Hi, I'm Biruk 👋

I'm |

Security+ Certified | AWS SAA Certified | Active DoD Secret Clearance |
Cybersecurity | Cloud | AI | Passionate About Tech & Problem-Solving!

Let's ConnectView Resume
Loading
0%

About Me

Biruk Aregu
Open to Work
biruk@portfolio:~/about
$ cat journey.txt
I came to the United States from Ethiopia with a dream built on perseverance and faith. My journey started with humble beginnings, driving a taxi while dedicating countless nights to studying and building a new life through education and technology.
$ cat career.txt
Through determination, I earned my Bachelor's degree in Computer and Information Sciences and built a career as an IT Professional with expertise in Cybersecurity and Cloud Solutions, backed by strong technical support experience.
$ cat now.txt
IT Specialist (Tier II) at CompTech, supporting the Defense Logistics Agency in Philadelphia
Deepening AWS cloud security expertise
Exploring agentic AI workflows, prompt engineering, and Generative AI applications in cybersecurity
Last updated: June 2026
$ cat passion.txt
I'm also passionate about Artificial Intelligence and continuously explore emerging tools, from intelligent automation to cloud-based integrations. Whether strengthening cybersecurity, optimizing cloud infrastructure, or leveraging AI, I bring curiosity and adaptability to every challenge.
$

Impact & Capabilities

Technical expertise focused on building and implementing cybersecurity solutions

0
Security Projects Built
0
Attack Types Monitored
0
Phishing Scenarios Created
0
Technologies Mastered

Education

Bachelor of Science in Computer and Information Science

Harrisburg University of Science and Technology
3.96/4.00 GPA
Aug 2020 – May 2022Philadelphia, PA
Honors & Awards
Summa Cum Laude Minor in Cybersecurity President's List
Key Focus Areas
Programming Cybersecurity Networking Math Databases

Associate in Applied Science — Computer and Information Systems

Community College of Philadelphia
3.81/4.00 GPA
Sep 2018 – Aug 2020Philadelphia, PA
Honors & Awards
Dean's List Recognition Academic Excellence Award
Key Focus Areas
Math System Analysis Programming System Design Databases Networking

Work Experience

01

IT Specialist (Tier II)

CompTech Computer Technologies, Inc. — Defense Logistics Agency

Tier II support role at CompTech contracted with the Defense Logistics Agency in Philadelphia, PA — handling escalated incidents, monitoring critical systems, and supporting end-user device deployments across a federal environment.

Key Responsibilities:

  • Resolve escalated Tier II tickets daily — troubleshooting complex hardware, software, network connectivity, and access issues across Active Directory and ServiceNow within strict SLA targets
  • Monitor production systems, servers, and overnight batch jobs to ensure 24/7 continuity of operations, surfacing and addressing failures before they impact end-users
  • Manage incidents, service requests, and change tickets in ServiceNow end-to-end, minimizing downtime and maintaining audit-ready documentation aligned with ITIL practices
  • Install, configure, and image desktops, laptops, and printers for new-hire deployments and refresh cycles across the DLA Philadelphia site
  • Execute OS deployments, patches, and configuration changes — administering Active Directory accounts, escalating unresolved issues, and documenting root cause for recurring incidents
Tier II SupportServiceNowActive DirectoryNetwork TroubleshootingSystem ImagingDLAFederalWindowsBatch Monitoring
June 2026 — Present
Full-time
02

Technology Analyst

Independence Blue Cross, IBX

Provide technical support to end-users by troubleshooting hardware, software, and network issues across Windows and MacOS environments in a regulated healthcare enterprise.

Key Responsibilities:

  • Resolve 15-30 Level I & Level II IT service requests and incidents daily via ServiceNow leveraging ITIL best practices to support 1,500+ employees
  • Trained and mentored new hires on IT Support processes, troubleshooting, and customer service best practices
  • Configure and troubleshoot mobile devices, Citrix, VMware, and virtual desktop environments
  • Deliver clear, customer-focused communication to diagnose issues and provide tailored resolutions
  • Continuously develop technical skills to adapt to evolving IT systems
ServiceNowITILWindowsMacOSCitrixVMwareActive DirectoryLinux
Nov 2024 — May 2026
Full-time
03

IT Support Intern

Harrisburg University of Science and Technology

Provided technical support across the university, resolving hardware, software, and network issues while managing Active Directory accounts.

