Hello, I'm Brandon Harris

Cloud Security & Detection Engineer

I design secure cloud infrastructure and engineer runtime threat detection for cloud-native workloads. My work focuses on Azure security, Kubernetes hardening, policy enforcement, and building detections that help teams respond faster and reduce misconfiguration risk.

View Flagship Projects Contact
Portrait of Brandon Harris

Skills

Azure Cloud Security

Secure architecture, identity controls, hardened deployments

Kubernetes Security

AKS hardening, workload isolation, least privilege controls

DevSecOps

CI/CD security gates, scanning, secure delivery workflows

Policy Enforcement

IaC validation, policy-as-code, misconfiguration prevention

Threat Detection

Prometheus alerts, Loki logs, Falco runtime detection

Linux Systems

RHEL administration, log correlation, automation basics

Brandon Harris professional photo

About Me

I’m a cloud security and detection-focused professional with over 20 years of experience supporting regulated, high-stakes environments, including federal investigations, aviation security, and mission-critical manufacturing.

Today, I build secure cloud-native platforms that enforce infrastructure security and improve detection at runtime. My work includes secure Azure deployments, Kubernetes monitoring and alerting, policy enforcement, and incident response-ready documentation.

If you’re looking for someone who blends security operations discipline with hands-on cloud engineering and detection logic, I’d love to connect.

Projects

Secure Cloud Platform project preview

Secure Cloud Platform (Azure)

Built a secure Azure platform with DevSecOps security gates, infrastructure validation, and cloud-native monitoring. Designed to reduce misconfiguration risk and enforce security by default.

Cloud Threat Detection Platform project preview

Cloud Threat Detection Platform

Engineered runtime detections for Kubernetes workloads using Prometheus, Loki, Alertmanager, and Falco. Includes attack simulation and incident response playbooks.

Secure Vault project preview

Secure Vault

Security-first application project focused on secure handling of sensitive data and hardened design patterns. Built to demonstrate practical defensive development.

Vulnerability Scanner project preview

Vulnerability Scanner

Automated scanning and reporting workflow that evaluates security posture and produces clear, actionable output. Built to support repeatable security checks.

Honeypot Lab project preview

Honeypot Lab

Deployed and operated a honeypot to capture adversary telemetry and translate raw events into investigation-ready artifacts. Strong foundation for detection thinking.

Phishing Incident Analysis project preview

Phishing Incident Analysis

End-to-end phishing investigation including header analysis, sender authentication checks, IOC extraction, and defender-focused mitigation guidance.

Contact Me