🚀 David Brown — Cybersecurity Portfolio
**Cybersecurity • SOC • Cloud Security • Threat Hunting • Vulnerability Management • IAM **
Hands-on security practitioner focused on real-world detection, remediation, and automation across Windows, Linux, Azure, and AWS environments.
🧰 Technical Skills & Tools
📝 About Me
I’m a cloud-oriented cybersecurity practitioner passionate about:
- Threat hunting & incident response
- Programmatic security automation
- Vulnerability management & prioritization
- SIEM detection engineering (KQL, Sentinel)
- Azure & AWS security hardening
- DISA STIG compliance
My goal is to build secure, automated, scalable solutions that reduce risk and improve SOC efficiency.
📁 Featured Projects
🔐 Vulnerability Management
➡️ Vulnerability Management Program Implementation
A full lifecycle implementation covering vulnerability discovery, prioritization, reporting, and automated remediation.
➡️ Programmatic Remediation Scripts (PowerShell & Bash)
Enterprise-ready scripts for automated remediation across Windows and Linux systems.
🛡 DISA STIG Compliance
➡️ Windows 10 STIG Remediation
Automated enforcement of DISA STIG settings using PowerShell and configuration baselines.
🎯 Threat Hunting & Security Operations
➡️ Threat Hunting
KQL-driven investigations, JA3/JA4 fingerprinting, endpoint event analysis, and real-world hunt methodologies.
☁️ AWS Security
➡️ AWS IAM Hardening Project
Secure designs for IAM permissions, governance, SCPs, MFA, and continuous identity monitoring.
📬 Connect With Me
⭐ Summary
- Hands-on experience in SIEM detection, endpoint telemetry analytics, and cloud security engineering.
- Built full vulnerability management pipelines and automated remediation tools.
- Strong with Azure, Microsoft Defender, Sentinel, AWS, Tenable, PowerShell, and KQL.
- Passionate about scalable automation, detection engineering, and strengthening enterprise SOC operations.