Key Achievements:

  • Reduced incident resolution time by 35% through proactive troubleshooting and process improvements
  • Resolved 95% of hardware/software/network issues on first contact
  • Managed Active Directory accounts, improving provisioning efficiency by 25%
Active DirectoryServiceNowWindowsLinux
Jan 2022 — May 2022
Internship
04

UAT Software Tester

Randstad Technologies

Created and executed user acceptance test (UAT) scripts for loan and home assistance programs, collaborating with development teams to ensure software quality.

Key Achievements:

  • Created and executed user acceptance test (UAT) scripts for loan and home assistance programs
  • Collaborated with the development team to identify, document, and resolve software defects
  • Utilized Agile methodologies to ensure timely delivery of test results and feedback
  • Gained practical experience in SDLC and STLC processes, improving test case accuracy and quality
UATAgileSDLCSTLCTest Scripts
Mar 2016 — Oct 2016
Contract
05

Volunteer Science Tutor

Ethiopian Community

Providing one-on-one tutoring in mathematics and science to students in the Ethiopian community, helping them build academic confidence.

Key Achievements:

  • Helped students improve grades by at least one letter grade on average
  • Created customized lesson plans matching each student's learning style
  • Mentored students in study habits, problem-solving strategies, and time management
TutoringMentoringMathematicsScience
Sep 2022 — Apr 2026
Volunteer

Certifications & Awards

Industry Certifications
CompTIASY0-701
2025

Security+ Certification

Validates essential cybersecurity skills, including network security, threat and vulnerability management, risk mitigation, and security architecture.

Verified on Credly
Amazon Web ServicesSAA-C03
2026

Solutions Architect — Associate

Validates expertise in designing distributed systems on AWS, including deployment, management, and operations.

Verified on Credly
Academic & Leadership Awards
Bachelor's Program
2022

Summa Cum Laude Honors

Awarded for maintaining a GPA of 3.96 throughout the Bachelor's program, demonstrating exceptional academic achievement.

3.96/ 4.00 GPA
Collaborative Projects Recognition
2022

Team Leadership Award

Recognized for exceptional leadership skills in collaborative projects, demonstrating the ability to guide teams to successful outcomes.

Distinguished Recognition
CompTIA Security+ (SY0-701)Certified · 2025
AWS Solutions Architect – AssociateCertified · 2026
Secret Security ClearanceActive
Summa Cum Laude Honors2022
Team Leadership Award2022
President's List & Dean's List2018 – 2022
CompTIA Security+ (SY0-701)Certified · 2025
AWS Solutions Architect – AssociateCertified · 2026
Secret Security ClearanceActive
Summa Cum Laude Honors2022
Team Leadership Award2022
President's List & Dean's List2018 – 2022

Skills

Security & Networking

Threat detection, incident response, and network architecture — tools I reach for when defending or diagnosing infrastructure.

SplunkMITRE ATT&CKWiresharkNmapTCP/IPVPNDNSDHCPLAN/WAN

Cloud & Systems

Multi-cloud architecture and cross-platform systems — where I design, deploy, and administer production environments.

AWSAzureGCPAzure ADWindowsLinuxMacOSVMwareCitrix

Development

Full-stack scripting and data work — the languages and databases I use to build, automate, and ship.

PythonJavaScriptTypeScriptReactBashHTMLCSSSQLPostgreSQLMongoDBMySQL

IT Operations

Enterprise support, ITSM, and end-user services — keeping people productive and hardware healthy across the org.

ServiceNowJiraActive DirectoryITILDesktopsLaptopsPrintersMobile DevicesPeripherals
Generative AI & LLMsGPT · Claude · LLaMA · RAG
Prompt EngineeringSystem Prompts · Chain-of-Thought
AI Automation & WorkflowsAI Agents · LangChain · n8n
AI-Powered ApplicationsChatbots · Streamlit · Vector DBs
Generative AI & LLMsGPT · Claude · LLaMA · RAG
Prompt EngineeringSystem Prompts · Chain-of-Thought
AI Automation & WorkflowsAI Agents · LangChain · n8n
AI-Powered ApplicationsChatbots · Streamlit · Vector DBs

Featured Projects

Security Awareness Chatbot

Security Awareness Chatbot

AI-powered chatbot for interactive cybersecurity education and guidance. Helps users understand security best practices through conversational AI.

TypeScriptAICybersecurityNLP
Try DemoView Details
Honeypot Threat Intelligence

Honeypot Threat Intelligence

Real-time honeypot system for detecting and analyzing cyber threats. Monitors attack patterns and generates intelligence reports for proactive defense.

TypeScriptHoneypotThreat DetectionSIEM
Try DemoView Details
Personal Portfolio Website

Personal Portfolio Website

A modern, responsive portfolio website built with Next.js and React, featuring interactive elements, accessibility features, and security-focused development practices.

