bits and breaches

I'm Gabrielle. I work in cybersecurity by day. The rest of the time I'm rummaging for things to do — coffee experiments, journaling, sending postcards, photography, stationery(-ing), gaming, and doing yoga (sports occasionally).

This is my portfolio, repository, tech "junk", and so on. This website only consists of my technical side while I have a separate website for my hobbies.

My first background on tech is on web development. I shifted to cybersecurity and decided that cybersecurity is really the path that I want to continue on. Cybersecurity because everything that interests me away from technology coincides with the process of cybersecurity — from documenting (photography and journaling), dealing with threats (gaming), and sports (keeping active).

The inspiration for this website is from my fascination with pixel themes, games, and art. Old school technological UIs are also a strike to my heart.

P.S. Bella is my cat and the site mascot. Her threat model is primarily catnip-related. She finds the gaps.

resume

↓ download pdf

Cybersecurity Analyst specializing in threat assessment, vulnerability management, and incident response. Experienced implementing security frameworks (NIST, ISO 27001, MITRE ATT&CK) and automating workflows through SOAR playbooks. CompTIA Security+ and ISC2 CC certified.

experience

Webserves Inc.

Cybersecurity Analyst & Web App Manager

May 2024 — Feb 2026

Monitored and secured client web applications (WordPress sites, Microsoft 365 portals, Canva integrations) — identifying outdated SSL certificates, exposed admin interfaces, unsecured password reset portals, and insecure data exchange APIs to reduce attack surface.
Developed Incident Response, Disaster Recovery, and Business Continuity Plans covering phishing attacks and data breaches — establishing procedures for credential compromise, donor data protection, and backup restoration.

Fordham Center for Cybersecurity

Cybersecurity Assistant & Educator

Aug 2022 — May 2024

Developed and delivered security awareness training with simulated phishing exercises for university staff, reducing phishing incidents.
Implemented SOAR playbooks to automate incident response for malware detection, unauthorized network access, and data exfiltration alerts.
Integrated MITRE ATT&CK framework into cybersecurity education and vulnerability assessments, mapping weaknesses to adversary tactics.

Fordham Graduate School of Arts & Sciences

Web Development & Marketing Strategies

Oct 2023 — May 2024

Integrated Google Analytics with web server logs to monitor user behavior and identify anomalies including automated bot-like behavior.
Configured Terminal4 security settings — user role assignments, section-level access controls — to enforce least-privilege.

Fiber-Rex Philippines Inc.

Web Development & Management

Apr 2020 — Apr 2021

Led development of secure company web platforms with authentication, access control, and data protection mechanisms.
Designed resilient architectures to mitigate identity theft, unauthorized access, and data manipulation risks.

education

M.Sc. Cybersecurity

Fordham University · New York, NY

Aug 2022 — May 2024

B.Sc. Information Technology

Mapúa University · Makati City, Philippines

Aug 2017 — Apr 2021

certifications

CompTIA Security+ ce · CompTIA (2024)
Certified in Cybersecurity (CC) · ISC2 (2024)
The Legend of Python · Codédex (2024)
The Origins of HTML I · Codédex (2024)

skills

threat assessment vulnerability management incident response NIST ISO 27001 MITRE ATT&CK SOAR SIEM log analysis intrusion detection pentesting network security cryptography identity & access management risk management security operations governance, risk & compliance security principles business continuity disaster recovery access control Python C++ SQL HTML Azure