Andrew Bonner
Cybersecurity professional with hands-on experience in threat detection, SIEM operations, and secure software development. Skilled in leveraging Splunk for security monitoring, alert triage, and dashboard creation, along with developing automation tools that integrate AI-driven analysis. Experienced in vulnerability assessment, penetration testing, and intrusion detection using machine learning techniques such as decision trees and the ID3 algorithm. Proficient in Java, scripting, and modern DevOps tools including GitHub Actions and Docker. Adept at translating complex security data into actionable insights to strengthen organizational defenses.
About Me
I am a recent Ball State University graduate with a Bachelor of Science in Computer Science focused on Cybersecurity, Secure Software Development, and Artificial Intelligence. My experience combines hands-on security operations, software development, and automation with a strong interest in defensive security, threat detection, and secure system design.
As a SOC Engineer Intern with Ball State University's Office of Information Security Services, I worked with SIEM platforms such as Splunk to support security monitoring, threat hunting, alert investigation, and vulnerability management across enterprise systems. I also explored AI-assisted SOC workflows by integrating AI-driven tooling to help streamline log analysis, improve investigation efficiency, and automate portions of security event interpretation using natural language processing and API-based integrations.
My technical projects have focused on secure software development, cybersecurity automation, AI-assisted security tooling, CI/CD workflows, and vulnerability remediation using technologies such as Python, JavaScript, Node.js, Docker, GitHub Actions, and modern API integrations.
I am currently seeking opportunities in cybersecurity, SOC operations, security engineering, or secure software development where I can continue building experience in threat detection, automation, and defensive security operations while contributing to teams that prioritize strong security practices and continuous improvement.
Education
Ball State University — Muncie, Indiana
B.S. in Computer Science
Focus: Cybersecurity/Secure Software Development & Machine Learning/AI
- Releveant Coursework:
- - Introduction to Cybersecurity
- - Computer & Information Security
- - Secure Software Development
- - Software Engineering
- - Digital Forensics
- - Distributed Networks & Systems
- - Operating Systems & Networks
- - Foundations of Artificial Intelligence
- - Data Analytics
- - Advanced Programming
- - Design & Analysis of Algorithms
- - Frontend & Backend Development
- - Database Design
Work Experience
SOC Engineer Intern
Ball State University OISS • Muncie, Indiana
Jan 2025 - Present
+ Expand– Collapse- Utilizing SIEM tools, such as Splunk, in Security Event Monitoring, Analysis, and proactive Threat Hunting
- Investigated and triaged network security alerts within an alert management environment
- Monitored emerging cybersecurity threats and vulnerabilities; produced regular security reports
- Performed port and web server scanning to validate monitoring, ADFS authentication, and patch compliance
- Identified and blocked ransomware-related executables, domains, and IP ranges using Delinea
- Conducted monthly penetration testing using Responder against virtual servers to assess security posture
- Configured and tested a mesh VPN within an isolated Proxmox VE environment
- Implemented OSINT tooling to identify compromised credentials associated with suspicious activity
- Developed automation scripts integrating an OpenAI agent with a Splunk MCP server to generate queries and summarize results
- Built Splunk dashboards to analyze inbound and outbound web traffic across WebAccessLog, Suricata, and Wazuh indexes for web attack detection
Teaching Assistant
Ball State University • Muncie, Indiana
Aug 2023 - May 2025
+ Expand– Collapse- Facilitate student comprehension of advanced topics including new programming languages, object-oriented programming, and data structures.
- Provide student tutoring support to improve learning outcomes, meticulously evaluating algorithmic assignments to ensure thorough understanding and mastery of concepts.
Teacher Scholar Researcher
Ball State University • Muncie, Indiana
Jan 2023 - May 2023
+ Expand– Collapse- Collaborated with Xin Sun to research anomaly detection techniques using the NSL-KDD dataset
- Applied the ID3 algorithm to design and evaluate decision tree–based intrusion detection models
- Developed Java programs implementing ID3 to classify network traffic and identify malicious packet behavior
- Preprocessed and analyzed NSL-KDD training and test data to improve model accuracy and reduce false positives
- Evaluated model performance using classification metrics (e.g., accuracy, precision, recall) to validate detection effectiveness
- Conducted iterative testing and tuning of decision trees to enhance anomaly detection capabilities in network security contexts
Featured Project
A deep dive into my most impactful work.
AI Security Automation / SOC Tooling & API Integration
AI-Powered Splunk MCP Assistant
Developed an AI-powered cybersecurity assistant that converts natural language prompts into Splunk SPL queries using the OpenAI Responses API and function calling. The assistant securely communicates with a Splunk MCP server to automate security log analysis, execute threat-hunting workflows, and summarize findings in plain English to improve SOC analyst efficiency and investigation workflows.
Skills
Programming Languages
Security Tools & Software
Operating Systems
Security Operations
Frameworks
DevOps
Additional Completed Training
Verified training and coursework in cybersecurity and networking.
Resume
Download my resume:
Contact
Feel free to reach out via phone or send me a message below.
Email: drewbonn1016@gmail.com
Phone: (216) 386-0388