Open-Source Cybersecurity Project by Paulo Bião — Healthcare data protection system demonstrating encryption, audit logging, and privacy-by-design architecture for EB2-NIW portfolio.
Objective
Demonstrate real-time data encryption, access audit, and risk detection for healthcare systems — aligned with HIPAA/privacy best practices.
This repository is portfolio-grade evidence of applied cybersecurity for EB2-NIW.
- Encryption-at-rest (AES-256) + integrity checks
- Access audit logs (who/when/what) with reason codes
- 2FA (TOTP) simulation + RBAC (roles)
- FastAPI service + Docker + CI
- Sample data and scripts for demos
Python 3.11 • FastAPI • cryptography • PyJWT • SQLite/PostgreSQL • Docker • GitHub Actions
git clone https://github.com/paulobiao/HealthGuard.git
cd HealthGuard
pip install -r requirements.txt
uvicorn src.main:app --reload
docker build -t healthguard:0.1.0 .
docker run -p 8000:8000 healthguard:0.1.0
📁 Project Layout
src/
healthguard/
main.py # FastAPI app & endpoints
encryption.py # AES encryption utilities
audit.py # access logging
models.py # schemas for patient data
tests/
test_encryption.py
test_audit.py
data/
sample_medical_records.csv
docs/
compliance_hipaa.md
.github/workflows/ci.yml
Dockerfile
docker-compose.yml
requirements.txt
LICENSE
README.md