// about me

Niko Massei

Cybersecurity student specializing in Blue Team operations and applied threat research. Currently architecting hybrid environments in pursuit of the AZ-104 and AZ-500 certifications.

Azure Python Blue Team SOC CTF Captain
View Projects Download Resume
open to opportunities
// projects & labs

Things I've Built

nikomassei.me - Portfolio

Designed and built using HTML, CSS, and JavaScript. Deployed and managed via Azure Static Web Apps with a fully automated GitHub Actions CI/CD pipeline.

Azure CI/CD GitHub HTML CSS JavaScript
View Source on GitHub

Network Defense & Traffic Analysis

Engineered an isolated multi-OS virtual environment to simulate and analyze internal network traffic. Conducted PCAP investigations on HTTP/DNS protocols using Wireshark and implemented host-based firewall and router hardening controls.

Wireshark Network Security Firewalls
View Full Write-Up

Vulnerability Scanning & Mitigation

Performed Application Security Testing utilizing OWASP ZAP against intentionally vulnerable web applications. Verified high-risk injection flaws and XSS vulnerabilities to report and understand remediation cycles in a development environment.

OWASP ZAP Vulnerability Assessment Web Security
View Full Write-Up

AIG: Cybersecurity Job Simulation

Completed AIG's Forage job simulation covering real-world cybersecurity workflows, including vulnerability triage, incident response drafting, scripting, and stakeholder communication.

Forage Incident Response Threat Triage Python Scripting
View Full Write-Up

Analyze a Vulnerable System for a Small Business

Conducted a full vulnerability and risk assessment of a simulated small-medium business environment, identifying critical weaknesses and delivering a prioritized remediation report.

Vulnerability Assessment Risk Analysis Network Hardening
View Full Write-Up

Building Policies from Scratch: GRC Project

Developed governance, risk, and compliance policies including acceptable use, incident response, and data classification frameworks aligned to industry standards.

GRC Policy Writing Compliance NIST
View Full Write-Up

Phishing Attempts Analysis

Analyzed real phishing emails received. IOC extraction process included dissecting headers, spoofed domains, payload delivery techniques, and social engineering tactics used by threat actors.

Email Security OSINT Threat Analysis
View Full Write-Up

Splunk - Conti Ransomware Lab

Investigated a simulated Conti Ransomware attack using Splunk. Built out SPL queries to trace lateral movement, identify the initial access vector, and document the full attack chain.

Splunk Threat Hunting Ransomware SIEM
View Full Write-Up

CompTIA Sec+ & Net+ - Guide

A walkthrough of the exact study strategy, resources, and methodology used to pass both CompTIA Security+ and Network+ on the first attempt. Helpful for anyone pursuing these certifications.

Security+ Network+ CompTIA Study Guide
View Full Write-Up
// ctf competitions

Capture The Flag

CTF Leader for the NSU Cybersecurity Club (NSU Cyberhawks), facilitating weekly training sessions on a range of security topics.

NCL Spring 2026 Team Game

April 2026

NCL
Top 9% Team Placement
5 Team Members
145 Challenges Solved
View Official Score Report

The competition tested practical skills across nine domains: OSINT, Cryptography, Password Cracking, Log Analysis, Network Traffic Analysis, Forensics, Scanning & Reconnaissance, Web Application Exploitation, and Enumeration & Exploitation.

Web Cryptography Forensics Log Analysis
NCL Badge Top 9% Finish NCL Score-Report

Maltego CTF

February 2026

Maltego
#78 Finish
215 Points Earned
OSINT Focus Area

Maltego's first official CTF (competing under the pseudonym 'amyyyyy' and team 'Rachmaninoff'). This competition included a wide range of difficult OSINT challenges.

OSINT Reconnaissance
Maltego Badge Top 78 Finish
// resume

Education & Experience

Education

B.S. Cybersecurity - Northeastern State University

Expected May 2027

Broken Arrow, OK  ·  GPA: 4.0

President of the Cybersecurity Club · Active member of the Google-Funded Cybersecurity Clinic

A.S. Enterprise Development - Tulsa Community College

May 2024

Tulsa, OK

Academic Honors · Studied Computer Information Systems

Experience

AI Security Intern - Dr. Lisa AI

Aug 2025 – Nov 2025

Hybrid

Analyzed security risks across multiple tech stacks alongside the CTO, producing threat modeling reports to harden client LLM integrations. Validated AI input filters through self-directed research on Prompt Injection vulnerabilities, executing approved adversarial tests and documenting findings.

Cybersecurity Intern - Redynox

Jul 2025 – Aug 2025

Remote

Conducted web application penetration testing using ZAP and Wireshark, identifying critical vulnerabilities and delivering remediation reports. Hardened network systems by defining firewall policies and Least Privilege access controls across remote endpoints.

Branch Sales Associate - Grainger

Apr 2024 – Present

Tulsa, OK

Introduced processes to resolve persistent inventory bottlenecks, consistently clearing 100% of returned items each week. Maintained 98% inventory accuracy through routine stock audits while resolving complex technical and customer issues in a high-volume environment.

Certifications

CompTIA

CompTIA CySA+ CS0-003

Feb 2026

CompTIA Network+ N10-009

Jun 2025

CompTIA Security+ SY0-701

May 2025

Other

Azure Fundamentals AZ-900

May 2026

Blue Team Level 1 BTL1

Nov 2025

Google Cybersecurity Professional Certificate

Sep 2025
Download Full Resume
AZ-104 & AZ-500 in progress
// contact

Get In Touch

Whether it's an opportunity, a collaboration, or just to talk security — I am open to connecting.