Matthew Nunez

Cybersecurity & IT Professional

Cybersecurity professional with a passion for hands-on learning

View Projects Get In Touch

About Me

I am an early-career cybersecurity professional working as an IT Security Program Specialist for the State of Tennessee. With a degree in cybersecurity from Missouri Western State University and experience in IT infrastructure. I am passionate about protecting digital systems and eager to grow my technical skills. My background as a student-athlete taught me discipline, teamwork, and resilience qualities I bring to every opportunity. Iā€™m excited to learn from experienced professionals, contribute to meaningful projects, and make a positive impact in the field of cybersecurity.

When I'm away from the keyboard, I enjoy fishing, staying active at the gym, and watching movies. Activities that help me recharge and bring fresh perspective to technical challenges.

Security

  • Network Security
  • Cyber Threat Intelligence (CTI)
  • SIEM/Log Analysis
  • Pishing Analysis

System Administration

  • Linux/Windows Server
  • Virtualization (Proxmox/VMware)
  • Networking (TCP/IP, VLANs)
  • Cloud (AWS)

Tools & Tech

  • Docker/Kubernetes
  • Python Scripting
  • Active Directory
  • Splunk
  • Power BI

Experience

May 2025 - Present

IT Secuirty Program Specialist

State of Tennessee

  • Coordinate and manage annual Business Impact Analyses (BIAs) with multiple agency partners to identify critical systems, recovery priorities, and operational risks
  • Develop, maintain, and update Disaster Recovery (DR) and Contingency Plans in alignment with organizational requirements and NIST SP 800-53
  • Ensure organizational compliance with NIST SP 800-53 controls related to contingency planning, Recovery Time Objective (RTO) / Recovery Point Objective (RPO) Analysis
  • Produce clear, concise dashboards, reports, and executive-level presentations for agency partners and auditors to communicate risk posture, gaps, and remediation status
  • Plan, coordinate, and execute functional and tabletop disaster recovery tests, validating recovery procedures, communication workflows, and system restoration capabilities.
February 2024 ā€“ July 2024

IT Infrastructure Intern

Boehringer Ingelheim

  • Provided technical support and managed data center operations, gaining skills in server installation, networking, and troubleshooting.
  • Verified system configurations for accuracy, troubleshooting issues related to endpoint enrollments, data backups, and network setups.
  • Led a file organization project for 400+ employees, enhancing project management and data analysis skills
  • Improved communication skills through staff coordination and accurate data collection

Certifications

šŸ”’

Security+

CompTIA

2024
šŸŒ

Network+

CompTIA

2025
šŸ’»

A+

CompTIA

2024
šŸ”§

Cisco Certified Support Technician

Cisco Cybersecurity

2025
ā˜ļø

AWS Solutions Architect Associate

Amazon Web Services

In Progress

Projects

šŸ  HomeLab Infrastructure

Ongoing

Self-hosted media and network services lab built on enterprise virtualization technology. Features containerized applications, network segmentation, VPN tunneling, and DNS-level ad blocking. Continuously expanding with security monitoring and home automation capabilities.

Proxmox Docker Linux Pi-hole VPN LXC
View Details
  • Hardware: Dell OptiPlex running Proxmox VE, managed remotely
  • Virtualization: Multiple VMs and LXC containers for service isolation and resource efficiency
  • Media Stack: Jellyfin media server with Jellyseerr request management and *arr automation suite (Sonarr, Radarr, etc.) running in Docker containers
  • Security: VPN tunnel for media VM traffic, Pi-hole DNS sinkhole for network-wide ad blocking, network segmentation separating lab from ISP network
  • Network: Mesh network with multiple access points providing dedicated lab infrastructure, isolated from primary ISP-provided network
  • Future Plans: Security Onion for network monitoring and threat detection, Home Assistant for IoT device automation and integration

ā˜ļø AWS Portfolio Hosting

Completed

Self-hosted portfolio website built from scratch and deployed using AWS services. Implemented CloudFront CDN, S3 static hosting, Route 53 DNS management, and SSL/TLS encryption.

AWS S3 CloudFront Route 53 ACM HTML/CSS
View Details
  • Architecture: Static site hosted on S3, distributed via CloudFront CDN for global performance
  • Security: HTTPS encryption via AWS Certificate Manager, CloudFront security headers
  • Cost Optimization: Leveraged S3 + CloudFront for ~$3-5/month hosting costs
  • Development: Custom HTML/CSS with dark mode design, responsive layout for all devices

šŸ›”ļø TryHackMe SOC Level 1

Completed(Certificate earned)

Comprehensive hands-on training path focused on Security Operations Center fundamentals. Completed modules covering cyber defense frameworks, network security monitoring, threat intelligence, incident response procedures, and SIEM analysis using industry-standard tools.

SIEM Splunk Wireshark IDS/IPS Threat Hunting Incident Response
View Details
  • Network Analysis: Packet capture analysis with Wireshark, identifying malicious traffic patterns and suspicious network behavior
  • SIEM Operations: Log analysis and correlation using Splunk, creating custom queries and alerts for threat detection
  • Threat Intelligence: Understanding attack frameworks (MITRE ATT&CK), analyzing indicators of compromise (IOCs), and threat actor TTPs
  • Incident Response: Hands-on practice with incident handling procedures, evidence collection, and security event triage
  • Security Tools: Experience with Snort, Zeek, Suricata for network intrusion detection and prevention

Get In Touch

Interested in collaborating or have a question? Feel free to reach out!

šŸ“§

Email

matthew.nunez3511@gmail.com

 šŸ’¼

LinkedIn

/in/matthewnunez

 šŸ’»

GitHub

@mtthwnunez
šŸ“„ Download Resume