SOC Analyst — Cybersecurity
I build tools that turn slow, manual security work into something fast and repeatable — phone and number intelligence, OSINT lookups, and validation scripts. I work primarily in Python and JavaScript, and I care about tools that are honest about what they can and can't tell you.
Hands-on with Linux, Docker, and self-hosted infrastructure. I run my own home lab where I practice hardening, network segmentation, and VPN and firewall configuration — the same edge devices that, when left unpatched or misconfigured, are a leading way real environments get breached.
I track how real environments actually get compromised — exploited edge devices, unpatched firewalls, weak configurations, and social engineering — and how to catch those gaps before an attacker does. I'm focused on the defensive side: visibility, exposure, and remediation.
for the curious...
I work as a SOC Analyst at Kaseya, triaging 100–150+ alerts per shift across multi-tenant MSP environments. Day to day that means detecting threats like ransomware and lateral movement, taking containment actions, and tuning detections to cut false positives. The volume is higher than a typical SOC, which has built fast pattern recognition.
Outside of work I run a self-hosted home lab where I practice the defensive fundamentals and build security tools. The projects here started as real problems I wanted to solve — the kind of work I can actually walk through in an interview.
Security projects — live demos and write-ups
