Selected Work

If you’re new here, start with these posts. They show how I approach secure SDLC, detection engineering, and practical security automation.

Secure SDLC and program fundamentals

• Supply Chain Security in CI: SBOMs, SLSA, and Sigstore — a minimal pipeline for SBOMs, provenance, and signing.
• Secrets Management for Small Teams: AWS Secrets Manager + CI — a practical OIDC-based secrets flow.
• Security Metrics That Help Engineering Teams — a small, action-oriented metric set.

Detection and lab architecture

• Building a Zeek and Suricata Dual Sensor for a Home Lab — dual sensor design, tuning, and validation traffic.
• Home SIEM Architecture: Wazuh + OpenSearch + Zeek — end-to-end telemetry collection and storage.
• Vulnerability Management Cadence for a Home Lab — a weekly workflow for scanning, triage, and verification.

If you want a chronological view, see the archives or tags.