Next.jsReactTailwind CSS
View Project
Social Media Cybersecurity Research

Social Media Cybersecurity Research

Research project analyzing cybercriminal activities across social media platforms with comprehensive security recommendations.

ResearchSocial MediaThreat Analysis
View Project
Phishing Attack Simulator

Phishing Attack Simulator

An educational tool that simulates phishing attacks to train users on identifying and avoiding security threats.

ReactNode.jsCybersecurity
Try DemoView Details
Client Portfolio Website

Client Portfolio Website

A stunning, modern portfolio website designed and developed for a client, featuring elegant design, smooth animations, and responsive layouts.

Next.jsReactTailwind CSSClient Work
View Project
Burlington Beef – QueueDesk

Burlington Beef – QueueDesk

Digital queue management system built for a local butcher shop — customer check-in, SMS/WhatsApp auto-notifications, and a live counter-facing display screen. Replaces paper queue lists and manual texting.

HTML/JSlocalStorageSMS/WhatsAppClient Work
Try Demo View Details
AI Resume Analyzer

AI Resume Analyzer

AI-powered tool that scores resumes against job descriptions, surfaces missing ATS keywords, rewrites weak bullets into metric-driven ones, and exports a polished PDF report. Built with the Claude API, Mammoth for DOCX parsing, and jsPDF.

Claude APIReactjsPDFMammoth
Try Demo View Details
AWS VPC + Bastion — Terraform

AWS VPC + Bastion (Terraform)

Production-style AWS network foundation deployed as Infrastructure-as-Code — VPC across 2 AZs, bastion host, private EC2, NAT Gateway, encrypted S3 for honeypot logs, SNS alert topic, and IAM roles scaffolded for a future serverless threat detector reading CloudTrail.

TerraformAWSIAMVPCIaC
Try Demo View Details

Testimonials

Read what others have to say about working with me

“As a student in my Wireless Security Management course, Biruk demonstrated exceptional analytical skills and a methodical approach to identifying vulnerabilities and implementing solutions. His understanding of security principles and ability to apply them to real-world scenarios was impressive.”
★★★★★
Mani K.
Wireless Security Management, Harrisburg University of Science and Technology
“I had the pleasure of studying alongside this developer during our time in the Computer and Information Science program. He was always dedicated, insightful, and passionate about technology. His strong work ethic and problem-solving mindset made him stand out among his peers. I’m confident that his skills and determination will continue to bring great success in his professional journey.”
★★★★★
Caleb M.
Business Data Analyst II at Stellar Innovations
“Biruk has been an exceptional addition to our Technology Support team. His technical expertise in troubleshooting complex application issues and supporting our infrastructure has significantly improved our service delivery. His ability to quickly adapt to new technologies and provide clear solutions makes him a valuable asset to our team.”
★★★★★
Kim W.
Technology Support Team, IBX
“Working with Biruk on our Network Technology class project was an incredible learning experience. His deep understanding of networking concepts and ability to explain them clearly helped our team excel. I learned so much from his patient guidance and technical expertise throughout the project.”
★★★★★
John S.
Network Technology Course, Community College of Philadelphia
“As a student in my Wireless Security Management course, Biruk demonstrated exceptional analytical skills and a methodical approach to identifying vulnerabilities and implementing solutions. His understanding of security principles and ability to apply them to real-world scenarios was impressive.”
★★★★★
Mani K.
Wireless Security Management, Harrisburg University of Science and Technology
“I had the pleasure of studying alongside this developer during our time in the Computer and Information Science program. He was always dedicated, insightful, and passionate about technology. His strong work ethic and problem-solving mindset made him stand out among his peers. I’m confident that his skills and determination will continue to bring great success in his professional journey.”
★★★★★
Caleb M.
Business Data Analyst II at Stellar Innovations
“Biruk has been an exceptional addition to our Technology Support team. His technical expertise in troubleshooting complex application issues and supporting our infrastructure has significantly improved our service delivery. His ability to quickly adapt to new technologies and provide clear solutions makes him a valuable asset to our team.”
★★★★★
Kim W.
Technology Support Team, IBX
“Working with Biruk on our Network Technology class project was an incredible learning experience. His deep understanding of networking concepts and ability to explain them clearly helped our team excel. I learned so much from his patient guidance and technical expertise throughout the project.”
★★★★★
John S.
Network Technology Course, Community College of Philadelphia

Add Testimonial

Name is required
Please write at least 20 characters

Get In Touch

I'm always interested in hearing about new opportunities and collaborations. Feel free to reach out!

