Portfolio Samples

Abstract Course: ISIN 335 (Pen Testing and Cloud Security) Students conduct labs within an AWS cloud environment to build foundational knowledge of cloud services, architecture, and security best practices. A variety of common services and deployment architectures are explored in order to promote confidentiality, integrity, and availability in the cloud. Not all labs are included in this sample. Preview Previous Next     / [pdf] View the PDF file here.

Abstract Course: ISIN 312 (Applications of Information Security) Students are tasked with completing interactive EC-Council ethical hacking labs and related assessments that are conducted within an in-class virtual environment. Information security knowledge and skills are demonstrated by discovering and exploiting vulnerabilities or other useful information. Not all labs and assessments are included in this sample. Preview Previous Next     / [pdf] View the PDF file here.

Abstract Course: ISIN 499 (Capstone Experience) Students collaborate to complete a half-semester long group project that demonstrates mastery of core information security knowledge and skills. I worked with Brock Byard and Jacob Derenzy to simulate a security operations center (SOC) in the Proxmox virtualization platform by deploying security tools to monitor our network and guest machines. We configured our environment to detect, record, and investigate suspicious network and host activity. Example data was generated by exploiting vulnerabilities in the guest VMs. read more...

Abstract Course: ISIN 335 (Pen Testing and Cloud Security) Students create a pentesting lab, configure security tools, and demonstrate an exploit using cloud technology. Pacu is installed and used at the end of the lab to collect some information about the environment. Preview Previous Next     / [pdf] View the PDF file here.

Abstract Course: ISIN 409 (Network Forensics and Analysis) Student analysts create a Security Onion VM and configure it to replay and analyze malicious packet captures. This network activity generates alerts inside Security Onion tools that are used as the basis of an investigation. An alert is selected from the queue for closer inspection, and an investigation is performed based on the assumption that the event occurred within a business environment. Students prepare a presentation that simplifies investigation findings and summarizes any recommendations for an executive-level target audience. read more...

Abstract Course: STQM 270 (Data Mining) Students collaborate to complete a final group project that demonstrates understanding of data mining concepts by applying techniques learned throughout the course. Each student contributes one segment (out of three total). I completed this project with Brock Byard and Jacob Derenzy, however, this sample only contains my segment. Preview Previous Next     / [pdf] View the PDF file here.

Abstract Course: DFOR 310 (Digital Forensics and Analysis) Student examiners leverage fundamental digital forensic skills and concepts developed throughout the class to complete a final investigation based on the BTK killer. This report summarizes the findings and provides an overview of how the evidence was obtained. Preview 🔍 Important The original report contains real pictures of BTK victims. Sensitive images have been censored or removed from this sample. Previous Next     / [pdf] View the PDF file here.

Abstract Course: ISIN 491 (ISI Internship) This is an overview of the Slack/TeamDynamix automation that I created collaboratively with Caydon Thomas using Rapid7 InsightConnect during my internship at National Heritage Academies (NHA). The automation reduces that amount of time that security analysts and support technicians spend initiating and tracking endpoint remediation tickets by allowing one to interactively build and submit service requests to a ticket queue. Error handling, execution status updates (analogous to return codes), help, and troubleshooting features are built-in. read more...

Abstract Course: ISIN 491 (ISI Internship) This presentation was created as part of my internship at National Heritage Academies. Its purpose was to educate other interns about what some of my responsibilities were as an IT Security Analyst and to demonstrate the value of the internship program. Audience members included IT department supervisors, employees, and all 20+ of the other summer interns from various departments. Any questions were answered at the end of the presentation. read more...

Abstract Course: ISIN 409 (Network Forensics and Analysis) Student analysts complete challenge labs that cover a variety of potential scenarios one is likely to encounter in a business environment during their career. The NICE Challenge Project intends to provide students with real-world cybersecurity challenges in simulated business environments for workforce development purposes. I completed the full set of labs with partner analysts Steven Roberts and Garrett Blaylock. Not all labs are included in the sample below. read more...