Security Projects

Security Automation · Active Development

Security automation framework for log ingestion, anomaly detection, and actionable insight generation. Python/FastAPI backend with a React frontend, containerized via Docker, and hardened with SSRF and XSS protection, rate limiting, CSP headers, and a full CI/CD pipeline including Bandit, pip-audit, and Trivy scanning. Version 0.1.0 is beta-ready and free. Stripe billing scaffold in place for future tiers.

Infrastructure · Home Lab

Hybrid environment built to simulate enterprise security operations. Deployed a full Wazuh SIEM stack with configured manager, Elasticsearch, and multi-endpoint agents for centralized log collection and alerting. Running Ubuntu and Windows in a segmented network with containerized services, identity management, and expanding OT/ICS simulation capability.

Infrastructure · Toolkit

Standardized small-business security deployment package with templated network diagrams, firewall and VLAN configurations, and a repeatable hardening workflow. Designed to give small organizations a defensible security baseline without enterprise budgets. GRC thinking applied at the small business scale.

Infrastructure · Live

Self-managed portfolio with custom DNS configuration, SSL/TLS certificate management, and cloud-based hosting. Built and maintained entirely by hand; no templates, no page builders. The site you're on right now.

Learning Track · In Progress

Structured self-study track bridging industrial operations experience with formal ICS/OT security knowledge. Covering ICS architecture, threat modeling, risk analysis, and governance frameworks for critical infrastructure. Targeting GICSP certification and INL training. This is where my past and my future converge.