Hi, my name is

Vlad Alexis.

I secure systems and harden the modern enterprise.

I'm a cybersecurity professional with hands-on experience in vulnerability management, incident response, and endpoint security. I specialize in eliminating critical risks, hardening systems against real-world threats, and translating security findings into action.

View my projects

01. About Me

I'm a cybersecurity professional with a deep operational background spanning vulnerability management, incident response, endpoint security, and compliance. My work focuses on eliminating critical risks at the source — through automation, configuration hardening, and disciplined remediation workflows.

At LOG(N) Pacific, I engineered PowerShell-based remediations that eliminated 100% of critical vulnerabilities across Windows and Linux environments and reduced high-severity findings by 90%. At Integrated Computer Services, I hardened Windows endpoints and automated Active Directory provisioning to enforce consistent security baselines across 10+ client environments.

I hold an M.S. in Cybersecurity (Magna Cum Laude) from Pace University's Seidenberg School and a B.A. in Computer Science & Mathematics from Purchase College. Currently, I'm focused on advancing applied security practice — particularly in STIG compliance, endpoint hardening, and detection engineering.

Education

M.S. Cybersecurity
Pace University — Seidenberg School
Magna Cum Laude · 2025
B.A. Computer Science & Mathematics
Purchase College
2019

02. Where I've Worked

Cybersecurity Support Analyst @ LOG(N) Pacific

Jan 2025 – Present · Remote, NY
  • Performed enterprise vulnerability assessments using Tenable on Windows and Linux environments; prioritized findings by risk and business impact for remediation planning.
  • Engineered PowerShell-based remediations that eliminated 100% of critical vulnerabilities, reduced high-severity findings by 90%, and medium findings by 76%.
  • Audited system configurations against DISA STIGs using Tenable, driving high compliance scores across managed endpoints.
  • Managed inbound NSG/firewall rules to reduce internet exposure, achieving a 100% reduction in brute-force incidents.

Cybersecurity Intern @ Integrated Computer Services

Oct 2025 – Jan 2026 · Glen Rock, NJ
  • Delivered Windows Tier 1 & 2 support and Active Directory administration including user provisioning, group policy management, and lifecycle maintenance.
  • Developed PowerShell scripts to automate user provisioning, reducing manual effort and enforcing consistent security configurations across 10+ client environments.
  • Configured and deployed laptops and desktops with hardened baselines aligned to organizational security standards.

Technical Specialist @ Apple

Nov 2019 – Present · Nanuet, NY
  • Supported 5+ years of security-adjacent operations: incident documentation, root cause analysis, data protection compliance, and IT asset lifecycle management.
  • Resolved 20+ high-priority technical incidents, improving operational reliability and establishing repeatable troubleshooting procedures.
  • Provided macOS and iOS support, diagnosing software, hardware, and connectivity issues; achieved 100% customer satisfaction while enforcing data handling standards.

Data Analyst @ Apple (Career Experience)

Jun 2021 – Nov 2021 · Nanuet, NY
  • Coordinated user feedback sessions, test plans, and UAT cycles to validate accessibility features in internal apps, gaining direct QA experience.
  • Filed and resolved 20+ high-priority incidents, improving internal app performance by 60%.
  • Redesigned and rolled out internal Tableau dashboards across five departments, increasing engagement by 40%.
  • Translated stakeholder requirements into technical documentation supporting global teams.

03. Technical Skills

// security operations

Tenable Vulnerability Management Incident Response EDR Endpoint Security Metasploit XDR / IDS / IPS

// compliance & frameworks

NIST 800-37 NIST 800-53 DISA STIG ISO 27001 Risk Assessment

// scripting & automation

PowerShell Bash KQL Automated Remediation

// data & analytics

Tableau KQL Log Querying KPI Dashboards Pandas (learning) Spark (learning)

// networking & firewalls

NSG Management Firewall Rules SonicWall Exposure Reduction

// platforms & systems

Windows (AD, M365) macOS Linux Active Directory Tier 1 & 2 Support

04. Security Projects

DISA STIG Implementation

Password History Policy Enforcement

STIG ID: WN10-AC-000020
Feb – May 2025

Designed and implemented a Group Policy solution enforcing a minimum 24-password history requirement on Windows 10 endpoints. Reduces credential reuse risk and aligns endpoint configurations with NIST 800-53 and DISA STIG guidance for password lifecycle management.

Group Policy Windows 10 DISA STIG NIST 800-53 PowerShell
View on GitHub →
DISA STIG Implementation

Audit Policy for User Account Management

STIG ID: WN10-AU-000035
Feb – May 2025

Configured advanced audit logging for User Account Management events on Windows 10. Enables detection and forensic traceability of privilege escalation, account creation, group changes, and other unauthorized account activity — a foundational control for any incident response program.

Audit Policy Windows Event Log DISA STIG Forensics Detection
View on GitHub →

05. Coursework

Class Project

Honeypot Deployment

Graduate Coursework — Pace University

Designed and deployed a honeypot to capture and analyze attacker behavior in a controlled environment. Used the collected telemetry to practice threat intelligence gathering, IOC extraction, and incident analysis — building intuition for how adversaries probe, enumerate, and exploit exposed services.

Honeypot Threat Intelligence Incident Analysis IOC Extraction Log Analysis
Graduate Coursework

Network Security

M.S. Cybersecurity — Pace University

Hands-on graduate course covering network attack vectors, forensic analysis, threat intelligence, risk assessment, IDS/IPS configuration, and secure enterprise network architecture and policy design. Lab work included attacking and defending live network environments, configuring intrusion detection/prevention systems, and enforcing security policies end-to-end.

IDS / IPS Network Forensics Risk Assessment Threat Intelligence Policy Design Attack & Defense Labs

06. Get In Touch

Let's connect.

I'm always open to conversations about cybersecurity roles, collaboration on security tooling, or interesting problems in vulnerability management and detection engineering. My inbox is open.

Say Hello