Luke Miller

🌐 About Me

As a seasoned Security Engineer with over a decade of experience, I focus on threat response and cloud security across enterprise-level environments, including Fortune 50 companies, smaller cloud-focused enterprises, and .mil environments. I have a strong background in cyber incident response, security infrastructure development, detection engineering, and compliance and audit support. My experience spans a wide range of technologies, such as AWS, CrowdStrike, SentinelOne, SumoLogic, Splunk, and various Git repository services, all aimed at building and maintaining secure systems.

Throughout my career, I’ve developed a deep understanding of the cybersecurity landscape, especially within regulated environments like PCI, HIPAA, and FedRAMP. My mission is to empower businesses and individuals by sharing insights into modern security practices and demonstrating my expertise across multiple domains.

💼 Experience and Expertise

Cloud Security: Expertise in deploying and securing cloud environments using AWS services like IAM, EC2, S3, and GuardDuty.
Cybersecurity Threat Response: Extensive involvement in threat detection, detection engineering, incident response, and remediation in enterprise SOC environments.
Software Development: Proficient in Python scripting, SOAR automation, and developing tools that enhance security operations.
Red Team/Penetration Testing: Hands-on experience in penetration testing and red teaming operations as a commissioned Air Force National Guard (Air Guard) officer.

🚀 Projects and Contributions

OpenCTI Deployment

I deployed OpenCTI via Docker on AWS using Terraform. This project showcases my ability to deploy threat intelligence platforms in cloud environments, with a focus on automation to streamline deployment and scalability.

Sports Analytics Modeling

Developed statistical models to provide predictive analytics for betting odds based on historical trends, weather conditions, and other factors. I primarily use Python and Jupyter notebooks for this work.

Coming Soon/ In-Progress

Deployment of DetectionLab to Proxmox server

The intent here will be to create and deploy a detection lab to Proxmox using Ansible, Packer and Terraform. Once the VMs are provisioned, tools such as Atomic Red Team and RedHuntOS will be used to generate telemetry on the endpoints for detection authoring. Zeek, Snort, Splunk, osquery, and Sigma will be used to analyze traffic and events to create high-fidelity detections.

Inspired by: https://www.detectionlab.network/introduction/ (no longer maintained)

🎓 Active Certifications

I am continually advancing my knowledge and expertise through various certifications in cybersecurity. Here are my current active certifications:

GIAC Security Essentials (GSEC): Mastery of essential cybersecurity skills, including network security, incident response, and cloud security.
GIAC Certified Incident Handler (GCIH): Proficient in detecting, responding to, and recovering from security incidents, with a focus on attack detection and incident response strategies.
GIAC Certified Intrusion Analyst (GCIA): Specializes in network intrusion detection and analysis, utilizing tools like Snort and Suricata to safeguard enterprise environments.
GIAC Defensible Security Architecture (GDSA): Knowledgeable in designing and implementing defensible security architectures, applying best practices to protect network infrastructures.
CompTIA Security+: A foundational certification demonstrating expertise in core security principles, risk management, and cryptography.

🌟 Volunteer Work

I am committed to giving back to the community and have had the privilege of volunteering with the Ohio Cyber Reserve, a state-run initiative focused on improving local cybersecurity resilience. Through this work, I have:

Assisted in cybersecurity assessments and remediation efforts for small businesses and local governments.
Participated in cyber defense exercises and threat simulations, offering real-time incident response and remediation support.
Collaborated with fellow cybersecurity professionals to enhance the digital security posture of Ohio’s critical infrastructure and local organizations.

This volunteer experience has allowed me to refine my skills, contribute to a meaningful cause, and actively protect the community from emerging cyber threats.

In addition, I’m also the founder of CodeBridge Cincinnati which is a 501(c)(3) Non-Profit organization whose mission is to provide technological resources (coding courses, Chromebooks, computer lab materials, etc.) to underprivileged schools and individuals.

🤝 Let’s Collaborate

I’m open to new challenges, collaborations, and learning opportunities. Whether you’re interested in discussing cybersecurity solutions, collaborating on a project, or simply networking, don’t hesitate to reach out!

Email: luke@cloudsecluke.com
LinkedIn: http://www.linkedin.com/in/lfmill1
GitHub: https://github.com/CloudSecLuke