Email
aregubq@gmail.com

Phone

Available upon request

Location

Philadelphia, PA

Schedule a Meeting
I read and respond to every message personally
Print Download

Biruk Aregu

Active DoD Secret Clearance | U.S. Citizen
Philadelphia, PA | aregubq@gmail.com | (818)-668-4211 | LinkedIn Website
Professional Summary

Results-driven IT professional with active DoD Secret Clearance and a B.S. in Computer and Information Science (Summa Cum Laude). Experienced supporting 1,500+ users across Windows, MacOS, and Linux in regulated environments. CompTIA Security+ and AWS Solutions Architect certified with strong technical skills in Splunk, Wireshark, Nmap, Active Directory, Azure AD, and ServiceNow. Known for analytical problem-solving, clear documentation, and a mission-focused mindset. Cloud expertise across AWS, Azure, and GCP enables secure, scalable, and compliant defense IT operations.

Technical Skills
  • Operating Systems: Unix, Linux, Windows
  • SIEM & Security Tools: Splunk, DataDog, MITRE ATT&CK Framework, Wireshark, Nmap, Nessus, OSSEC, Endpoint Protection, IDS/IPS, Firewalls
  • Cloud Platforms: Azure, AWS, Google Cloud Platform (GCP)
  • Customer Support: Incident management, Troubleshooting, Ticketing systems (ServiceNow, Zendesk, Jira), Remote Desktop Support, User Training
  • Networking: TCP/IP, VPN, DNS, DHCP, LAN/WAN, Switches, Routers, NLA
  • Cybersecurity: Incident Response, Threat Hunting, Log File Analysis, Root Cause Analysis, Security Alert Severity Triage
  • Tools: MS Office, Active Directory, Azure Active Directory, ServiceNow, and Jira
  • Database Management: SQL, MySQL, Oracle, MongoDB
  • Programming Languages: Python, JavaScript, HTML, CSS, SQL, Bash/Shell Scripting
  • AI & Machine Learning: Generative AI, LLMs (GPT, Claude, LLaMA), Prompt Engineering, AI Automation & Workflows, RAG, LangChain, AI-Powered Applications
IT Certifications

CompTIA Security+ (2025)

AWS Certified Solutions Architect Associate (2026)

