Home / Start Here

Start Here

Not sure where to begin? Pick your path โ€” each route shows the most relevant artifacts for your context.

๐Ÿ“„

For Recruiters

Quick overview of skills, targets, and proof points

Target Role

2210 / ISSO Threat Hunter Cloud Security Eng

Artifacts that prove it

Full background โ†’
๐Ÿ—๏ธ

For Hiring Managers

Technical depth โ€” methodology, detection logic, and architecture

Recommended reading order

  1. 1 Detecting Lateral Movement via Abnormal Process Ancestry Hunt report โ€” T1003.001 โ€” LSASS Memory
  2. 2 AWS Threat Detection Lab โ€” GuardDuty + CloudTrail Pipeline Case study โ€” AWS, GuardDuty, CloudTrail
  3. 3 NIST CSF 2.0 โ€” Practitioner Reference Notes Framework โ€” NIST CSF 2.0 alignment
All hunt reports โ†’
๐Ÿ›ก๏ธ

For Small Teams

Advisory scope, services overview, and how to engage

Where I can help

  • Threat Hunt Program โ€” Build a repeatable, low-friction hunt cycle for a small SOC
  • Cloud Security Review โ€” AWS posture, IAM, CloudTrail/GuardDuty baseline
  • Detection Engineering โ€” SIEM rule development, Sigma content, alert tuning
  • NIST / RMF Mapping โ€” Control gap analysis and documentation support

Engagements are scoped, time-boxed, and NDA-ready. No production access required unless agreed. Recommendations + documentation only.

Advisory Inquiry โ†’
Hunt Reports

MITRE-aligned, documented, detection output included

Projects

Labs + architecture case studies with outcomes

Guides

Checklists and short-form practitioner references

Frameworks

NIST, RMF, and control mapping notes