~/Whoami

I’m not the quickest with exploits, nor the loudest in the war room. But I pay attention, to the logs ignored, the alerts dismissed, the anomalies hidden in plain sight.

While others rush to patch or scan, I study the behavior, thinking critically and spotting patterns in the noise.

I enjoy getting my hands dirty and going down the endless rabbit hole.

Every flag I catch, every insight I uncover, it’s a reminder that this is a lifelong path, and I’ve only just tuned in.

~/Education

  • B.Sc. in Physics, Kenyatta University, 2025

~/Certifications

  • USIU/Cyber Shujaa Security Analyst (Ongoing)
  • TryHackMe SOC Level 1 (Ongoing)
  • Junior Cybersecurity Analyst - Cisco Networking Academy (2025)

~/Technical Skills

  • SIEM: Splunk, Microsoft Sentinel
  • Security Tools: MITRE ATT&CK, Wireshark, Nmap
  • Scripting: Basic Python, PowerShell
  • Concepts: Threat Intelligence, Incident Response, Log Analysis
  • Security Frameworks: NIST, ISO 27001
  • Platforms: Windows & Linux OS Security
  • Languages: Javascript, Python, Bash, HTML/CSS

~/Soft Skills

  • Problem Solving
  • Attention to Detail
  • Team Collaboration
  • Analytical Thinking
  • Communication Skills

~/Projects

  • Threat Investigation (SOC Lab) - Cyber Shujaa Security Analyst Program - May 2025
    • Documented findings and prepared an incident report using MITRE ATT&CK techniques
    • Analyzed endpoint logs using Sentinel to detect brute-force login attempts
    • Used KQL to identify suspicious IPs and escalated via mock playbook
  • Malware Traffic Analysis (SOC Lab) - May 2025
    • Captured PCAPs with Wireshark to identify suspicious DNS queries and C2 traffic
    • Correlated logs across host and network layers with MITRE techniques
    • Identified malware behavior patterns and proposed containment strategies

~/Work Experience

  • Cybersecurity Intern, Cyberspace Labs (Apr 2025 - to date)
    • Assisted in vulnerability scans and SIEM log analysis
    • Wrote internal documentation for incident response
  • ICT Support Technician - CFAO Mobility (Mar 2023 - Dec 2024)
    • Provided Level 2 technical support and assistance to end users
    • Provided remote assistance to off-site users, troubleshooting issues
    • Assisted with networking setup and configuration (Wi-Fi, Ethernet, VPN)
    • Collaborated with vendors and service providers on SLAs and support
  • Technical Content Writer (SaaS) - Remote (2016 - 2023)
    • Wrote over 200 guides and whitepapers for Web3 startups
    • Deliverd a whitepaper that helped a client secure $2.6 million in VC funding (private token sale)
    • Created onboarding content that cut support tickets by 30% for a crypto project

~/Areas of Interest

  • Blue Team
  • Web Application Security
  • Cloud Security
  • Detection Engineering