Home SIEM Lab
Planned — Not Yet Deployed
Planning a segmented home lab with a SIEM stack for log ingestion, alerting, and planned triage practice. Architecture designed; not yet deployed.
Cody Briseno
IT Support · Networking · Junior SOC · Homelab · Malware Analysis · Reverse Engineering ↗
IT support and networking professional with CompTIA A+, Network+, Security+, and LPI Linux Foundations earned. U.S. Army IT Specialist and UPS Senior IT Technician. Pursuing CySA+ while building toward junior SOC analyst roles.
Learning Roadmap
Proven foundations are backed by certifications and real-world production experience. In-progress, planned, and long-term items are clearly labeled — nothing is implied as complete professional experience.
↳ CompTIA A+ · Senior IT Technician (UPS) · endpoint & user support · ticketing · hardware/OS troubleshooting
Production endpoint support and IT operations as Senior IT Technician at UPS. Hardware troubleshooting, OS support, ticketing systems, and user-facing technical resolution in a high-availability environment.
↳ CompTIA Network+ · production troubleshooting (UPS & Army) · subnetting · VLANs · PoE & cabling
Network troubleshooting in production environments — switches, routers, subnetting, VLANs, cabling, and PoE. Applied across UPS IT operations and U.S. Army IT Specialist role.
↳ CompTIA Security+ earned · IT Specialist context (U.S. Army) · CySA+ and PenTest+ in progress · log analysis study
Building security knowledge through certifications and structured study. U.S. Army IT Specialist role provides operational IT context. CySA+ and PenTest+ in progress — focusing on detection, defense, and SOC fundamentals.
↳ Architecture designed · pfSense + Proxmox + Wazuh stack planned · Not yet deployed
Planning a controlled home lab for SIEM practice, Linux/Windows administration, network segmentation, and security tooling. Architecture designed — not yet deployed.
↳ No current professional experience · Planned study area after stronger SOC and lab foundations
Planned study area following stronger SOC and lab foundations. Static and dynamic analysis, behavioral analysis, and safe lab workflows. Not a current skill.
↳ Aspirational direction · No current experience · Future focus after malware analysis foundations
Long-term focus area after stronger cybersecurity, malware analysis, and systems internals foundations. Not a current claim.
Portfolio Console
Certification status, current focus area, and planned lab roadmap. Not a live system — a portfolio console.
Lab
Planned
Focus
Junior SOC / Security
Certs (WIP)
CySA+ / PenTest+
Long-term Goal
Malware Analysis → RE
interactive terminal → try 'cat roadmap.txt' or 'help'
Build Plan
Planned — Not Yet Deployed
Planning a segmented home lab with a SIEM stack for log ingestion, alerting, and planned triage practice. Architecture designed; not yet deployed.
Planned — Long-term Study Area
Planned writeup series documenting static and dynamic analysis lab work as it is completed. Not yet started — a long-term study goal after stronger SOC and security fundamentals.
In Progress
Structured notes from production IT and lab work being organized and documented. Covers subnetting, VLANs, routing, and field troubleshooting.
Tools & Knowledge
Experience
Production IT operations, U.S. Army IT service, and operations leadership — paired with a certification track aimed at junior SOC and security analyst roles.
UPS · Arlington, TX
Jan 2024 — Present
Enterprise endpoint support, production IT operations, and field troubleshooting in a high-availability logistics environment.
U.S. Army · Dallas, TX
May 2023 — Present
Military IT systems, technical readiness, and operational technology support.
UPS · Texas
Aug 2019 — May 2023
Operations leadership and team management.
Western Governors University
Expected 2027
Pursuing a formal cybersecurity degree alongside hands-on certifications and field experience.
Technical Writing
None published yet — in progress and planned
Technical writeups documenting real work, certifications, and lab builds. Each post is published only when the content is complete and independently verified — no placeholders presented as finished work.
Documenting real scenarios where subnetting knowledge made the difference — misconfigured VLAN trunks, overlapping IP ranges, and address planning for small business networks.
Screenshots planned
Tracking the full setup of a segmented home network with pfSense for routing, Proxmox for virtualization, and Wazuh as the SIEM. Will be published section by section as each component goes live.
Notes from CySA+ study covering log sources, detection logic, and basic incident triage. Will be published as content is completed and verified.
Writing more as I build and study.
Posts go live when content is complete and technically verified — not before.
Open to Opportunities
Looking for junior SOC analyst, IT support, or security internship roles. Building toward a security analyst career through certifications, structured study, and hands-on lab work.