logo

45.5017° N, 73.5673° W

(UTC)
logo

(UTC)
logo

45.5017° N, 73.5673° W

(UTC)

  • cybersecurity

  • design

  • philosophy

  • cybersecurity

  • design

  • philosophy

  • cybersecurity

  • design

  • philosophy

Designer chairs reinvented
Loading

12-21 // December 21st

Jesse Aragon's personal website/blog/portfolio.

Designer chairs reinvented
Loading

12-21 // December 21st

Jesse Aragon's personal website/blog/portfolio.

Loading
Loading
Loading
INTRODUCTION

In order to get to where I want to go, I have to remember where I came from. 12–21 marks the turning point — the day I chose a better path. It's the discipline and perspective I now bring to my work in cybersecurity and graphic design.

Figures

Evidence,
in figures

I

Genesis

My journey began with Photoshop CS2. It taught me precision, hierarchy, and clarity—skills I now apply to how I communicate technical work.

0Y

Built from scratch

I built and operated an e-commerce business end-to-end. Over time, I shifted the focus to security, reliability, and protecting user trust.

1+

Core security controls

My skills span six domains — network reconnaissance, protocol analysis, intrusion detection, SIEM operations, cloud security, and threat-intel automation — from initial enumeration to durable defense.

1*

Disciplines aligned

I work at the intersection of cybersecurity, business analytics, and design. That combination helps me prioritize risk with data and communicate decisions with clarity.

CAPABILITIES

CAPABILITIES

Capabilities sharpened across production systems and lab environments — focused on secure systems, measurable risk, and clear communication.

Threat Detection

Threat Detection

Threat Detection

Cloud Security

Cloud Security

Cloud Security

Incident Response

Incident Response

Incident Response

Security Automation

Security Automation

Security Automation

Recent Work

Recent Work

Built with rigor,
designed with intent

Selected projects across cybersecurity and graphic design — where precision and craft meet.

PROCESS

Agile security thinking

My approach is systematic yet adaptive, shaped by each engagement's threat landscape and built around three core phases.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

Agile security thinking

My approach is systematic yet adaptive, shaped by each engagement's threat landscape and built around three core phases.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

PROCESS

Agile security thinking

My approach is systematic yet adaptive, shaped by each engagement's threat landscape and built around three core phases.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

EXPLORE ENVISION EXECUTE Center
3

Explore

I map the attack surface across networks and cloud — port scanning and service enumeration with Nmap, packet and protocol analysis in Wireshark, and IAM/configuration review — to surface what's exposed, how it talks, and where it's weak.

Envision

I turn visibility into signal — engineering detection-as-code across network, SIEM, and cloud: Suricata rules, Splunk SPL and dashboards, and CloudTrail/GuardDuty alerting that separate real threats from routine noise.

Execute

I investigate incidents, reconstruct attack timelines, and automate response — Python threat-intel tooling, SOC integrations, and infrastructure-as-code hardening — turning findings into durable defense and clear reports.

contact

contact

Let's talk

For cybersecurity work, design projects, or anything in between.

By submitting this form, you agree to the Privacy Policy and allow 12-21 to use this information to respond to your inquiry. Your data is handled responsibly and never shared.

By submitting this form, you agree to the Privacy Policy and allow 12-21 to use this information to respond to your inquiry. Your data is handled responsibly and never shared.