Professional Experience
IT Specialist (Tier II)June 2026 – Present
CompTech Computer Technologies, Inc. — Defense Logistics Agency | Philadelphia, PA
  • Resolve escalated Tier II tickets daily — troubleshooting complex hardware, software, network connectivity, and access issues across Active Directory and ServiceNow within strict SLA targets.
  • Monitor production systems, servers, and overnight batch jobs to ensure 24/7 continuity of operations, surfacing and addressing failures before they impact end-users.
  • Manage incidents, service requests, and change tickets in ServiceNow end-to-end, minimizing downtime and maintaining audit-ready documentation aligned with ITIL practices.
  • Install, configure, and image desktops, laptops, and printers for new-hire deployments and refresh cycles across the DLA Philadelphia site.
  • Execute OS deployments, patches, and configuration changes — administering Active Directory accounts, escalating unresolved issues, and documenting root cause for recurring incidents.
Technology AnalystNovember 2024 – May 2026
Independence Blue Cross, IBX | Philadelphia, PA
  • Provide technical support to end-users by troubleshooting hardware, software, and network issues across Windows and MacOS environments ensuring system reliability and peak performance.
  • Trained and mentored new hires on IT Support processes, troubleshooting, and customer service best practices.
  • Resolve 15-30 Level I & Level II IT service requests and incidents daily via ServiceNow leveraging ITIL best practices to support 1,500+ employees in a regulated healthcare enterprise.
  • Configure and troubleshoot mobile devices, Citrix, VMware, and other virtual desktop environments to maintain uninterrupted user access.
  • Deliver clear, customer-focused communication to diagnose issues, provide tailored resolutions, and document procedures for future reference.
  • Continuously develop technical skills to adapt to evolving IT systems and improve overall support efficiency.
IT Support InternJanuary 2022 – May 2022
Harrisburg University of Science and Technology | Philadelphia, PA
  • Reduced incident resolution time by 35% through proactive troubleshooting and process improvements in ServiceNow.
  • Resolved 95% of hardware/software/network issues on first contact across Windows and Linux systems.
  • Managed Active Directory accounts, improving account provisioning efficiency by 25%.
UAT Software TesterMarch 2016 – October 2016
Randstad Technologies | El Segundo, CA
  • Created and executed user acceptance test (UAT) scripts for loan and home assistance programs.
  • Collaborated with the development team to identify, document, and resolve software defects.
  • Utilized Agile methodologies to ensure timely delivery of test results and feedback.
  • Gained practical experience in SDLC and STLC processes, improving test case accuracy and quality.
Volunteer Experience
Volunteer Science TutorSeptember 2022 – April 2026
Ethiopian Community, Philadelphia, PA
  • Provided one-on-one tutoring in mathematics and science, helping students improve grades by at least one letter grade on average.
  • Created customized lesson plans and practice exercises to match each student's learning style and academic goals.
  • Mentored students in study habits, problem-solving strategies, and time management to build long-term academic confidence.
Projects
Cybersecurity Researcher
Harrisburg University of Science and Technology | Philadelphia, PA | September 2021 – December 2021
  • Analyzed data from 100+ users to identify vulnerabilities in social media use, presenting solutions to faculty and students that reduced potential threats.
  • Recommended security best practices including patch management, secure configurations, and privacy controls.
  • Developed and delivered a concise security awareness guide to help users recognize and avoid common cyber threats.
Security Awareness Chatbot
  • Built an AI-powered chatbot using NLP to deliver personalized cybersecurity training, improving phishing recognition rates in pilot testing.
View Project
Phishing Attack Simulator
  • Created a phishing simulation tool with adaptive difficulty to train users on threat detection and response.
View Project
Honeypot Threat Intelligence System
  • Created a distributed honeypot network designed to detect, analyze, and classify real-world cyber threats and provide actionable intelligence.
View Project
AWS VPC + Bastion Honeypot Foundation (Terraform)
  • Built a production-style AWS network foundation as Infrastructure-as-Code — multi-AZ VPC, bastion host with SSM access, private EC2, NAT Gateway, encrypted S3 bucket for honeypot logs, SNS alert topic, and IAM roles scaffolded for a future serverless CloudTrail threat detector.
View Project
AI Resume Analyzer
  • Built an AI-powered tool that scores resumes against job descriptions, surfaces missing ATS keywords, rewrites weak bullets into metric-driven ones, and exports a polished PDF report. Privacy-first client-side architecture using the Claude API, Mammoth.js, and jsPDF.
View Project
Burlington Beef – QueueDesk
  • Built a digital queue management system for a local Philadelphia butcher shop — replaced paper queue lists and manual texting with automated WhatsApp/SMS notifications and a live counter-facing display. Deployed to production as a single-file web app on Cloudflare Pages.
View Project
Personal Portfolio Website
  • Designed and deployed a responsive portfolio site using Next.js and React to showcase projects and technical skills.
View Website
Education
Bachelor of Science, Computer and Information Sciences | GPA: 3.96
Harrisburg University | Aug 2020 – May 2022
Associate in Applied Science, Computer Information Systems | GPA: 3.71
Community College of Philadelphia | Sep 2018 – Aug 2020

🍯 Honeypot Threat Intelligence

Security Research & Threat Analysis
LIVE THREAT MAP — DEMO MODE
DETECTED THREATS (24H)
0
Stream active
Simulated data for demonstration. Real attack patterns observed by the honeypot deployment are stored securely and analyzed offline.
🎯

Project Goal

Deploy a distributed honeypot network to detect, analyze, and classify real-world cyber threats, providing actionable intelligence on emerging attack patterns and malicious actor behaviors.

Problem

Organizations lack real-time visibility into active threats targeting their infrastructure. Traditional security tools are reactive rather than proactive, missing opportunities to identify new attack vectors and threat actor tactics before they cause damage.

👤

My Role

Security Researcher & Systems Engineer — Designed the honeypot architecture, deployed and configured decoy services, developed threat analysis workflows, created the intelligence dashboard, and produced threat intelligence reports.

🔧

Tech Stack

PythonDockerELK StackT-PotSuricataVirusTotal APIPostgreSQLGrafana

Key Features

  • Multi-service honeypot deployment (SSH, HTTP, SMB, RDP, Telnet)
  • Real-time threat data collection and aggregation
  • Automated malware analysis and classification
  • Geographic threat mapping and IP reputation tracking
  • Attack pattern recognition using machine learning
  • Integration with threat intelligence feeds (MISP, AlienVault OTX)
  • Comprehensive dashboard for threat visualization
  • Automated alert system for critical threat detection
📊

Impact & Results

  • Captured and analyzed over 10,000 unique attack attempts in the first month
  • Identified 15+ new malware variants not previously cataloged
  • Provided early warning of emerging attack campaigns targeting specific industries
  • Generated actionable intelligence reports used by security operations teams
  • Contributed threat indicators to public threat intelligence platforms
  • Improved organizational security posture through proactive threat hunting
  • Reduced incident response time by 40% through early threat detection

🤖 Security Awareness Chatbot

AI-Powered Cybersecurity Education
🎯

Project Goal

Develop an interactive AI-powered chatbot to educate users about cybersecurity best practices and raise security awareness in an engaging, accessible way.

