old processes everyone else uses. There’s usually a better way to solve a problem if you’re willing to think through it differently. The tech field changes constantly, so I’m always learning something new.
Integrity matters in this work. So does building connections—you can’t succeed alone in cybersecurity. I value being part of a community that shares knowledge and helps each other get better. Outside of Work
I spend time with friends and family, go hiking, hit the gym, and cook. I also collect Pez dispensers, which is probably the most random thing about me.
Why This Site Exists
I’ve learned a lot from reading other people’s blogs and articles over the years. If I can share what I know and help someone else in the field, that’s worthwhile to me.
Get in Touch
If you have questions or want to connect, email works best. Feel free to reach out.