Skill
Detection / SIEM / Logging / IR
Signals, alerts, and evidence for response and improvement.
Strong80%Evidence-first
Proficiency
4 capability2 tool2 working on
Capabilities
- Log sources & alert thinkingProjectLab
- Detection triage basics (signal vs noise)Writeup
- IR readiness: what to log for investigationsWriteup
- Rule tuning mindsetHands-On
Tools
- Wazuh (planned deployment + rule tuning)Planned
- MITRE ATT&CK mappingWriteup
Working On
- SIEM pipeline: endpoint → alerts → triage notesPlanned
- IR playbook templates for common incidentsPlanned
Next steps
This page will grow into proof blocks (labs, writeups, artifacts) as you attach evidence.