Problem

Traditional security training is often boring, time-consuming, and fails to engage users effectively. Many people lack basic cybersecurity knowledge, making them vulnerable to attacks.

👤

My Role

Full-Stack Developer & AI Integration Specialist — Designed the conversational AI system, developed the knowledge base, implemented the web interface, and deployed the solution.

🔧

Tech Stack

ReactNode.jsOpenAI APIJavaScriptCSSHTML

Key Features

  • Interactive conversational interface for engaging security discussions
  • Comprehensive coverage of cybersecurity topics including phishing, password security, and social engineering
  • Personalized security recommendations based on user responses
  • Security assessment quizzes to test knowledge retention
  • Regular updates to include emerging security threats and best practices
  • User-friendly interface accessible across multiple devices
📊

Impact & Results

  • Provides accessible cybersecurity education to users of all technical backgrounds
  • Helps organizations improve their security awareness training programs
  • Reduces the risk of security incidents through improved user knowledge
  • Creates a more engaging learning experience compared to traditional security training
  • Offers a scalable solution for security education that can reach many users

⚠️ Phishing Attack Simulator

Security Training Platform
🎯

Project Goal

Create an educational cybersecurity tool that simulates phishing attacks to train users on identifying and avoiding threats in a safe, controlled environment.

Problem

Phishing remains one of the most effective attack vectors, yet traditional training methods fail to provide hands-on experience. Users need practical exposure to recognize and respond to phishing attempts.

👤

My Role

Full-Stack Developer & Security Specialist — Designed the simulation platform, created phishing templates, developed the scoring system, implemented analytics, and built the user interface.

🔧

Tech Stack

ReactNode.jsExpressMongoDBChart.jsJWT Authentication

Key Features

  • Realistic phishing email templates with customizable elements
  • Multiple difficulty levels to progressively challenge users
  • Immediate feedback and educational content after each simulation
  • Administrative dashboard for tracking user performance
  • Detailed analytics on common user mistakes and improvement over time
  • Customizable training modules focused on different phishing techniques
  • Scheduling system for periodic training campaigns
📊

Impact & Results

  • Provides hands-on experience with phishing attacks in a safe environment
  • Teaches users to identify common indicators of phishing attempts
  • Builds awareness of social engineering techniques used by attackers
  • Creates measurable improvement in user security awareness
  • Helps organizations reduce vulnerability to phishing-based attacks
🔍

Social Media Cybersecurity Research

Research project analyzing cybercriminal activities across social media platforms with comprehensive security recommendations.

🎯

Project Goal

Conduct a comprehensive qualitative study to understand user awareness and behaviors regarding cybersecurity threats on social media platforms, specifically TikTok and Facebook.

📋

Overview

This research project involved interviewing over 100 active TikTok and Facebook users to assess their understanding of social media security threats, privacy concerns, and protective behaviors. The study aimed to identify knowledge gaps and develop actionable recommendations for improving cyber-awareness among social media users.

Problem

Social media platforms have become primary targets for cybercriminals, yet user awareness of security threats remains critically low. Many users unknowingly engage in risky behaviors that expose them to phishing, identity theft, account takeovers, and other cyber attacks.

👤

My Role

Lead Researcher & Cybersecurity Analyst — Designed the research methodology, conducted user interviews, analyzed qualitative data, identified security awareness patterns, and developed comprehensive recommendations for users and platform providers.

