Cybersecurity · Military Veteran · CTF Competitor
I approach every project with curiosity and a security-first mindset, continuously learning and building hands-on. Targeting Security Analyst, Threat Detection, GRC, and IAM roles.
About Me
The discipline and accountability I built in the Marine Corps translates directly into how I approach security work.
I served in the U.S. Marine Corps as an Asset Manager, overseeing the full supply chain lifecycle for 4,000+ Naval aviation assets valued at $57.8M across domestic and international locations. I enforced security frameworks, clearance protocols, and strict accountability at every level.
After transitioning out, I completed a cybersecurity internship at Tomorrow's Leaders Today where I conducted risk analysis, drafted disaster recovery plans, and analyzed over 2,000 firewall logs. I earned my Associate's in Information Systems Cybersecurity in December 2024.
Today I hold four industry certifications: CompTIA Security+, Network+, A+, and Tech+, along with the Google IT Support Certificate and additional badges demonstrating knowledge of CCNA commands and principles. I'm an active CTF competitor, having placed 56th out of 457 teams in the National Cyber League (NCL) Spring 2024 tournament, with more competitions ahead. I build self-hosted infrastructure projects to keep my skills sharp and hands-on between competitions.
I'm also President of the Student Veterans of America chapter at Collin College, committed to being a resource for other vets making the move into tech.
Capabilities
SIEM alerting, log analysis, incident triage, and alert tuning. Hands-on with Splunk and open-source tooling across real internship and CTF environments.
Two NCL tournaments competing across nine challenge categories. Applied password cracking, network traffic analysis, log analysis, and Linux command-line techniques against real scored targets.
Designed, deployed, and hardened self-hosted infrastructure on Docker. Identified and closed real security gaps: eliminated plaintext HTTP, rejected port forwarding in favor of zero-exposure Cloudflare Tunnel, enforced MFA, and isolated sensitive OAuth credentials to a dedicated account to contain blast radius.
Conducted formal risk analysis, drafted disaster recovery and business continuity plans, performed firewall log review across 2,000+ entries — all during a hands-on cybersecurity internship.
Built & Deployed
Hands-on work across infrastructure, automation, and AI — each one solving a real problem.
Identified and closed five security gaps in a self-hosted automation platform: plaintext HTTP, credential exposure, no remote access path, broad OAuth blast radius, and no MFA. Each gap was addressed deliberately before production exposure.
View Project →Built a fully offline AI stack running large language models with no third-party APIs and no data leaving the machine. Containerized with Docker, served by Ollama, accessed via Open WebUI.
View Project →National Cyber League
Breakdowns from real tournament competition — what Eduardo tackled, how he approached it, and what he learned.
His first competitive CTF. Nine challenge categories — OSINT, cryptography, log analysis, and more. Placed 56th with limited tooling experience and hardware never pushed to its limits.
Read Writeup →Larger field, harder challenges, less prep time — and more flags captured than the previous season. Stopped treating categories as isolated skills and started chaining techniques together.
Read Writeup →Eduardo is open to Security Analyst, Threat Detection, GRC, and IAM roles.