av
Open to opportunities · NYU M.S. Cybersecurity

Angelo Vasquez

 

I build and ship real security tools — live OSINT platforms, threat-intel maps, and RAG assistants — at the intersection of security engineering and software. Eight years in technology operations, an M.S. in Cybersecurity at NYU, and a habit of turning ideas into deployed products.

View Projects Live Helpdesk Demo Get In Touch
8+
Years in Tech
6
Live Projects
// Profile AV · 2026
Current
Consultant, Systems Engineer
Synchrony · Stamford, CT
Focus
Security Engineering & Building
IAM · SecOps · Applied AI
Education
M.S. Cybersecurity, NYU Tandon
Expected May 2027
Stack
React · Python · LLMs · Azure Sentinel · Delinea Secret Server
React Python LLM / RAG IAM · PAM SIEM OSINT Threat Intel
Work

Things I've built & shipped

Real tools — deployed, live, and reachable. Not mockups.

01
Live
OMNIX — Intelligence Platform

Full-stack OSINT intelligence aggregation platform. 17 files, 1,434 lines, 5 serverless API routes in production. Integrates HIBP, Shodan, Hunter.io, AbuseIPDB, VirusTotal, crt.sh, WhoisJSON, IPQualityScore, and GitHub into a single analyst interface with an executive design system and PDF case-file export.

ReactViteVercel Functions Shodan APIVirusTotalHIBP AbuseIPDBHunter.io
View Live Platform
02
Live
Streak Tracker

React habit tracker built from scratch — hooks, derived state, and localStorage persistence. Add and delete habits, track daily streaks with live best-streak and total-day stats computed on every render. Deployed to its own subdomain via Vite.

ReactViteHooksuseStateuseEffectlocalStorage
View Live
03
Live
SentinelMap

React + Vite IP-intelligence tool with Mapbox GL JS geolocation, AbuseIPDB threat scoring, and real-time visitor-IP detection.

ReactViteMapbox GL JSZustand
View Live
04
Live
Helpdesk & Ticketing System

Full PHP/MySQL helpdesk — 11 tables, stored procedures, triggers, role-based access, knowledge base, and reporting. Complete CRUD with agents, tickets, tags, and a KB module.

PHPMySQLStored ProceduresRBAC
View Live
05
Live
Azure Sentinel SIEM

Enterprise SIEM walkthrough — live Sentinel workspace, custom KQL detection rules mapped to MITRE ATT&CK Initial Access, and triaged real triggered incidents.

Microsoft AzureSentinelKQLMITRE ATT&CK
Case Study
06
Live
SOC RAG Assistant

LangChain + FAISS + HuggingFace all-MiniLM-L6-v2 + GPT-4o-mini. Six curated SOC knowledge packs — answers pulled from curated documents, not general training data. Deployed on Streamlit Cloud.

LangChainFAISSHuggingFaceGPT-4o-miniStreamlit
Launch App
07
In Progress
AWS Threat Detection Lab

A live AWS environment using GuardDuty, CloudTrail, and SNS alerting to simulate real attack scenarios — credential stuffing, S3 exposure, IAM abuse — each mapped to MITRE ATT&CK with a triage runbook. Currently building.

AWS GuardDutyCloudTrailSNSMITRE ATT&CK
In Progress
Applied AI

AI, actually shipped

Not demos for a slide deck — a RAG pipeline I built and deployed for SOC analyst workflows.

Live App
RAG Pipeline
Architecture
Live · Streamlit Cloud

Ask about phishing triage, Splunk SPL hunting queries, MITRE ATT&CK mapping, AWS CloudTrail events, or IAM fundamentals. Answers are pulled from curated SOC knowledge packs — not general training data — so they're auditable and source-grounded.

