top of page
Foot Tracks on Sand

MICHAEL HE

Cybersecurity Engineer | Network Security & Could Secuirty

​Hi, I am Michael.

I design, build, and share hands-on cybersecurity homelabs / demos to master firewalls, cloud security, and network automation. These are my projects, skills, and ongoing learning journey. 

Certified in...

Azure

  • Azure AI Engineer Associate AI-102

  • Azure Solution Architect Expert AZ-305

  • Azure Administrator Associate AZ1-104

  • Azure AI Fundamentals AI-900

  • Azure Fundamental AZ-900

Palo Alto

  • PCNSE 7

Cisco:

  • CCNA (Routing & Switching)

Check Point

  • CCSA R75

  • CCSE R75, R77

Zscaler (ZIA & ZPA)

  • Certified Cloud Professional

  • Certified Cloud Administrator 

  • Certified TAC Associate 

  • Security Specialist (ZIA)

LogRhythm:

  • Certified Support Engineer

About Me

AI & Cloud Blogs (new!)

PALO ALTO Firewall Lab <- click

I built a Palo Alto homelab to simulate enterprise firewall deployments, covering core configurations, NAT policies, SSL decryption, content filtering, and advanced threat prevention. The setup also includes GlobalProtect VPN, high availability, and log analysis with PCAPs, showcasing hands-on experience in securing and managing modern networks.

CISCO <-click

This section covers essential Cisco networking and firewall skills, from home lab setup to advanced configurations. You’ll find guides on ASA firewalls, VLANs, NAT, routing protocols (RIPv2, OSPF, EIGRP), STP, and WAN/PPP technologies. Whether you’re practicing basics or exploring advanced scenarios, these labs and concepts will help you build a strong foundation in Cisco networking and security.

CHECK POINT <-click

This setup combines a homelab and demo environment to explore Check Point technologies. It covers installation, NAT, LDAP integration, and Identity Awareness with Captive Portal, along with advanced tasks like VSX deployment and upgrades, VPN-to-MPLS conversion, and policy export. Together, these exercises demonstrate both practical configuration skills and the ability to showcase Check Point’s enterprise features in action.

Palo Alto XSIAM <-click

This architecture illustrates how Palo Alto XSIAM unifies data collection, analytics, and automation to streamline SOC operations. Data flows in from on-premises devices, endpoints, and cloud sources through brokers, agents, and APIs into XSIAM’s ingestion layer. Within XSIAM, the console and analytics engine process this data, while integrated modules such as XSOAR (threat intelligence and automation), SOAR (incident response workflows), and XPANSE (attack surface and vulnerability management) enhance detection and response capabilities. The system integrates with external tools like ServiceNow for ticketing and leverages a datalake for scalable storage and analysis

 

bottom of page