🔬

Research Methods

  • Semi-structured interviews with 100+ TikTok and Facebook users
  • Qualitative data analysis using thematic coding
  • User behavior observation and pattern identification
  • Threat landscape analysis across social media platforms
  • Literature review of existing social media security research
  • Cross-platform security comparison studies
📚

Key Topics Studied

  • Phishing and social engineering attacks on social media
  • Privacy settings awareness and configuration
  • Account security practices (passwords, 2FA, recovery options)
  • Recognition of fake accounts and impersonation attempts
  • Malicious link identification and safe browsing habits
  • Data sharing behaviors and privacy implications
  • Awareness of platform-specific security features
  • Response to suspicious messages and friend requests
🛠️

Tools Used

NVivo Microsoft Excel Google Forms Qualtrics Zoom OSINT Tools Statistical Analysis Software
🔍

Key Findings

78%of users were unaware of basic phishing indicators on social media platforms
23%of participants used two-factor authentication on their social media accounts
65%of users accepted friend requests from unknown profiles without verification
89%of participants had never reviewed or adjusted their privacy settings after initial setup
42%of users clicked on suspicious links from friends' accounts without questioning authenticity
71%were unaware that their public posts could be used for social engineering attacks
15%could correctly identify all signs of a compromised account
📊

Impact & Results

  • Identified critical gaps in social media security awareness among everyday users
  • Developed evidence-based recommendations adopted by university IT security programs
  • Created user-friendly security guidelines distributed to 500+ social media users
  • Informed the development of targeted security awareness campaigns
  • Contributed to academic understanding of social media threat perceptions
  • Provided actionable insights for improving platform security education
  • Highlighted the need for better default security settings on social platforms
📋

Burlington Beef – QueueDesk

Digital queue management system built for a local butcher shop — replacing paper queue lists and one-by-one manual texting with automated SMS/WhatsApp notifications and a live counter-facing display.

🎯

Project Goal

Replace a paper-and-pen queue workflow with a digital system that automates customer notifications and gives the counter a live view of who's next — so staff spend less time texting and more time serving customers.

📋

Overview

A single-page web app the shop runs in the browser. Staff check customers in with name and phone, the queue updates live, a one-tap "Ready" button fires off a WhatsApp/SMS notification, and a second screen facing the counter displays the current queue for walk-in customers to see their position at a glance.

Problem

The shop was tracking orders on paper clipboards and texting each customer individually from a staff phone. This led to missed pickups, mis-ordered notifications, and lost slips during busy hours. There was no visibility for customers on where they stood in line.

👤

My Role

Full-stack developer — gathered requirements on-site with the shop owner, designed the dual-screen UX (staff panel + counter display), built the app as a single-file HTML deliverable, deployed it to Cloudflare Pages, and trained staff on day one.

🔬

Technical Approach

  • localStorage for persistence — survives tab reloads and works fully offline
  • WhatsApp click-to-chat deep links for notifications (no paid SMS gateway needed)
  • Dual-view architecture: staff admin panel + counter-facing display screen
  • Phone number normalization and validation to prevent mis-sends
  • Daily queue reset with served-customer history retained for metrics
  • Deployed as single-file HTML for zero-config hosting on Cloudflare Pages
🛠️

Tools Used

HTML/CSS/JS localStorage WhatsApp API Cloudflare Pages Responsive UI
📊

Impact & Results

  • Eliminated paper queue lists and one-by-one manual texting
  • Cut customer pickup confusion and staff notification overhead significantly
  • Deployed to production and in active daily use at a Philadelphia butcher shop
  • Zero recurring cost — no SMS gateway subscription, no backend servers
  • Trained non-technical staff to use and reset the system themselves
📄

AI Resume Analyzer

An AI-powered tool that scores resumes against job descriptions, surfaces missing ATS keywords, rewrites weak bullets into metric-driven ones, and exports a polished PDF report.

🎯

Project Goal

Help job seekers actually make it past ATS filters — by turning vague feedback like "tailor your resume" into a concrete, AI-generated diff they can apply in minutes.

📋

Overview

A browser-based application where the user uploads a resume (PDF or DOCX) and pastes a job description. The Claude API analyzes both, returns an ATS-compatibility score with an explainable breakdown, flags missing keywords, and generates rewritten versions of weak bullet points using metric-driven language. The final report exports as a clean, branded PDF.

Problem

Most resumes never reach a human — ATS systems screen them out based on keyword and format mismatches before a recruiter ever sees them. Candidates know this, but existing tools either charge monthly subscriptions, give generic advice, or don't actually rewrite content. There's no fast, private, affordable way to get specific fixes.

👤

My Role

Solo product developer — end-to-end ownership of architecture, Claude API integration, prompt engineering, UX design, PDF generation, demo mode, and go-to-market strategy (Product Hunt launch planned).

