My research focuses on cybersecurity methods that can be taught, reproduced, and used in real operational settings. I am interested in defensive systems that combine technical controls, security telemetry, incident response practice, and clear human decision-making.
I study how identity-aware access, segmentation, monitoring, and policy enforcement can improve the security of campus, enterprise, and public-sector networks. This includes practical questions around deployment, usability, visibility, and operational cost.
I work on repeatable investigation workflows for endpoint, cloud, and network incidents. The goal is to help students and practitioners collect evidence, reason from logs and artifacts, and communicate findings in a way that supports technical and organizational decisions.
My work in IoT security explores lightweight protection mechanisms for constrained devices, including firmware integrity, secure configuration, authentication, and monitoring for classroom and laboratory testbeds.
I design hands-on cybersecurity learning activities, including cyber ranges, blue-team exercises, and assessment methods that measure practical judgment rather than memorization alone.