Jeremy Viet Duong

Recent CIS graduate and early-career SOC & Cloud Security analyst focused on protecting cloud environments and the digital supply chains that keep organizations running.

Early-career • Cybersecurity / Cloud / Supply Chain

Houston, TX (remote-friendly)

View projects Get in touch

Projects

Here's a collection of the work I did throughout my CIS program, along with a few personal cloud, security, and supply chain related projects I've taken on as I keep learning. these projects reflect how I grew my skills in AWS, security, and full-stack development while working with real teams, real deadlines, and real environments that supported different parts of a digital supply chain.

Azure Cloud Security Posture Assessment

Work Project

I reviewed SGV International’s Azure setup using ScoutSuite, and Defender for Cloud to see where things could be tightened up. After going through the findings, I mapped everything to CIS benchmarks, called out the issues that actually mattered, and built an LOE-vs-risk breakdown so leadership could understand what to fix first. A lot of the work centered around identity, access, and small configuration gaps that could affect other systems or teams downstream.

Azure Defender for Cloud ScoutSuite

View slides →

Militia Protection Architecture (Capstone)

Capstone

I served as the production architect for my CIS 4375 capstone project, building the full AWS environment for a custom inventory management system for a small business. Designed and deployed a secure VPC, EC2 backend, RDS MySQL database, and S3-hosted frontend using CloudFormation. Focused on security, reliability, and keeping the system easy for a small team to operate.

Architecture AWS MySQL / RDS

View slides →

MEVN Full-Stack Community Resource Platform

Academic

For CIS 3339, my team and I worked on expanding an existing MEVN full-stack application built for a Houston non-profit. The platform is used by Community Health Workers to manage clients, events, services, and intake forms across multiple organizations. We didn’t start from scratch — our job was to take over the codebase, improve it, and add new features. We migrated the frontend from the Options API to the Composition API, added a working login system with viewer/editor roles, built CRUD tools for services, connected the backend to a cloud MongoDB Atlas instance, and cleaned up several API routes. I helped prepare our Sprint 3 presentation and worked with the team to test everything end-to-end.

MEVN Stack MongoDB Atlas Vue (Composition API) Node.js / Express

View presentation →

Stock Brokerage Management System

Academic

I built a stock brokerage management system for my CIS 2368 final project, focusin on getting comfortable with full-stack development in Python. The backend was written in Flask, and I used EJS on the frontend to keep things simple and easy to work with. The system lets you manage investors, stocks, and bonds, and it includes the basic rules you'd expect in a brokerage, like not letting someone sell more shares than they actually own.

Python / Flask EJS / Frontend SQL / Database

View presentation →

Multi-Region AWS Enterprise Cloud Architecture for GoGreen Insurance

Academic

For my CIS 3367 Project, I designed a multi-region AWS architecture for a fictional insurance company called GoGreen. The setup used a full three-tier design across two regions, with separate VPCS, subnets, EC2 app servers, RDS databases, and ElastiCache in each region. I added CloudFront, Route 53, and Global Accelerator for performance and failover, and layered in security tools like GuardDuty, WAF, Secrets Manager, IAM controls, and proper network boundaries. Overall, the project gave me hands-on experience building a secure, scalable cloud environment from the ground up.

AWS Architecture Multi-Region VPC / Networking RDS / EC2 / ElastiCache CloudFront / Route 53

View documentation → • View diagram →

E-Commerce Management System

Academic

For my CIS 4365 project, my team and I designed a full e-commerce management system using SQL and ER modeling. We built out the entities, relationships, and core database features for products, customers, orders, payments, and inventory. The goal was to create a database structure that could support a real online store.

SQL / Database ER Modeling E-Commerce

View diagram →

Python Inventory Processing System

Academic

For my CIS 2348 final project, I built a Python program that manages the inventory for an electronics store. The program reads three CSV files for manufacturers, prices, and service dates, then combines everything into a set of clean, organized inventory reports. It sorts items, flags products that are past their service date, and separates damaged items into their own file. This project helped me get comfortable with Python fundamentals like file input/output, dictionaries, loops, and basic data processing.

Python CSV Processing File I/O Data Structures

View source code →

Enterprise Network Design for an 8-Story Residence Hall

Academic

For my CIS 3347 final project, I designed the full network architecture for an eight-story residence hall at the University of Houston. The building needed separate networks for residents, employees, and visitors, so I planned out a segmented design with different subnets, Wi-Fi frequencies, and security layers across all eight floors. I mapped out every floor’s wired and wireless layout, placed all switches, routers, WAPs, and backbone connections, and built a full cost estimate using Cisco equipment. This also included designing the MDF on the first floor, distribution for floors 2–8, and a full building-wide backbone diagram that shows how traffic flows from the ISP router through the firewall, core router, and into each floor’s LAN.

