Skip to content
View MgnCoding2020's full-sized avatar

Achievements

Achievement: Pull Sharkx2

Achievements

Achievement: Pull Sharkx2

Block or report MgnCoding2020

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
MgnCoding2020/README.md

Cybersecurity Governance Portfolio

This repository serves as a cybersecurity governance portfolio focused on Governance, Risk, and Compliance (GRC).

The goal of these projects is to explore how a structured security program can be designed for a small business environment, using concepts from frameworks such as the NIST Risk Management Framework (RMF) and the NIST Cybersecurity Framework (CSF).

Projects focus on:

  • risk assessment
  • governance processes
  • identity and access management
  • continuous monitoring concepts
  • control-to-evidence mapping

About Me

As I began my Bachelor of Science in Cybersecurity and Information Assurance in 2024, my initial interest was in offensive security.

As I progressed through A+, Network+, and Security+, I discovered my stronger interest is in governance, security architecture, and the structured protection of systems.

I started by hardening my own environment (separate admin accounts, removing unused services, deny-by-default firewall principles), and then began building workflows that compare system baselines and detect configuration drift through scheduled scans.

This work evolved into building portfolio-style governance projects that connect security controls, monitoring, and documentation.

Portfolio Structure

The repositories in this portfolio represent components of a small-business security program, and the Technical Governance lab was/is an EDR project I was previously working on, now slowly transitioning to its own standalone GRC project (name to be updated).

Cybersecurity Governance Portfolio
│
├── Security Program Projects
│   ├── Coffee Shop Security Program
│   └── IAM Access Review Lab
│
└── Technical Governance Labs
    └── Endpoint Monitoring & Configuration Drift Lab

Each project focuses on a different aspect of governance and risk management.

Featured Projects

GRC Paper Project (Coffee Shop)

A long-form governance project simulating how a security program could be designed for a small retail coffee shop environment.

The project explores:

  • business risk identification
  • asset inventory
  • control framework alignment
  • governance documentation
  • security program planning

Repository:
https://github.com/MgnCoding2020/grc-paper-project-coffee-shop

IAM Access Review Lab

A governance-focused lab simulating an identity access review process.

The goal is to demonstrate how access inventories can be reviewed, findings documented, and remediation tracked.

Repository:
https://github.com/MgnCoding2020/IAM-Access-Review-Lab

HomeEDR and Governance Security

This project began as a personal system-hardening and monitoring lab on my workstation.

The lab focuses on:

  • baseline snapshots
  • configuration drift detection
  • reporting workflows

While not directly tied to the coffee shop governance scenario, it helped introduce concepts of continuous monitoring and control validation, which are important in governance programs.

Repository:
https://github.com/MgnCoding2020/HomeEDR-and-Governance-Security

Current Focus

Current areas of study and development include:

  • NIST RMF & governance concepts
  • continuous monitoring workflows
  • configuration drift detection
  • governance documentation
  • control-to-evidence mapping

Certifications

ISC2 Candidate CompTIA Secure Infrastructure Specialist – CSIS Stackable Certification CompTIA Security+ ce Certification CompTIA IT Operations Specialist – CIOS Stackable Certification CompTIA Network+ ce Certification CompTIA A+ ce Certification

Education

Bachelor of Science — Cybersecurity and Information Assurance (WGU)
2024 – In Progress

Popular repositories Loading

  1. grc-paper-project-coffee-shop grc-paper-project-coffee-shop Public

    Building out structured Draft documentation to demonstrate GRC / NISt SP controls. Drafts will be utilized in smaller repo projects

  2. HomeEDR-and-Governance-Security HomeEDR-and-Governance-Security Public

    Scripts used with task scheduler to generate baselines for your system and develop snapshots to detect if drift occurs

    PowerShell

  3. MgnCoding2020 MgnCoding2020 Public

    Display Credly Badges

  4. IAM-Access-Review-Lab IAM-Access-Review-Lab Public

    Demonstrates an Identity & Access Management (IAM) governance workflow including access review procedures, evidence collection, findings, remediation tracking, and password policy hardening using a…

  5. Vendor-Risk-Assessment-Lab Vendor-Risk-Assessment-Lab Public

  6. Cybersecurity-Monitoring-Lab Cybersecurity-Monitoring-Lab Public

    A defensive cybersecurity lab demonstrating Windows event monitoring and investigation with Sysmon. The project documents real telemetry such as process execution, PowerShell activity, and DNS look…