// SOC analyst · detection engineering

Eduardo
Bustamante.

Cybersecurity student at UNO and SOC Analyst Intern with the NebraskaCYBER MATRIX program. I build and tune detections, triage alerts, and analyze threats in real environments.

View writeups GitHub →

Currently SOC Analyst Intern · NebraskaCYBER MATRIX

Focus Wazuh · detection engineering · blue team

Degree BS Cybersecurity · Fast Track MS

Minor Computer Science

Concentration NSA CAE-CO (Cyber Operations) / CAE-CD (Cyber Defense)

01 Recent writeups

Detecting bootable USB media with Wazuh

detection 2025-04

02 Focus areas

Detection

Wazuh rule engineering

Writing and tuning detection rules based on real attacker behavior in production environments.

→

Operations

SOC analysis

Alert triage, threat analysis, and incident response as part of the NebraskaCYBER MATRIX SOC program.

→

Infrastructure

Home lab

Proxmox, pfSense + Suricata, isolated malware sandbox, full detection pipeline.

→

EduardoBustamante.

Eduardo
Bustamante.