Network Design Architecture Subnetting

View documentation → • View floor plan diagram →

Auto Management System - Systems Analysis & Design

Academic

For my CIS 3343 Systems Analysis and Design course, my team and I designed a full systems proposal for a new Auto Management System for a fictional car dealership. Their existing dealer management application was outdated, slow, and difficult to use, so our job was to analyze the client's needs and outline a modern solution. I helped gather and organize requirements, document the problem, and support the creation of our data flow diagrams and system proposal. Our work included defining the project scope, building the requirements list, creating the context, Level 0, and Level 1 DFDs, and evaluating both custom-built and off-the-shelf alternatives. We also outlined feasibility, system recommendations, and a high-level design that improved usability, performance, data security, and scalability. The final deliverable was a full digital binder that walked through the entire SDLC analysis phase - from identifying issues with the legacy system to proposing a modern, user-friendly dealership management solution.

Systems Analysis Requirements Gathering Feasibility Study

View documentation →

About

I’m a recent CIS graduate and early-career SOC & Cloud Security analyst. I’m interested in how cybersecurity, cloud systems, and supply chain operations connect, especially around identity, compliance, and securing the services organizations rely on. I enjoy breaking down technical risks and making them clear, practical, and easy for people to understand.

Cloud Security SOC / Blue Team Azure & AWS Supply Chain Security Risk & LOE analysis Teaching & Mentoring

Education

B.S. in Computer Information Systems

University of Houston

May 2025

Graduated with a focus on cybersecurity, cloud computing, and system architecture. Completed hands-on projects across AWS, security architecture, supply chain systems, full-stack development, and network design. Finished with strong academic momentum, earning consecutive Dean’s List recognition in my final semesters.

Experience

Junior Cybersecurity Analyst

SGV International

June 2025 – Present

I supported the security team by monitoring alerts, reviewing findings, and helping improve our cloud and endpoint security. Most of my work focuses on Azure - checking configurations, running tools like ScoutSuite and Defender for Cloud, and calling out issues that could affect identity, access, or downstream systems. I also help maintain our email and endpoint security tools, work on weekly reports, and assist with prioritizing remediation so leadership knows what needs attention first. The role has given me hands-on expereince with real environments, real risks, and how small changes in security can impact the rest of the business.

QA GxP Computer Systems Validation Intern

American Regent Inc.

June 2024 – August 2024

During my intership at American Regents, I supported the IT and QA teams by helping maintain several GxP-regulated systems used in manufacturing and lab environments. I assisted with system validations, documentation updates, and change control tasks that had to follow FDA 21 CFR 11 requirements. I also helped troubleshoot issues with user accounts, access, and device configurations, and worked closely with senior analysts to make sure everything stayed compliant and audit-ready. A lot of the work focused on reliability, accuracy, and proper documentation, so I learned how regulated systems support the bigger picture of pharmaceutical manufacturing and the supply chain behind it. It was my first exposure to working in a controlled environment, and it taught me the importance of doing things carefully and clearly, especially when the systems impact real products and patients.

IT Intern

Amogy

February 2024 – April 2024

At Amogy, I supported the IT team with day-to-day operations across hardware, software, and user support. I helped onboard new employees, set up laptops and accounts, troubleshoot issues, and keep devices compliant with company policies. I also wroked with inventory, network equipment, and documentation, giving me a solid foundation in how IT supports fast-moving engineering teams. The role taught me to solve problems quickly, communicate clearly, and keep systems running smoothly in a growing tech environment.

Technology Operations Intern

IDEA Public Schools

June 2023 - August 2023

I worked with the Technology Operations team, shadowing the computer technicians across multiple campuses to learn how they support day-to-day IT needs. Most of the work involved helping troubleshoot classroom and staff devices, checking equipment, and learning how they use Zendesk to track and resolve tickets. It gave me a good look at how campus-level tech support works and how the IT team keeps everything smootly for teachers and students.

Competitions

Web Designer

hackMISSO

March 2025

My team and I built a Flask fitness application at hackMISSO that included personalized workouts, a simple progress dashboard, and an easy-to-use UI. We deployed the app on an AWS VM and made sure the API, database, and frontend worked smoothly together. We treated the setup like a small "digital supply chain," focusing on how data moves through the system and keeping everything reliable during the event. Our team earned 2nd place overall.

Python / Flask Team Project

Developer

USITCC Nationals Hackathon

April 2025

My team and I built InterestLink, a social web platform that connects people based on shared hobbies and interests for the USITCC 2025 Hackathon competition. We designed the full system architecture, created the project documentation, and deployed a working MVP on AWS using a three-tier setup with Flask (frontend), Node.js (backend), and MySQL on RDS.

We received Honorable Mention for our system design, cloud deployment, and overall project execution.

AWS Flask / Node.js Systems Design

View presentation deck → • View documentation → View deployment plan →