Greater Colorado Springs Area
As a Microsoft Sentinel and Splunk Developer at the Navy Cyber Defense Operations Command, I focus on advancing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) capabilities. My work includes developing and maintaining hundreds of security detections, engineering automated response workflows, and creating customized SOC dashboards to elevate operational visibility. I am currently pursuing a Bachelor's degree in Cybersecurity at Old Dominion University. My core skills include detection engineering, SIEM/SOAR development, and API integration. Passionate about enhancing SOC efficiency, I aim to contribute to advancing secure and resilient cyber operations. As I approach my separation from the US Navy, I look forward to networking and making new connections!
• Developed and maintained over 300 security detections using Agile Scrum methodology across Azure Sentinel, Splunk ES, and Microsoft XDR to minimize false positives and boost SOC efficiency • Engineered SOAR playbooks using Azure Logic Apps to automate response workflows, including enriching incidents with Threat Intelligence via API integration, and automating incident management tasks to accelerate initial triage • Authored comprehensive standard operating procedures, onboarding screeners, and qualification boards for the SIEM team, now adopted as permanent standards across the organization • Improved operational and executive visibility by creating customized SOC dashboards that tracked key metrics for leadership and provided real-time operational views for analysts
• Served as the primary lead and point of contact for endpoint security operations on the Defensive Cyber Operations watch floor, overseeing global network defense across Navy networks • Delivered over 700 hours of JQR training on Endpoint operations and Microsoft XDR, qualifying 25 personnel and increasing watch floor manning by over 60% • Supported the creation and implementation of SOPs for the Defensive Operations Center (DOC), enabling timely operational stand-up and standardized procedures • Managed report creation and quality control via Jira, ensuring high-quality intelligence was delivered to external commands for remediation • Conducted host timeline analysis, remediation of malicious events, and supported incident investigations to support rapid containment and accurate incident response