Skip to content

Selected work

Security engineering projects spanning cloud detection, incident response, access hardening, and compliance. Details are intentionally sanitized to protect employer and client confidentiality.

Cloud Security / Detection Engineering

Cloud Detection & Alerting Pipeline

Built and tuned a cloud detection and alerting workflow that connected cloud security findings to actionable notifications while reducing low-value noise.

AWSTerraformDetection EngineeringSecurity Automation

View case study →

Incident Response / Security Automation

Automated Incident Response & Escalation

Built automated incident response workflows that escalated security events to the right teams via PagerDuty and Slack, reduced manual triage, and preserved forensic evidence automatically.

Incident ResponsePagerDutySecurity AutomationAWSPython

View case study →

Security Tooling / AI Security

AI-Assisted Code Review & Vulnerability Auditing

Built AI-assisted workflows that helped scale code review, vulnerability auditing, and detection logic authoring beyond what a small security team could do manually.

AI SecurityCode ReviewSecurity ToolingCI/CDPython

View case study →

Incident Response / Security Operations

Incident Response Runbooks & Tabletop Program

Created practical triage runbooks, severity guidance, escalation paths, and tabletop scenarios based on real operational gaps.

Incident ResponseRunbooksTabletop ExercisesSecurity Operations

View case study →

Cloud Security / IAM

Cloud Security Hardening & Access Reduction

Improved cloud security posture by reducing standing access, strengthening identity controls, and shrinking attack surface from unused infrastructure.

AWSIAMSSOCloud SecurityLeast Privilege

View case study →

GRC / Cloud Security

Security Assurance & Compliance Evidence

Translated cloud and security control implementation into clear evidence for enterprise and regulated environments.

FedRAMPSOC 2GRCComplianceCloud Security

View case study →