Started off disinfecting my own computers (no, not with windex), then others' machines at school. I've worked on security hardening and disaster recovery projects, studied malware detection and detection evasion techniques and written my own (lab-only) malware.