Richmond, Kentucky | EKU | Expected graduation December 2026

I build practical cybersecurity tools and readiness projects.

I am a Digital Forensics and Cybersecurity student at Eastern Kentucky University with hands-on experience in incident response, vulnerability assessment, system hardening, access control, and digital evidence analysis.

About

Security-minded, hands-on, and still learning fast.

My portfolio started as a place to show my work in Digital Forensics and Cybersecurity. It now reflects the kind of work I want to keep doing: practical tools, security readiness artifacts, and projects that make technical risk easier to understand.

I bring experience from an MSP cybersecurity internship, CCDC leadership, campus access-control work, and resident advising. That mix has shaped how I communicate, troubleshoot, document issues, and stay steady during operational incidents.

Career Direction

Looking for security work where documentation and defense both matter.

Seeking

Internship or entry-level cybersecurity roles

Interested in SOC, GRC, digital forensics, vulnerability management, identity, and security operations opportunities.

Current Study

Microsoft SC-300

Studying identity and access administration topics across Entra ID, authentication, authorization, app access, and governance.

Working Style

Evidence, communication, and steady follow-through

I like work that turns messy security signals into clear findings, next steps, and repeatable defensive habits.

Public GitHub Work

Selected Public Projects

GRC Tool Active

TabletopForge

Browser-based incident response tabletop exercise generator with downloadable Markdown reports and saved exercises.

  • Problem: Small teams need realistic tabletop prompts without starting from a blank page.
  • Built: Scenario outputs for ransomware, BEC, insider threat, cloud misconfiguration, and vendor breach exercises.
  • Next: Expand reporting, export options, and scenario depth as the project matures.
Incident ResponseGRCNext.js
Read case study
Security Scanner Python

Vulnerability Scanner

Windows 10 scanner that checks ports, Windows updates, running services, and firewall status for educational assessment.

  • Problem: Basic endpoint posture evidence is often scattered across separate commands.
  • Built: Multithreaded port scanning plus PowerShell and netsh posture checks.
  • Learned: Repeatable evidence collection makes even small tools more useful.
Vulnerability scanner port and services output Vulnerability scanner firewall rules output
PythonPowerShellWindows 10
Read case study
Password Tool Python GUI

Password Strength GUI

Tkinter password checker with real-time scoring, color-coded strength feedback, and guidance for stronger passwords.

  • Problem: Password guidance is easier to understand when users get immediate feedback.
  • Built: Real-time scoring across length, case, digits, and special characters.
  • Improve next: Add passphrase guidance and clearer policy examples.
Password strength checker showing a strong password result
TkinterPassword PolicyUX
View on GitHub
Portfolio GitHub Pages

TateWilson1.github.io

The GitHub Pages portfolio that showcases cybersecurity projects, resume details, contact links, and professional goals.

HTMLCSSResponsive
View on GitHub
GRC Repository Early

GRC-Governance-Risk-and-Compliance

Structured cybersecurity risk assessment work focused on simulated business gaps, vulnerabilities, and HIPAA, FERPA, and PCI DSS compliance risks.

  • Problem: Technical findings need business context before they can drive priorities.
  • Built: Risk register examples, executive summary language, and control-mapping notes.
  • Learned: Good GRC writing connects evidence to ownership and remediation.
GovernanceRisk AssessmentCompliance
Read case study
Security Toolkit Building

Security Toolkit

A consolidated home for small security scripts, lab notes, hardening checks, templates, and reusable assessment helpers.

  • Includes starter areas for Windows, Linux, M365 and Entra review, GRC templates, and scripts.
  • Current items include hardening checklists, access review notes, risk register structure, and incident note templates.
ScriptsLab NotesSecurity Checks
View on GitHub
Profile README

TateWilson1

The GitHub profile README covering cybersecurity interests, skills, CCDC leadership, and selected projects.

ProfileMarkdownGitHub
View on GitHub

Portfolio Proof

Case Studies

Project archive
Incident Response Readiness

TabletopForge

How I built a tabletop exercise generator that turns security scenarios into practical discussion guides and executive-ready artifacts.

Open case study
Governance, Risk, Compliance

GRC Risk Assessment

A structured risk assessment project focused on identifying gaps, mapping risks, and writing remediation-focused security documentation.

Open case study
Security Automation

Windows Vulnerability Scanner

A Python scanner that collects local posture signals from ports, services, updates, and firewall configuration.

Open case study

Proof Of Process

How I explain my work.

Frame

Problem

I start by naming the user, system, risk, or operational gap the project is meant to address.

Build

Evidence

I document what was built, what data it collects or produces, and what assumptions limit the result.

Improve

Next step

I close with what I learned and what I would improve next, so the work shows growth instead of just output.

Cyber Lab

Hands-on environments I can talk through.

Enterprise Defense

CCDC Practice Environment

Windows Server, Active Directory, Linux services, firewall defense, persistence detection, and incident response practice.

Identity & Cloud

Microsoft 365 / Entra Review

Access reviews, enterprise app and SSO cataloging, stale access identification, and tenant hardening checks.

Virtualization

Proxmox Labs

Virtualized Windows and Linux systems used for competition preparation, service defense, and repeatable practice.

Currently Working On

  • Expanding TabletopForge with stronger reporting and future PDF export.
  • Building out GRC artifacts that connect findings to CIS Controls, NIST AI RMF, and compliance requirements.
  • Studying for Microsoft SC-300 to strengthen identity and access administration knowledge.
  • Improving public project documentation so each repo shows purpose, setup, screenshots, and lessons learned.

Security Notes

Write-ups

Older Blog
Competition Defense

CCDC Lessons

What CCDC practice teaches about service ownership, persistence detection, incident response, and team communication.

Read write-up
Identity Review

M365 / Entra Review

A practical overview of access reviews, stale accounts, app consent, SSO cataloging, and tenant hardening checks.

Read write-up
Risk Thinking

GRC Risk Lessons

How to turn technical findings into risk language that supports prioritization and remediation planning.

Read write-up

Background

Education, skills, and experience

Education

Eastern Kentucky University

BS in Digital Forensics & Cybersecurity with a Cybersecurity and Intelligence minor, GPA 3.60, expected December 2026.

Achievement

Collegiate Cyber Defense Competition

President and team captain leading weekly practice for 15+ members across Windows, Linux, persistence detection, firewall defense, and incident response. Contributed to a 1st-place Kentucky finish.

Experience

Cybersecurity Intern

Pelycon Technologies MSP internship supporting client tickets, RMM workflows, Microsoft 365 administration, endpoint security, security operations tooling, and cyber maturity deliverables.

Experience

Locksmith Apprentice

Campus physical security work across 50+ buildings, including key management, lock maintenance, access issues, work orders, and key control records.

Experience

Resident Advisor

Supporting up to 800+ student residents, responding to incidents, resolving conflicts, documenting policy concerns, and operating access systems including CSGold and Lenel.

Skills & Interests

Vulnerability Assessment Incident Response Digital Forensics System Hardening Windows Server Linux / Ubuntu Active Directory Microsoft 365 Proxmox Access Control Database Design Application Development Configuration Management Communication

Resume Snapshot

Focused on cybersecurity operations, GRC, identity review, and digital forensics.

Certifications

ISC2 Certified in Cybersecurity, CompTIA Security+, and currently studying for Microsoft SC-300.

GRC Project

Produced risk assessment documentation with scored findings, impact analysis, remediation recommendations, and control mapping.

Working Style

Adaptable, communicative, documentation-focused, and comfortable working through practical security and operations problems.

Contact

Let's talk security, internships, or project feedback.

Email: tate.wilson2022@gmail.com