Angie Agee, CISSP | Cybersecurity advisory

AI Security, Detection Validation & Cyber Risk Advisory

Public cybersecurity proof-of-work by Angie Valentine Agee, CISSP — focused on AI threat hunting, detection validation, DFIR evidence strategy, CMMC/GRC, and executive cyber risk translation.

AI security advisory View proof-of-work GitHub LinkedIn Medium

Current flagship Security R&D Toolkit and AI Threat Hunt Field Lab

Current focus

Turning AI security concepts into field-ready workflows.

AI security and threat hunting
Detection validation and control evidence
DFIR-ready evidence strategy
CMMC/GRC and cyber risk translation

Advisory lanes

Focused work across AI security, detection evidence, and cyber risk.

These paths connect practical advisory topics with live tools, research, and source-backed artifacts tied to Angie Agee's AI security, detection validation, DFIR, and cyber risk work.

AI Security & Detection Validation

AI threat hunting, detection gap analysis, telemetry requirements, and proof-of-work labs for teams that need to validate what their controls can actually see.

Cyber Risk, DFIR Evidence & CMMC/GRC

Executive-ready cyber risk translation, DFIR evidence strategy, and CMMC/GRC control narratives that connect technical proof to defensible decisions.

Public Proof-of-Work Portfolio

Live Firebase tools, GitHub source, Medium essays, and research artifacts that show how the advisory work translates into usable security workflows.

Live Firebase apps

Deployed security tools people can open and use now.

Live app

Security R&D Toolkit

Firebase-hosted security workbench with threat modeling, ATT&CK, AI security, cloud, red team, and investigation tools.

Live app

AI Threat Hunt Builder

Structured hunt builder for AI systems, evidence layers, investigation scope, and analyst-ready hunt briefs.

Live app

AI Asset & Blast Radius Mapper

Interactive mapper for AI assets, identities, tools, data access, and CISO-facing blast-radius narratives.

Live app

MITRE ATT&CK Explorer

Interactive matrix, searchable technique database, attack-chain builder, and self-assessment mode.

Live app

Cloud Attack Simulator

Azure, AWS, GCP, and hybrid attack paths with defensive notes and detection-query references.

Live app

Red Team Ops Planner

Engagement planning, recon workflows, C2 comparison, evasion notes, and purple-team handoff structure.

Selected work

Source-backed projects built for security research, practice, and interviews.

Live

Security R&D Toolkit

A browser-based workbench for threat modeling, ATT&CK research, AI threat hunting, cloud attack simulation, red team planning, and incident investigation workflows.

Threat modelingAI securityATT&CKATLAS

Live demo Source

Research

AI Agent Telemetry Contract

Director-facing telemetry requirements, controls crosswalks, and OAuth grant abuse hunt content for AI agent visibility and response readiness.

TelemetryControlsOAuth abuseAI agents

Source

Program

AI Threat Hunt Program

A practical AI security hunt program with D-Control loops, hunt structure, containment playbooks, and Discover-step scripts.

Threat huntingContainmentPlaybooksPython

Source

Toolkit

Detection Engineering Starter

Opinionated patterns for building a detection engineering function that can survive audit pressure, incident response, and executive tradeoff conversations.

DetectionAuditIROperating model

Source

Featured writing

Research notes and book-in-progress thinking.

May 11, 2026

When half your evidence is a model's chain-of-thought

Threat hunting was hard enough when the evidence was logs. With AI agents, the evidence is also reasoning. Here's what changes.

May 7, 2026

Blast radius for AI agents: a working framework

When you give an AI agent a tool, you're handing it the keys to everything that tool can reach. Here's how I think about scoping that.

All writing -> Medium ->

Contact

Want to talk AI security, threat hunting, or security tooling?

Message me Read writing See code