I am building a hands-on Security Engineer portfolio focused on practical security automation, monitoring, hardening, cloud security, network security, and security reporting.

My goal is to develop real-world security engineering skills by building tools that detect issues, generate structured reports, support investigation workflows, and demonstrate blue-team and DevSecOps thinking.

A Python security automation tool that analyzes log files, extracts IP addresses, detects suspicious activity, creates SOC-style alerts, generates IOC lists, and exports CSV, TXT, JSON, and NDJSON reports.

Repository: python-security-log-analyzer

A web security automation tool that checks HTTP security headers, identifies missing protections, calculates risk levels, provides remediation recommendations, and generates structured reports.

Repository: python-security-headers-checker

A read-only Linux hardening audit tool that checks common Linux security baseline items such as SSH configuration, firewall status, open ports, sudo users, file permissions, and patch status.

Repository: python-linux-hardening-auditor

A Python reporting automation tool that generates professional security finding reports in Markdown, JSON, TXT, and HTML formats with templates, risk scoring, evidence, impact, and remediation guidance.

Repository: security-finding-report-generator

A read-only Windows endpoint security baseline checker that audits Defender, Firewall, RDP, UAC, Guest account, local administrators, password policy, and running services.

Repository: windows-security-baseline-checker

A SIEM-style home lab project that simulates Windows, Linux, and web log collection, normalizes events, detects suspicious activity, generates alerts, and documents incident response flow.

Repository: basic-siem-home-lab

A Python TCP network scanner for authorized lab environments that checks selected ports, identifies basic service hints, assigns severity, and generates CSV, TXT, JSON, NDJSON, and HTML reports.

Repository: python-network-scanner

A Python cloud security misconfiguration checker that analyzes demo AWS-style JSON configs for public access, weak IAM policies, missing encryption, missing logging, exposed services, and public databases.

Repository: cloud-security-misconfiguration-checker

• Python security automation
• Log analysis and event normalization
• SIEM-style JSON and NDJSON outputs
• SOC alert generation
• Detection engineering basics
• Linux hardening checks
• Windows endpoint security checks
• Web security header analysis
• Network port exposure review
• Cloud security misconfiguration detection
• IAM and least privilege concepts
• Security finding documentation
• CSV, TXT, JSON, NDJSON, and HTML reporting
• Unit testing
• GitHub Actions
• DevSecOps-style workflows

My portfolio focuses on building practical tools for:

• Detecting suspicious activity
• Reviewing security configurations
• Identifying cloud and endpoint misconfigurations
• Automating repetitive security tasks
• Generating structured security reports
• Supporting SOC and SIEM workflows
• Practicing blue-team investigation logic
• Producing clear technical and business-facing findings

• Security Engineering
• Cloud Security
• SIEM and SOC workflows
• Python for security automation
• Linux and Windows hardening
• Network security fundamentals
• Detection and response workflows
• DevSecOps automation

This portfolio is built to demonstrate practical Security Engineer skills through hands-on projects, not only theory.

Each project includes:

• Clean README documentation
• Safe demo data
• Structured output reports
• Unit tests where relevant
• GitHub Actions workflow
• Privacy-safe sample outputs
• Security Engineer relevance

GitHub: https://github.com/EHArviv