ABOUT ME

Hi, I'm Jason Zhang, a Computer Science master's candidate at Northeastern University with a focus on Cyber Security. Experienced in cloud and data security advocacy, I bring a strong technical foundation in various programming languages, hands-on experience with Azure, AWS, and network security tools. I'm passionate about making cybersecurity and cloud computing more accessible and less daunting for everyone.

Cert & Award

Certificate of Cloud Security Knowledge(CCSKv4)

Sep 2023

BlackHat 2023 Student Scholarship Winner

Aug 2023

CompTIA Security+

July 2023

2023 Cyversity & BCBSA Scholarship Winner

May 2023

Education

Northeastern University

San Francisco, CA Jan 2022 - Dec 2024

  • Teaching Assistant for CS2500 class for 100 student cohort (Kotlin/Java)

    • CodePath Intermediate Cybersecurity Cohort

    Remote Aug 2023 - Nov 2023

  • Advanced cybersecurity training, including hands-on labs.

    • GRChampion Bootcamp (Cyversity)

    Remote Aug 2023 - Nov 2023

  • One of 25 selected for intensive cybersecurity bootcamp.
  • Trained in policy, risk, and control using Compyl GRC platform.

    • Work

    Northeastern University

    Career Peer Advisor Aug 2023 - Present

  • Helped students create effective resumes using industry-specific keywords and formats to enhance job prospects.
  • Conducted simulated interviews, offering feedback to improve communication, confidence, and performance.
  • Shared strategic advice on networking, online visibility, and specialized job platforms, aiding peers in finding meaningful employment.

    • University of Kansas

    IT Support Help Desk Aug 2017 - May 2018

  • Offer initial technical assistance through various channels such as phone, email, chat, and in-person interactions.
  • Identify and resolve hardware and software problems within computer lounges and conference rooms.
  • Handle the installation, upgrade, imaging, and configuration of computer hardware and software for staff workstations.

    • Projects

    Home Lab Set up on Raspberry Pi

    Kali/Ubuntu Linux, Nginx, Docker, Raspberry Pi Aug 2023 - present

  • Configured a Raspberry Pi-based home lab featuring Docker containers running Kali Linux for attack simulation, Ubuntu for web server, and NGINX for reverse proxy.
  • Implemented HTTPS Redirection and C2 Forwarding in NGINX, enhancing red team operation resilience.
  • Utilized bridge networking mode in Docker to establish secure, isolated communication channels between containers.
  • Installed and configured self-signed SSL certificates to secure the NGINX reverse proxy, adding an additional layer of encryption.
  • Integrated command and control (C2) functionalities, complete with a custom configuration file for targeted operations.

    • Azure Resume with function

    PowerShell, Azure Aug 2023 - Aug 2023

  • Set up a secure Azure environment to analyze attack exposure, using real-world simulations to assess vulnerabilities.
  • Performed penetration testing with Kali Linux and RDP to evaluate virtual machine security and identify weaknesses.
  • Developed a PowerShell script for real-time cyber-attack tracking using IP geolocation, enabling precise analysis of attack patterns.

    • Real-Time Twitter Bot Detection (Summer 2023 Research Camp)

    Pytorch, Tensorflow, Transformers Jun 2023 - Aug 2023

  • Preprocessed and engineered features from Cresci 2017 Twitter dataset for unsupervised learning.
  • Apply mBERT to capture linguistic patterns and fine-tune with sentiment analysis dataset.
  • Identified underlying data structures with Isolation Forrest, OCSVM.
  • Achieving 98% accuracy of anomaly detection using OCSVM an 85% using Isolation Forrest.

    • Cloud-Based Honey Pot (SIEM)

    PowerShell, Azure May 2023 - May 2023

  • Set up a secure Azure environment to analyze attack exposure, using real-world simulations to assess vulnerabilities.
  • Performed penetration testing with Kali Linux and RDP to evaluate virtual machine security and identify weaknesses.
  • Developed a PowerShell script for real-time cyber-attack tracking using IP geolocation, enabling precise analysis of attack patterns.

    • Socket Programming

    Rust, Docker, Jenkins Mar 2023 - May 2023

  • Concurrency achieved with Tokio runtime and Transport layer security established with native-tls.
  • OpenSSL used to generate key and certificate for server authentication.
  • Communication logging implemented and user credentials stored in SurrealDB.
  • Project containerized with Docker and CI/CD pipeline automated with Jenkins.