🔬

Technical Approach

  • Claude API for resume analysis, scoring, and bullet rewriting
  • Mammoth.js to parse DOCX files client-side without a server round-trip
  • jsPDF for branded PDF report export with structured sections
  • Demo mode with sample resumes and canned responses — users can try it without an API key
  • Privacy-first: all processing is client-side; resume content is never stored
  • Shipped as a single-file HTML for easy distribution and self-hosting
🛠️

Tools Used

Claude API React jsPDF Mammoth.js Single-file HTML Prompt Engineering
📚

Key Features

  • ATS compatibility score with an explainable, section-by-section breakdown
  • Keyword gap analysis — shows exactly which job-description terms are missing
  • AI-powered bullet rewriting — weak bullets become metric-driven, action-oriented
  • Polished PDF report export with before/after comparisons
  • Demo mode for users without a Claude API key
  • Works offline-first after initial load
📊

Impact & Results

  • Product Hunt launch in preparation as a monetizable standalone tool
  • Proof-of-concept for shipping Claude API in a single-file, client-side product
  • Privacy-preserving by design — no servers, no data retention
  • Zero hosting cost — deployable to any static host
☁️

AWS VPC + Bastion (Terraform)

Production-style AWS network foundation deployed entirely as Infrastructure-as-Code — a reusable, auditable base for three cybersecurity projects.

🎯

Project Goal

Build a secure, reproducible AWS network foundation as code — so every future cybersecurity project (honeypot, threat detector, etc.) starts from the same hardened baseline and can be torn down and rebuilt with a single command.

📋

Overview

A Terraform module that provisions a production-style AWS network: a VPC across two Availability Zones with public and private subnets, a bastion host for secure admin access, a private EC2 instance, a NAT Gateway for outbound traffic, an encrypted S3 bucket for honeypot logs, an SNS topic for alerts, and IAM roles scaffolded for a future serverless threat detector reading CloudTrail events.

Problem

Clicking through the AWS console to set up secure networking is error-prone, non-reproducible, and hard to audit. Every cybersecurity project I wanted to ship (honeypot, SIEM feeds, threat detection) needed the same network foundation — and manually recreating it each time was wasteful and introduced configuration drift.

👤

My Role

Infrastructure architect and IaC developer — designed the network topology, wrote the Terraform modules, configured security groups and IAM with least-privilege defaults, and validated the full stack through terraform plan / apply / destroy cycles.

🔬

Technical Approach

  • Modular Terraform design — network, compute, storage, and IAM kept in separate modules
  • Multi-AZ deployment for high availability (2 AZs, public + private subnets each)
  • Least-privilege IAM roles scoped to specific services and actions
  • Encrypted S3 bucket with versioning enabled for honeypot log retention
  • SSM Session Manager option on bastion for keyless admin access
  • SNS topic and IAM roles pre-scaffolded for a future Lambda-based threat detector
  • Sensitive values (key pair names, alert email) parameterized via tfvars
🛠️

Tools Used

Terraform AWS VPC AWS EC2 AWS S3 AWS IAM AWS SNS NAT Gateway CloudTrail AWS CLI
📚

Key Features

  • VPC spanning two Availability Zones with public and private subnets
  • Bastion host in public subnet with SSH and SSM Session Manager access
  • Private EC2 instance reachable only via the bastion
  • NAT Gateway providing outbound internet for the private subnet
  • Encrypted, versioned S3 bucket dedicated to honeypot log ingestion
  • SNS alert topic ready for security notifications
  • IAM roles scaffolded for a future serverless CloudTrail threat detector
📊

Impact & Results

  • Production-ready network foundation shared across three cybersecurity projects
  • Demonstrates IaC best practices — least privilege, encryption at rest, multi-AZ
  • Full stack deployable or destroyable with a single terraform apply / destroy
  • Reusable baseline that eliminates manual console drift between environments
  • Serves as a portfolio artifact demonstrating cloud security engineering
✉️

PhishGuard Trainer

Email 1 of 10: Account Phishing
1/10
🛡️

Security Awareness Chatbot

AI-Powered Cybersecurity Assistant
Suggested Questions (Click to ask):

Honeypot Threat Intelligence

Live Simulated Threat Feed
Total Threats
0
High Severity
0
Countries
0
LIVE THREAT FEED
This is a simulated demo. Actual threat data is stored securely and analyzed for security research.
      ,##,,eew,
    ,#############C
   a################@##
   7####^`^"7W7^"@####
   @#@b`        ^@#@^
    ##^,,,,    ,,,,^#^
   ,,@######"########=
   .''555"`  '5555b|
    T"@   ,,,^,mg,@,*
       %p||`~~'.#`
        ^Wp   ,#T
        :b''@@b^}
     ^       `'b 3-
    .<` 'p   ^v   #  b
   {     }   #"GpGb   [
   `C      3 * @####Nl
   '          ^@##b
biruk@portfolio:~
visitor@biruk:~$