Portfolio
Projects
A selection of cybersecurity projects I've led and contributed to over the years. Each project demonstrates my technical expertise and ability to deliver security solutions.
Enterprise SIEM Implementation
2022 - 2023Led a cross-functional team in implementing a next-generation Security Information and Event Management (SIEM) system across a global organization with 10,000+ endpoints. Integrated with multiple security tools and developed custom dashboards for real-time threat monitoring.
Vulnerability Management Program
2021 - 2022Designed and implemented a comprehensive vulnerability management program for a financial services company. Created automated workflows for vulnerability scanning, prioritization, and remediation tracking that reduced the mean time to remediate critical vulnerabilities by 45%.
Cloud Security Framework
2020 - 2021Developed a comprehensive security framework for cloud environments (AWS, Azure, GCP) that ensured compliance with industry standards while enabling developer productivity. Implemented infrastructure as code for security controls and continuous compliance monitoring.
Security Awareness Training Platform
2019 - 2020Created an interactive security awareness training platform using gamification principles to increase employee engagement. The platform included simulated phishing exercises, microlearning modules, and a leaderboard system that increased training completion rates by 78%.
Articles & Blog
I regularly write about cybersecurity topics, sharing insights and practical advice from my experience in the field. Here are some of my recent articles.
The Future of Zero Trust Security in Enterprise Environments
April 10, 2025Zero Trust has become a cornerstone of modern security architecture, but its implementation comes with challenges. This post explores how organizations can effectively transition to a Zero Trust model while maintaining operational efficiency.
Practical Approaches to Cloud Security Posture Management
March 22, 2025As organizations continue to migrate workloads to the cloud, maintaining a secure cloud posture becomes increasingly complex. This article outlines practical strategies for implementing effective cloud security posture management across multi-cloud environments.
Defending Against Supply Chain Attacks: Lessons from Recent Incidents
February 15, 2025Recent high-profile supply chain attacks have demonstrated the devastating impact these threats can have. Learn the key strategies for identifying and mitigating risks in your software supply chain to protect your organization.
Building an Effective Security Operations Center (SOC) on a Budget
January 28, 2025You don't need a massive budget to establish an effective security operations center. This post covers practical advice for setting up a SOC that delivers real security value while optimizing resource allocation.
The Convergence of DevOps and Security: Making DevSecOps Work
December 12, 2024DevSecOps represents the integration of security practices into the DevOps pipeline. This article explores how to overcome the cultural and technical challenges in implementing a true DevSecOps approach.