▶ Launch Live App

Opens in a new tab · Selectable knowledge packs · Evidence sources · Conversation history

How the assistant turns a plain-English question into source-grounded analyst guidance:

01 — Question
Analyst asks in plain English
02 — Embed
HuggingFace all-MiniLM-L6-v2 → vector
03 — Search
FAISS MMR retrieval · k=3 · fetch_k=8
04 — Generate
GPT-4o-mini answers from retrieved context only
SOC Playbooks Splunk SPL AWS Security IAM MITRE ATT&CK Cyber Fundamentals
# RAG pipeline — chunk_size=700 · overlap=120 · mmr lambda=0.55 def run_rag_query(question: str) -> str: embedder = HuggingFaceEmbeddings( model_name="all-MiniLM-L6-v2" ) db = FAISS.load_local("index", embedder) retriever = db.as_retriever( search_type="mmr", search_kwargs={"k": 3, "fetch_k": 8} ) chain = RetrievalQA.from_chain_type( llm=ChatOpenAI(model="gpt-4o-mini"), retriever=retriever ) return chain.run(question)

Key idea: instead of relying on the model's general knowledge, it answers only from curated documents — making responses accurate, auditable, and domain-specific.

Quick Preview

A simplified, offline taste of the assistant's tone. Try “DNS tunneling”, “phishing”, or “ransomware” — for the real retrieval-backed answers, launch the live app.

Illustrative preview · not the live model
AI
Preview mode. Ask me about phishing, ransomware, or DNS tunneling to see the assistant's style — then launch the live app for source-grounded answers.
Background

Experience

8+ years across IT operations, enterprise security, and operations leadership in regulated, high-volume environments.

Jan 2025 — Present
Consultant, Systems Engineer
Synchrony · Stamford, CT
  • Administer secure password resets, MFA, and identity governance while preventing unauthorized access
  • Resolve 20+ incidents/day across tools and stakeholders; document outcomes with clear, actionable updates
  • Deploy and maintain enterprise software with a compliance-first approach; support secure decommissioning
Jun 2016 — Dec 2024
IT Customer Lead
AltaGIT · Bronx, NY
  • Configured and secured networks, routers, switches, endpoints, and wireless; macOS/Windows imaging
  • Used Splunk for anomaly detection and troubleshooting; supported encryption and backups for resilience
Jun 2017 — Jan 2025
General Manager / Operations Manager
El Nuevo Pollo Sabroso 1 & 2 · Bronx, NY
  • Led a $1.8M+ revenue operation; improved profitability 10% through process redesign and execution
  • Scaled digital ordering to ~1,052 online transactions/month via Otter + Lightspeed POS
  • Managed 17 vendors and cross-functional teams; negotiated pricing and standardized workflows
Capabilities

Skills

Depth across software, applied AI, security operations, and the infrastructure that ties them together.

Building & Software
React Vite JavaScript Python PHP · MySQL REST API Design Serverless Functions Responsive UI
Applied AI
LangChain RAG Pipelines FAISS · Vector Search Claude API OpenAI Prompt Engineering HuggingFace Streamlit
Security Operations
IAM / MFA Identity Governance PAM · Delinea Secret Server Incident Response Splunk / SIEM KQL · Azure Sentinel MITRE ATT&CK Triage Runbooks
Infrastructure & Tooling
Microsoft Azure AWS Vercel Docker Git · GitHub Linux / CLI Log Analytics LenelS2 OnGuard
Credentials

Certifications

Active certifications and completed training programs.

EC-Council C|CT
EC-Council
Active
CCNA
Cisco Certified Network Associate
In Progress
CISA
ISACA · Certified Information Systems Auditor
In Progress
Generative AI for Cybersecurity
Completed
Done
Intro to Linux
NCAE-C · Univ. of West Florida
Done
Academic

Education

A strong academic record across three institutions.

M.S. Cybersecurity
New York University — Tandon
Expected May 2027
GPA 3.9
B.A. Sociology
Lehman College
Completed
A.A. Liberal Arts
Westchester Community College
Completed
Get In Touch

Let's build
something.

Open to roles, collaboration, and conversations at the intersection of security engineering, software, and applied AI. Reach me through any of the channels here, or send a message directly.

in
linkedin.com/in/angelo-vasquez
</>
github.com/AMV9978
OMNIX — Live Intelligence Platform
Helpdesk — Live PHP/MySQL App

Send a Message

✓ Message sent! I'll get back to you within 24–48 hours.