Projects
SnowBe Online PCI DSS Audit Plan
-
Description: Collaborated in a team to conduct a mock PCI DSS compliance audit for a fictional e-commerce company, SnowBe Online.
-
Accomplishments:
-
Designed a full audit plan including scoping, risk assessment, and evidence collection procedures.
-
Developed interview questions and testing methods to evaluate compliance with PCI DSS requirements.
-
Produced a final audit report summarizing findings and remediation strategies to improve data protection and payment security.
-
System Development Life Cycle (SDLC) Security Integration Project
-
Description: Created and embedded cybersecurity policies into each stage of the System Development Life Cycle for a simulated company environment.
-
Accomplishments:
-
Authored and implemented policies for patch management, access control, and vulnerability mitigation.
-
Ensured alignment with NIST and ISO 27001 standards to maintain security throughout system design and deployment.
-
Delivered a detailed policy plan that demonstrated secure software engineering practices.
-
Incident Response and Risk Management Simulation
-
Description: Led an individual capstone-style project simulating a cyberattack against an enterprise network and executing a structured incident response.
-
Accomplishments:
-
Performed threat analysis and digital forensics to identify attack vectors and compromised assets.
-
Drafted an incident response report outlining detection, containment, eradication, and recovery steps.
-
Proposed improvements to organizational security posture and business continuity planning.
-
