<about_me>
I am Oleksandr Sheniak, a cybersecurity professional with expertise in cloud security, enterprise risk management, and security operations. My background combines a Master’s degree in Information and Communications Systems Security with a Master’s in Public Management and Administration, giving me both the technical foundation and the strategic perspective to align security with business priorities.
I bring experience across technology, business leadership, and project management, having led teams, managed IT-driven operations, and delivered solutions in fast-paced environments. This blend of skills allows me to approach cybersecurity not only as a technical discipline but also as a business enabler.
- Cloud Security & Identity Access Management (IAM)
- Threat Detection, SIEM, and Incident Response
- Vulnerability Management & Risk Assessment
- Secure System & Network Architecture
- Governance, Risk, and Compliance (GRC)
I am actively building advanced expertise through CompTIA Security+ certification, cloud security labs, and applied projects that demonstrate real-world security solutions.
With a strong foundation and a clear focus on enterprise security, my career goal is to contribute to global leaders in technology — such as AWS, Microsoft, Google, or Oracle — helping organizations build resilient, secure, and scalable infrastructures.
<projects>
Hands-on projects that showcase my applied cybersecurity skills. Click to expand each:
Security+ SY0-701 Lab & Study System
Built a structured study plan for CompTIA Security+ (SY0-701), including domain-by-domain objectives, lab simulations, and hands-on exercises using Wireshark, Snort/Suricata, and SIEM platforms. Documented findings in GitHub repositories to demonstrate applied knowledge of CIA triad, Zero Trust, and incident response workflows.
Threat Intelligence Briefings
Produced concise intelligence reports on major cyber incidents (e.g., SolarWinds, WormGPT, AI-driven attacks), mapping them to MITRE ATT&CK tactics and techniques. Focused on adversary motivations, attack surfaces, and enterprise-level mitigations.
SOC Analyst & Incident Response Labs
Completed hands-on simulations with TryHackMe and custom labs, analyzing logs, triaging incidents, investigating phishing attempts, and tuning SIEM queries. Created post-incident reports to practice professional communication of technical findings.
DevSecOps Portfolio Development
Designed a learning and career roadmap around secure cloud and DevOps practices, including AWS IAM, GuardDuty, Terraform for Infrastructure as Code (IaC), and container security. Initial labs included securing Docker/Kubernetes environments and deploying least-privilege IAM policies.
System Hardening & Baseline Security
Configured and documented secure baselines for Windows and Linux virtual machines. Implemented firewall rules, endpoint protection, VPN access, and system monitoring. Tested host-based IDS/IPS, encryption policies, and password management solutions.
OSINT & Investigation Exercises
Practiced open-source intelligence (OSINT) investigations using PhoneInfoga, Truecaller, and OSINT Framework tools. Simulated phishing risk analysis, identity verification, and brand impersonation detection, producing written playbooks for enterprise application.