- Security monitoring for an aerospace and aviation client.- Active Directory and ADFS, AD migrations (on-prem to Azure AD).- MFA (Multi-Factor Authentication)- Conditional Access Policies.- PKI and SSL certificate management- Handle escalations and troubleshoot AD and security issues.- Identity Incident Response using Splunk

Implemented intrusion detection system using OWASP and the ELK stack. The project encompassed three phases: luring attackers with honeypots, identifying actions, and logging information. Leveraged WAF ModSecurity's Core Rule Set (CRS) to deploy honeypots and detect various web application attacks. Objective: Enhance security by proactively detecting and mitigating threats to web applications and networks. Integrated reporting to the MISP threat intelligence platform. Automation incorporated… Show more Implemented intrusion detection system using OWASP and the ELK stack. The project encompassed three phases: luring attackers with honeypots, identifying actions, and logging information. Leveraged WAF ModSecurity's Core Rule Set (CRS) to deploy honeypots and detect various web application attacks. Objective: Enhance security by proactively detecting and mitigating threats to web applications and networks. Integrated reporting to the MISP threat intelligence platform. Automation incorporated via an LLM model to refine WAF rules using MISP output. For the deployement of this project we used docker images. Show less