Jesse Flippen
Security Operations Specialist | Splunk SIEM & Threat Detection | AWS Certified | Python Automation
Security Operations Specialist | Splunk SIEM & Threat Detection | AWS Certified | Python Automation
I transitioned into cybersecurity after building Python automation systems in high-stakes enterprise environments — and I bring something rare to a SOC team: a decade of experience understanding how data moves through organizations, which makes me exceptionally effective at threat detection and security event correlation.
CompTIA Security+ Certified and recently completed an exciting 16-week cybersecurity program with Per Scholas. I have decided to open my own company and am only working off referrals at this point due to the current scope of business. More details to come—please connect with me on LinkedIn to stay updated. Splunk Core Certified User completed.
Focused on security operations readiness — ordered by relevance to security operations roles.
Threat detection, network security, cryptography, identity management, and risk management fundamentals — the primary SOC analyst entry credential.
Earned · June 2026SPL searching, dashboarding, and alert configuration — the foundational SIEM credential for SOC operations and threat hunting workflows.
EarnedClaude partner network training.
In Progress (Studying & Voucher Purchased)Cloud security model, IAM, core services, and infrastructure fundamentals — essential for understanding cloud attack surfaces in modern SOC environments.
Earned · January 2026Hands-on blue team certification from Hack The Box, focused on SOC analyst workflows, log analysis, and defensive threat investigation.
Expected · September 2026Linux administration, scripting, and security fundamentals — critical for SOC analysts operating in Linux-heavy environments.
Expected · August 2026Responsible AI principles, prompt engineering, and practical AI tool integration — applied to security automation and AI-assisted threat intelligence workflows.
CompletedPlatforms I use actively every day to build real, hands-on security skills — not just theory.
Hands-on penetration testing labs and CTF challenges. Building practical offensive and defensive skills in real-world simulated environments, with a focus on blue-team analyst paths.
Official Splunk education platform and SPL (Search Processing Language) practice. Daily hands-on work toward the Splunk Core Certified User exam and real dashboard-building skills.
Browser-based Linux and cloud labs. My go-to for reinforcing Linux command-line fundamentals, Bash scripting, and cloud infrastructure hands-on practice.
Studying for the Claude Partner Network (CPN) cert.
Introduction to the intellectual enterprises of computer science and the art of programming.
In-depth case studies — security operations, automation, and software engineering capabilities.
Overview: Designed and deployed a hardened Raspberry Pi infrastructure for the PyTexas community — then used it as a live security monitoring exercise, forwarding logs into Splunk for real-time threat detection.
Stack: Python · FastAPI · Tailscale · Splunk · UFW · Fail2ban · Raspberry Pi · systemd
Overview: Built Python automation to ingest, parse, and surface anomalies in large structured data exports — the same foundational skill applied in security log analysis and SIEM alert correlation.
Stack: Python · Pandas · Regex · CSV/JSON parsing · Excel automation
Engineering Discipline: Built a production-ready web application from scratch — no frameworks, no templates — demonstrating clean software architecture and user-focused engineering.
Technical Highlight: Responsive state management in vanilla JavaScript for instant, bi-directional conversions across 8 distinct unit categories — no page reloads.
Impact: Live production app serving users worldwide, with dark mode support and SEO optimization.
Stack: HTML · CSS · JavaScript · Netlify
Designed and built this portfolio from scratch — no frameworks, no templates. A purposeful exercise in clean HTML, CSS architecture, and progressive JavaScript enhancement.
Focus: Performance, accessibility, SEO, and a clear narrative around a career transition into security operations.
Stack: HTML · CSS · JavaScript · Netlify CI
External contributions to community-maintained projects — proof of being able to work inside someone else's codebase, follow their conventions, and ship through code review.
Overview: External contributor to lumbergh, a Python backend tool. Improved cross-platform support and process reliability, with the maintainer manually merging the work into main after resolving complex rebase conflicts.
subprocess.run calls to UTF-8 encoding, eliminating character-set bugs across Windows and Linux environmentstaskkill /F /T to properly terminate child processes and prevent memory leakstest_windows_kill.py — a dedicated unit test suite verifying cross-platform process termination with no regressionslibtmux server initialization to use a dynamic psmux fallback, increasing backend environment flexibilityStack: Python · subprocess API · libtmux · Git (rebase / conflict resolution) · Windows · Linux
Live feed of recent repositories — proof of active, ongoing work.
Interactive security utilities and demonstrations — built with vanilla JavaScript. Try terminal mode for the full experience.
See your public network footprint. This tool queries your IP address, location, and browser details using public APIs. No data is stored.
Encode or decode Base64 and Hex strings. Essential for log analysis, reverse engineering, and CTF challenges.
Lead community organizing for one of Texas's largest Python developer conferences, coordinating events and supporting the growth of Python practitioners across the state. Helped coordinate PyTexas 2026 at the Austin Central Library with approximately 300 attendees.
Security Relevance: Active leadership in the technical community developing the programming language most used in security automation, SOAR development, and threat hunting. Presented the WrangLED infrastructure hardening project at PyTexas 2026 — a live, public demonstration of endpoint security, firewall configuration, and infrastructure monitoring.
Academic recognition for exceptional scholarly achievement.
I am currently working exclusively off referrals due to the current scope of my new business. More details to come—please connect with me on LinkedIn to stay updated.
Let's connect! Send me a LinkedIn connection request and let me know what you're working on or if you'd like to discuss security operations, SIEM, or Python automation.
Connect on LinkedInPrivacy-first approach: I prefer to connect via LinkedIn for professional networking. Please reach out there with a brief message about how we can collaborate!
Intensive 16-week cybersecurity program covering SIEM operations, incident response fundamentals, threat detection and log analysis, network security, Active Directory, Linux administration, and cloud security. Hands-on labs using Splunk, Wireshark, and Cisco Packet Tracer.
28 credits completed toward the Associate of Science. Planning to apply ACE credit recommendations from industry certifications (AWS Cloud Practitioner, CompTIA Security+, and others) to convert professional credentials into academic credit, then re-enroll to complete remaining coursework by Spring 2027.