My Portfolio

I’m Brandon Way, an IT Specialist focused on cybersecurity, compliance, and infrastructure security. My background spans Windows server management, Active Directory, Microsoft 365, and enterprise networks, but my true passion is developing practical security tools that strengthen defenses while helping organizations meet frameworks like CMMC Level 2 and NIST 800-171.

​

My portfolio reflects experience on both the Blue Team and Red Team. On the defensive side, I created a lightweight SIEM for monitoring Windows event logs, generating alerts, and visualizing suspicious activity through a web dashboard. I also built TIWatcher, a threat intelligence tool that checks live network connections against malicious indicators and sends real-time alerts via Microsoft Teams. For compliance, I implemented GPO baselines that enforce FIPS, audit logging, and session lock policies.

​

On the offensive side, I developed a phishing simulation platform using Flask and Office 365 SMTP, complete with tracking, analytics, and exportable reports. This helps organizations test resilience against social engineering while improving employee awareness.

I also designed a CMMC Risk Register web app that imports vulnerability scan results (Nessus/OpenVAS), maps them to CMMC controls, and visualizes risks with interactive dashboards — bridging governance with hands-on security.

​

What motivates me is the balance of sword and shield: simulating threats to expose weaknesses while building defenses to prevent them. My goal is to grow into a cybersecurity engineer and IT leader, leveraging technical skill and compliance knowledge to safeguard organizations against evolving threats.