Cybersecurity Engineer
Information Security Student
University of Information Technology,
VNU-HCM
Entry-level Cybersecurity Engineer experienced in SIEM/SOAR/XDR deployment, applied cryptography, and threat detection. Skilled in building security monitoring environments, automating response workflows with AI, and developing secure data applications.
Cybersecurity Engineer
Information Security
An Intelligent SOC Ecosystem
for Monitoring, Detection, and Response to Cyber Attacks
Research and implementation of an Intelligent SOC Ecosystem integrating SIEM, SOAR, and a proposed SmartXDR model. The system aggregates multi-layer telemetry from Wazuh, Suricata, Zeek, and pfSense. By leveraging AI for semantic alert analysis, it effectively reduces false positives and orchestrates automated response playbooks. The architecture was validated against MITRE ATT&CK scenarios (Brute-force, SQLi, Malware) to demonstrate optimized MTTD/MTTR metrics.
Centralized Security Information and Event Management
Deployed a Security Information and Event Management (SIEM) solution leveraging the Elastic Stack (ELK) to collect, process, analyze, and visualize cybersecurity events within a simulated environment. The project focused on monitoring logs from Windows and Linux systems, along with security devices like Suricata and pfSense, to detect, investigate, and respond to threats.
An enterprise-grade secure file storage system featuring Hybrid CP-ABE and zero-trust multi-layer access control.
A comprehensive enterprise-grade file storage system implementing Hybrid Ciphertext-Policy Attribute-Based Encryption (CP-ABE) integrated with Supabase, providing highly secure file management, multi-layer Attribute-Based Access Control (ABAC), and high-performance caching.
Commercial-Grade Network Intrusion Detection/Network Security Monitoring System
Comprehensive network security monitoring solution using Security Onion platform. Implemented full-spectrum threat detection with Suricata IDS, Zeek network analysis, and Elasticsearch SIEM integration for real-time security monitoring.
Database Confidentiality and Access Control in Cloud-native DBMS
Advanced database protection system combining AES-GCM-256 encryption with CP-ABE (Ciphertext-Policy Attribute-Based Encryption) for fine-grained access control. Features ABAC authentication and secure data management in Amazon RDS MySQL.
Advanced Encryption for Data Protection
A hybrid encryption library combining Ciphertext-Policy Attribute-Based Encryption (CP-ABE) with AES-GCM to enable fine-grained access control and secure data confidentiality. This library supports ABAC (Attribute-Based Access Control) authentication and facilitates robust encryption/decryption workflows for secure data sharing and management across distributed systems.
Certificate of Commendation for Very Good performance (2022-2025)
Security tools and research implementations
Outstanding contributions to Youth Union activities
Outstanding Youth Exemplifying Ho Chi Minh's Teachings (2023-2024)
Always open to discussing SOC opportunities, security research collaborations, or sharing knowledge about cybersecurity and information security.