IT Manager with 8+ years of IT experience, (ISC)² Certified in Cybersecurity (CC), and active Security+ SY0-701 preparation. I am building hands-on cybersecurity projects focused on SOC triage, SIEM detection logic, Windows log analysis, phishing analysis, network traffic review, Python automation, vulnerability management, cloud IAM, and GRC documentation.
| Area | Hands-On Practice |
|---|---|
| SOC Analysis | Alert triage workflows, evidence timelines, escalation notes |
| SIEM and Logging | Detection logic, SPL/KQL examples, false-positive review |
| Incident Response | Investigation steps, evidence collection, incident report templates |
| Windows Security | Event ID 4624/4625 analysis, suspicious login review |
| Threat Analysis | Phishing triage, IOC review, MITRE ATT&CK mapping |
| Vulnerability Management | Risk rating, remediation planning, plain-language summaries |
| Security Automation | Python scripts for repeatable analyst tasks |
| Cloud and GRC | IAM risk review, MFA, least privilege, risk registers |
| Project | Evidence |
|---|---|
| Cybersecurity Portfolio | SOC labs, detections, reports, scripts, sample logs, and screenshots |
| Windows Event Log Analysis | Event ID 4624/4625 timeline, sample events, and investigation notes |
| Phishing Email Analysis | Sample email, header review, URL defanging, triage verdict, and response steps |
| Network Traffic Analysis | Zeek-style connection log review and repeated outbound traffic analysis |
| Python Log Triage Tool | Python CSV parsing, authentication summary output, and screenshot evidence |
| Windows Failed Logon Detection | SPL, KQL, Sigma-style logic, false positives, and response notes |
| Google Cybersecurity Professional Certificate | Certificate notes, applied security concepts, and verification links |
| CompTIA Security+ SY0-701 | Security+ objective mapping and study notes |
Splunk KQL Microsoft Sentinel Wazuh Elastic Wireshark Zeek Nmap Windows Event Logs Linux Python PowerShell SQL MITRE ATT&CK NIST CSF GRC
- SOC alert triage and investigation notes
- Windows authentication event review
- SIEM detection logic and false-positive tuning
- Phishing and IOC analysis
- Python security automation
- Vulnerability management reporting
- Cloud IAM and least privilege review
- Security+ SY0-701 preparation
- GitHub: wilsonvs
- LinkedIn: wilsonvsequeira

