Career
Experience
Aug 2024 — Present/Part-time
Graduate Research Assistant
Sam Houston State University·Huntsville, TX
Phase 2:
- Engineering GuardedEdge, an IoT edge security platform by integrating AWS IoT Greengrass v2, Device Defender along with Device Management for threat detection and response.
- Reduce baseline poisoning risk by designing a guarded adaptation workflow that promoted new behavioral baselines only after attack and false positive checks.
- Building a reversible incident response ladder by implementing logging, rate limiting, topic restriction, rollback, restart, and isolation actions for affected devices.
- Improve endpoint security and local remediation by deploying AWS IoT Greengrass v2 components for throttling, restart, topic restriction, and containment.
- Developing auditable fleet response workflows by using device grouping, fleet indexing.
- Strengthen IoT threat detection by using AWS IoT Device Defender ML Detect, Rules Detect along with Audit to identify anomalies and configuration drift.
Phase 1:
- Conducted research on IoT honeypot architectures to detect and analyze advanced persistent threats in smart home and industrial control system environments.
- Monitored and categorized 100+ attack vectors, documenting entry points, exploitation methods, and attacker behavior.
- Executed 10+ simulated attack scenarios and 3+ tabletop exercises to validate detection capabilities.
- Deployed adaptive container imaging, achieving less than 10 minute deployment time for new honeypot instances.
- Collaborated on federally funded cybersecurity research focused on intrusion detection in critical infrastructure networks.
- Generated threat intelligence reports documenting 50+ unique IoT attack patterns for threat hunting operations.
- Presented research findings and contributed to peer-reviewed publications in cybersecurity and digital forensics.
Jun 2020 — Aug 2023/Part-time
Network Security Engineer
Texas A&M University Kingsville·Kingsville, TX
- Maintained campus network security infrastructure including Cisco firewalls, IDS systems, and GlobalProtect VPN gateways serving 5,000+ users
- Fortified network security by monitoring firewalls with Cisco FMC and triaged with Tenable Nessus, leading to a 20% reduction in risks.
- Enhanced network troubleshooting and incident response by utilizing Cisco Prime and Whatsup Gold, resulting in 20% faster resolution.
- Implemented role based access control using SafeConnect for 1000+ personnel, enforcing organizational policies and logical controls.
- Conducted vulnerability scanning using Tenable Nessus and implemented developed remediation through Group Policy, identifying and resolving 60+ critical vulnerabilities across network infrastructure.
- Secured remote access to workstations by implementing and managing GlobalProtect VPN, ensuring encrypted access for 45% users.
- Improved service quality by 5% through collaboration with department teams using ServiceNow (Task Manager) and Cisco Prime to resolve network security issues.
May 2019 — Jun 2020/Part-time
Student Network Technician
Texas A&M University Kingsville·Kingsville, TX
- Utilized identity management processes to verify user authenticity and managed over 100+ MAC addresses, subnet masks, troubleshooting references, default gateways, and IP addresses on Cisco Prime, enhancing database management and productivity.
- Employed ServiceNow (Task Manager) to communicate effectively with departments, resolving and preventing ongoing issues using Cisco Prime and improved service quality by 5% for end users.
- Analyzed 90% of equipment malfunctions and circuitry faults with access points, routers, and switches, replacing faulty network hardware components when required to maintain network uptime.
- Collaborated with cross functional teams to facilitate IT projects and assigned tasks within the defined project scope to ensure the successful deployment of 14 I.T. projects, improving connectivity by at least 2%.
- Performing disaster recovery operations and data backups when required.