FedX | Federico Castro, CISSP — Blue Team Security Analyst

Who I Am

Blue team analyst.
Educator. Defender.

I'm Federico Castro, known across the cybersecurity community as FedX. I'm a CISSP-certified Security Analyst focused on Blue Team operations — alert triage, threat investigation, incident response, and remediation from detection all the way through containment and recovery.

I thrive in the middle of the action: correlating events across SIEM platforms, hunting for indicators of compromise, and turning raw alerts into clear, decisive action. My approach is methodical but fast — because when something's happening on the network, speed and accuracy both matter.

I bring a unique perspective shaped by my neurodiversity (ADHD) — which gives me an edge in pattern recognition and sustained focus during high-pressure investigations. I'm fluent in English, Spanish, and Portuguese, which means I can work seamlessly with global teams and communicate findings clearly to any audience.

I hold a B.S. in Cybersecurity and an A.S. in Information Network Systems Technology from Seminole State College of Florida, and hold the CISSP certification.

Alert Triage Threat Investigation Incident Response Remediation SIEM / SOC Threat Hunting Log Analysis Endpoint Detection Network Security Forensics IT Infrastructure EN · ES · PT

Federico Castro · FedX

🛡️

CISSP

Certified Information Systems Security Professional — ISC²

🔵

Blue Team Operations

Triage · Investigation · Containment · Remediation

🎓

B.S. Cybersecurity

Bachelor of Science in Cybersecurity

📡

A.S. Network Systems

Information Network Systems Technology · Seminole State College of Florida

🌐

Trilingual

Fluent in English, Spanish, and Portuguese — bridging global security communication

📺

Content Creator

Host of FedX Cyber Channel — Blue Team & cybersecurity education on YouTube

Career

Work Experience

I didn't take a straight line into security — and that's exactly what makes my perspective different.

Security Analyst

Current

// Enterprise Security · Full-time

This is where I live day to day — deep in Blue Team operations, working across threat intelligence, detection, incident response, and security awareness. Some things I'm proud of:

Took a security awareness program that was barely reaching half the organization and turned it into full participation — and got phishing failure rates down below 22%.
Hunt threats by digging into adversary TTPs and infrastructure, connecting the dots between signals that others might miss.
Built and tuned custom detection logic to cut through the noise — less alert fatigue, more meaningful findings.
Use AI and automation to make threat analysis faster and more consistent without losing the human judgment that actually matters.
When incidents happen, I see them through from the first alert all the way to containment, remediation, and lessons learned.
Work closely with legal, IT, and compliance to make sure security isn't operating in a silo — it has to make sense for the whole business.

Director of IT & Security

// IT Leadership · Full-time

Before moving fully into security, I ran IT and security operations for a large multi-site organization. It was the kind of role where you had to wear every hat — and I learned a lot about how security actually has to work in the real world, not just on paper.

Designed the network security architecture and firewall setup from the ground up.
Led a campus-wide fiber infrastructure overhaul that dramatically improved reliability and resilience.
Built out physical security and communications systems that the organization still relies on today.
Ran security training across all departments — getting non-technical people to actually care about security is a skill in itself.

Installation Engineer

// Telecommunications · Full-time

My technical foundation started here — hands-on, in the field, solving real problems under pressure. It taught me how infrastructure actually works at the physical layer, which gives me a perspective most analysts don't have.

Installed and maintained fiber, broadband, and communications systems for enterprise and residential customers across Central Florida.
Mentored newer team members — breaking down complex technical processes into something anyone could follow.
Worked directly with engineering teams to streamline processes and reduce errors in the field.

Cybersecurity Educator & Content Creator

Ongoing

// FedX Cyber Channel · YouTube

Outside of the day job, I run the FedX Cyber Channel — a community built around real talk on Blue Team security, career growth, and the practical skills that formal education tends to skip over. If I've figured something out the hard way, I share it so others don't have to.

Work

Projects & Highlights

A selection of work spanning Blue Team operations, security education, and community contributions.

🔎

Threat Triage Workflow

Designed a structured alert triage methodology for SOC environments — prioritizing signal over noise, reducing false positive fatigue, and cutting mean time to respond across high-volume alert queues.

SOCTriageSIEM

🕵️

Incident Investigation Playbooks

Built repeatable investigation playbooks for common attack patterns — phishing, lateral movement, credential abuse — enabling consistent, thorough analysis regardless of analyst experience level.

IR PlaybooksDetectionThreat Intel

🚨

Incident Response & Remediation

Led end-to-end incident response engagements — from initial detection and scope determination through containment, eradication, and post-incident review with lessons-learned documentation.

Incident ResponseContainmentRecovery

📊

SIEM Tuning & Detection Rules

Developed and tuned custom detection rules across SIEM platforms to improve fidelity, reduce alert fatigue, and surface high-confidence threats faster with fewer false positives.

SIEMDetection EngLog Analysis

📺

FedX Cyber Channel

A YouTube channel dedicated to Blue Team and cybersecurity education — helping analysts build real investigation skills, navigate certifications, and level up in a field where hands-on knowledge is everything.

EducationBlue TeamYouTube

🎓

CISSP Certification Journey

Documented study strategy, resources, and real lessons learned while earning the CISSP — shared openly with the community to help others navigate one of cybersecurity's most respected certifications.

CISSPCommunityKnowledge Share

Content & Community

The FedX
Cyber Channel

School gives you a foundation. The industry demands more. That's why the FedX Cyber Channel exists — to fill in the gaps between what's taught and what it actually takes to work the Blue Team side of cybersecurity.

Whether you're learning to triage alerts, building your investigation skills, or figuring out how incident response actually works in production — this channel is for you. No gatekeeping. Real analyst talk, practical walkthroughs, and a community leveling up together.

Watch on YouTube →

YouTube

FedX Cyber Channel

Blue Team and cybersecurity education — triage, investigation, incident response, and the real skills defenders need. Hosted by Federico Castro (FedX), CISSP.

Blue Team Alert Triage Incident Response Threat Hunting SIEM / SOC Cyber Careers

Subscribe →

Get In Touch

Let's talk
cybersecurity.

Available for Blue Team consulting, incident response support, security training, and speaking opportunities. Whether you need an extra set of eyes on an investigation or want to build out your team's detection capabilities — let's connect.

Happy to communicate in English, Spanish, or Portuguese — whichever works best for you and your team.

💼

linkedin.com/in/fedx-castro

Quick Info

Based in Florida — serving clients and collaborating with professionals worldwide.

📍Central Florida, FL