IT professional with 3+ years in desktop support making a deliberate move into cybersecurity. I hold a CompTIA Security+ and have applied skills hands-on through cloud labs, threat detection exercises, and infrastructure projects, not just coursework.
Currently building a SOC home lab with SIEM log ingestion and practising detection with MITRE ATT&CK. Looking for a SOC Analyst or junior cybersecurity role where I can contribute from day one.
| Security Operations (SIEM & EDR) | Microsoft Sentinel · KQL · Microsoft Defender · Log Analytics · Alert Triage · Incident Response |
| Cloud & Identity | Microsoft Azure · Entra ID · Intune · Microsoft 365 · AD · RBAC |
| Systems & Networking | Windows Server · Linux · VMware · DNS · DHCP · Firewalls |
| Automation & Scripting | PowerShell · Python Basics |
| Security Frameworks & Concepts | MITRE ATT&CK · NIST CSF · CIS Controls · Zero Trust · Vulnerability Management |
| Project | What I Did | Tools/SKills | Repo |
|---|---|---|---|
| Microsoft Sentinel SIEM – SOC Lab | Deployed a hybrid SIEM lab onboarding Windows, Linux, and Azure endpoints via Azure Arc; built KQL detection rules and triggered/resolved a real incident in Sentinel | Microsoft Sentinel · Azure Arc · AMA · Log Analytics · KQL · DCR · RBAC | 🔗 View |
| Azure Honeynet - Live Attack Detection with NSG, SQL & Microsoft Sentinel | Deployed Windows and Linux VMs as honeypots in Azure with deliberately open NSGs and disabled firewalls; installed SQL Server with audit logging; simulated RDP, SSH, and SQL brute-force attacks from a separate Attacker VM; ingested logs into Microsoft Sentinel via Log Analytics, DCR, and NSG Flow Logs; enriched alerts with a GeoIP watchlist and confirmed live real-world attack detection using KQL | Microsoft Sentinel · Azure NSG · SQL Server · Log Analytics · KQL · DCR · AMA · NSG Flow Logs · Defender for Cloud · Entra ID · Key Vault · Windows Event Viewer · Linux auth.log | 🔗 View |
| On-Prem Home Lab – AD, Domain Controller, Windows 11 & Linux | Built a virtualised on-prem network with Windows Server 2022 as Domain Controller, joined Windows 11 and Kali Linux clients, configured AD DS, DNS, and resolved cross-platform connectivity issues | VMware · Windows Server 2022 · Active Directory · DNS · Windows 11 · Kali Linux · PowerShell | 🔗 View |
| Enterprise IT Infrastructure Design & Deployment | Designed and deployed a full enterprise network for a simulated college — AD with OU structure, RBAC, Microsoft 365 integration, Fortinet firewall, and end-to-end validation testing | Active Directory · Microsoft 365 · Fortinet Firewall · RBAC · VLAN · Switching | 🔗 View |
| Azure Cloud Environment – Identity & RBAC | Provisioned Windows Server 2016 via Azure CLI, configured dynamic group membership based on user attributes, and implemented custom RBAC roles for delegated access control | Azure CLI · Windows Server 2016 · Entra ID · Dynamic Groups · RBAC | 🔗 View |
| Azure Windows 11 VM – Full Lifecycle Administration | Provisioned a Windows 11 VM in Azure, configured RDP access, managed user accounts and RBAC, performed troubleshooting and software deployment, then fully decommissioned the environment | Azure · Windows 11 · RDP · Entra ID · RBAC | 🔗 View |
| Simulation | Company | What I Did | Tools/Skills | Repo | Certificate |
|---|---|---|---|---|---|
| Cybersecurity Analyst | Tata | Assessed an organisation's cybersecurity posture and provided strategic security advisory recommendations | Threat Analysis · Risk Reporting · Security Frameworks | — | 🔗 View |
| Shields Up Cybersecurity | AIG | Responded to a ransomware threat scenario, assessed vulnerabilities, and drafted an incident response communication | Incident Response · Vulnerability Assessment · Ransomware Analysis | — | 🔗 View |
| Cyber Security Management | ANZ Australia | Investigated phishing emails and analysed PCAP network traffic to extract hidden files and recover encoded data | Wireshark · HxD · PCAP Analysis · Base64 Decoding | 🔗 Repo | 🔗 View |
| Cybersecurity Job Simulation | Mastercard | Designed a phishing simulation, analysed results to identify vulnerable teams, and created targeted security awareness training | Phishing Simulation · Security Awareness · Presentation | 🔗 Repo | 🔗 View |
| Cybersecurity Job Simulation | Telstra | Triaged a network malware incident, identified affected systems, and drafted a technical mitigation response | Incident Triage · Network Security · Malware Analysis | — | 🔗 View |
| Cybersecurity Job Simulation | Datacom | Investigated APT34 (OILRIG) breach using OSINT and MITRE ATT&CK, and delivered a risk assessment with inherent, current, and target risk ratings | MITRE ATT&CK · OSINT · NIST · Risk Matrix | 🔗 Repo | 🔗 View |
| Certification | Issuer | Link |
|---|---|---|
| CompTIA Security+ | CompTIA | 🔗 Verify |
| Google Cybersecurity Professional Certificate | 🔗 Verify | |
| SC-200: Security Operations Analyst | Microsoft (via Udemy) | 🔗 Verify |
| Simulation | Company | Certificate |
|---|---|---|
| Cybersecurity Analyst | Tata | 🔗 View |
| Shields Up Cybersecurity | AIG | 🔗 View |
| Cyber Security Management | ANZ Australia | 🔗 View |
| Cybersecurity Job Simulation | Mastercard | 🔗 View |
| Cybersecurity Job Simulation | Telstra | 🔗 View |
| Cybersecurity Job Simulation | Datacom | 🔗 View |
