Falco + Splunk C2 Detection Lab
Container runtime detection and SIEM correlation for suspicious command execution and C2-like behavior.
Security Operations • Cloud Security • Incident Response
CISSP-certified Security Engineer and customer-facing technical advisor with 7+ years of experience helping enterprise organizations deploy, secure, and optimize cloud, endpoint, and SIEM platforms.
About Me
I’m a CISSP-certified Security Engineer based in the Dallas-Fort Worth area with experience across AWS, Azure, XDR/EDR, SIEM, Kubernetes, IAM, and security automation.
I help organizations investigate threats, reduce risk, improve detection coverage, and translate complex security challenges into clear remediation plans and business outcomes.
Core Strengths
Triage, investigation, threat hunting, and remediation.
AWS, Azure, IAM, VPC, security groups, and workloads.
Risk reduction, patching, hardening, and validation.
XDR/EDR, SIEM, custom detection rules, and MITRE.
Python, PowerShell, Terraform, Ansible, CloudFormation.
NIST 800-53, IAM, policies, and access governance.
Featured Projects
Container runtime detection and SIEM correlation for suspicious command execution and C2-like behavior.
Automated AWS disaster recovery infrastructure using Terraform and Ansible to improve consistency and resilience.
API-driven security workflows aligning XDR capabilities with SOC operations and detection response processes.
Experience
Advise enterprise customers on threat detection, investigate endpoint and cloud telemetry, support XDR/EDR and SIEM integrations, and lead remediation efforts.
Automated AWS DR deployments, strengthened Azure Entra ID IAM governance, configured VPNs and VLAN segmentation, and improved operational resilience.
Supported endpoint systems, access provisioning, secure configurations, and compliance requirements in a financial services technology environment.
Certifications