Justin Dubin

Justin Dubin

Information Security Analyst

LinkedIn GitHub Download Resume

About

I'm an Information Security Analyst with 2+ years of hands‑on experience across internships, campus IT, self‑built labs, and competitions. I focus on vulnerability management, system hardening, and practical blue‑team operations that reduce real risk.

Tools I work with include Wazuh SIEM for detection and monitoring; Windows Server/Active Directory and GPO for secure configuration; Linux administration; SSH hardening and honeypots; and vulnerability scanning/patch workflows. I regularly use Python and PowerShell to automate checks, triage findings, and turn repeatable tasks into small, reliable scripts.

I'm also exploring agentic AI to augment security operations using autonomous workflows to enrich indicators, surface likely root causes, and draft remediation steps that an analyst can quickly verify. My approach is pragmatic: measurable improvements, clear documentation, and feedback loops that make the next incident easier.

Career interests: security engineering and detection engineering, SOC automation, threat hunting/DFIR, and purple‑team style hardening. I enjoy building small tools and repeatable playbooks that help teams move faster and safer.

Education

East Tennessee State University — Johnson City, TN

  • BS Computing
  • Minor in Military Science
  • Cadet in Army National Guard/ROTC
  • Expected December 2025 Graduation
  • GPA: 3.8 / 4.0
  • Dean’s List: Spring 2022 - Spring 2024

Certifications & Awards

  • CompTIA Security+ — Exp: Dec 2026
  • Google Cybersecurity
  • Cisco Junior Cybersecurity Analyst
  • FAA Part 107 License
  • FCC Amateur Radio Technician License
  • ETSU College of Business and Technology — Military Science Outstanding Student (May 2023)

Internships and Relevant Work

IT Service Help Desk Technician, East Tennessee State University — Dec 24–Present

  • Provide technical support and troubleshoot hardware, software, and network issues for students, faculty, and staff.
  • Assist with account management, including password resets and access troubleshooting.
  • Ensure timely and effective resolution of IT-related inquiries via phone, email, and in-person support.
  • Document and escalate complex issues to specialized teams when needed.
  • Guide users in following best practices for cybersecurity and data privacy.
  • Maintain a high level of customer service, enhancing user experience and satisfaction.

Library Lab IT Assistant, East Tennessee State University — Aug–Nov 24

  • Supported library patrons with computer and printer usage, software installations, and troubleshooting basic technical issues.
  • Provided guidance on navigating library resources, online databases, and educational software.
  • Maintained computer lab equipment, ensuring systems were operational and up to date.
  • Assisted with logging and reporting technical incidents for prompt resolution.
  • Educated users on digital literacy and responsible use of technology in a library setting.
  • Fostered a positive and supportive environment to enhance user experience and accessibility to library resources.

ARCYBER ROTC Internship, U.S. Army Cyber Command — Aug 24

  • Contributed to a wide range of cyber activities with a high level of adaptability, and a solution-oriented mindset.
  • Delivered a final capstone as an essay on Artificial Intelligence and Quantum Computing in modern and future cyber warfare.

Info Security Intern, Alpha Metallurgical Resources — May 23–Jun 24

  • Utilized vulnerability managers to identify and secure vulnerable systems across multiple sites, leading to confirmed removal of vulnerabilities.
  • Aided in managing phishing simulation campaigns, resulting in decreased employee click rate and improved security awareness.
  • Documented and standardized security team practices, creating an SOP to streamline future employee onboarding.

Competitions

Department of Energy Cyberforce Competition — Nov 24

  • Led hardening of Windows and Linux environments; implemented best practices and continuous monitoring to defend critical infrastructure.
  • Solved anomalies in forensics, phishing classification, and reverse engineering to fortify defenses.

Collegiate Penetration Testing Competition — Nov 24

  • Coordinated a team using the MITRE ATT&CK framework; documented exploits and risk assessments, using CVSS for prioritization.

Hivestorm — Oct 24

  • Led a team of four securing an Advanced Windows Server (Domain Controller) and other servers; ranked 30/413 (top 7%).

Technet Capture-The-Flag

  • Focused on Reverse Engineering, Network Traffic Analysis, and Exploitation across varied CTF challenges.

National Cyber League Team Competition, CyberBucs Club — Mar 24

  • 1st nationwide in OSINT; 96th percentile enumeration/exploitation; 97th percentile network traffic analysis (team 323/4199).

SECCDC Regional Qualifiers, CyberBucs Club — Feb 24

  • Defended the Domain Controller, maintained SSH operations, applied secure AD configurations; placed 14/38.

Personal Projects

SSH Honeypot

  • Developed a secure SSH honeypot to capture and log brute force attempts for analysis.
  • Analyzed data to understand attack patterns and common adversary techniques.
  • Planned Version 2 enhancements:
    • Enhanced data handling for faster load times.
    • Threat map with shaded regions indicating frequent attack origins.
    • Fake terminal to observe post-login TTPs and log actions.

View Honeypot Project

SIEM Implementation Project

  • Built an AD lab; deployed Wazuh as an open-source SIEM to monitor events and detect anomalies.
  • Configured common AD misconfigurations to simulate vulnerabilities for enumeration and privilege escalation testing.

Use the arrows or swipe to explore.