Navigating the Tech Frontier with a Cybersecurity Compass

With a rich background in technology, I delve into and advise on robust cloud and cybersecurity frameworks, aiming to foster understanding and readiness in navigating the digital landscape securely against evolving threats.

I have a deep passion for Cloud, Cyber Security, Linux, and Automation.

AWS Solutions Architect
Tanium Certified Administrator
CompTIA Security+
ISO27001
ISO27001

A brief history...

victorian department of education logo

SIEM SpecialistAug 2024 - present

Serving as a Subject Matter Expert (SME) on the Securing Connected Learners (SCL) Program, specifically focused on the SIEM project. This multiyear initiative is dedicated to enhancing advanced threat detection and response capabilities across all schools in Victoria, Australia, ensuring a secure learning environment for students and staff.

deloitte. logo

SIEM EngineerFeb 2024 - Jul 2024

Worked within the SDS team (Security & Data Systems, a.k.a the SIEM team).

  • Azure Lighthouse B2B migration project lead.
  • SIEM platform maintenance.
  • Detection engineering.
  • Customer onboarding.
  • Internal & client-facing technical documentation writing.
  • Routine SIEM checks.
  • Maintained an accurate internal client matrix for SIEM deployments.
paraflare logo

SIEM EngineerAug 2023 - Feb 2024

  • Collaborated with the wider team to design and implement custom dashboards in SIEM tools, providing real-time insights into the security landscape.
  • Conducted daily health checks and monitoring on SIEM systems to ensure uninterrupted log source integrations, identify any irregular activity such as unexpected spikes in data ingestion, validate rule efficacy, and ensure system optimizations for prompt threat detection and reporting.
  • Engaged in continuous learning and research to stay updated on the latest SIEM technologies, threat intelligence, and best practices.
  • Conducted regular audits and compliance assessments using SIEM solutions to ensure adherence to security policies and regulatory requirements.
  • Analyse data sources to provide actionable recommendations and strategic insights.
  • Interface with customers to address concerns, issues, or escalations; track and drive to closure any issues that impact the service and its value to clients.
  • Lead vendor support cases from opening to closure.
superloop logo

Cyber Security SpecialistJul 2022 - Jul 2023

Following the acquisition of Acurus by Superloop, I seamlessly transitioned into the Superloop team, where I continued to uphold and advance the responsibilities and initiatives that I managed at Acurus. In this capacity, I maintained my focus on delivering exceptional SOCaaS (SOC-as-a-Service) to customers, enhancing cybersecurity incident identification and remediation processes, and leading customer onboarding efforts. My role at Superloop has allowed me to further refine and scale the strategies and processes I developed at Acurus, contributing to the ongoing evolution and success of Superloop’s cybersecurity services.

reece group logo

Cyber Security ConsultantNov 2021 - Apr 2022

I was subcontracted out of Acurus to Reece Tech as a full time Cyber Security Analyst & Engineer.
My responsibilities included:

  • Uplifting, maintaining and monitoring their SIEM, SOAR & Vulnerability Management platforms.
  • Identifying and ingesting missing log sources.
  • Designing and developing incident response playbooks for automation.
  • Rule tuning and refinement of SIEM analytical rules to reduce the rate of false positives, whilst maintaining a high level of visibility.
  • Evaluating and improving areas of Reece’s security posture and procedures.
acurus logo

Cyber Security Specialist May 2021 - Jul 2023

  • Owned the setup and ongoing maintenance of SOCaaS (SOC-as-a-Service).
  • Prioritized the identification and remediation of cybersecurity incidents, safeguarding customer data and infrastructure.
  • Improved the Response and Remediation capability by building upon the SOAR (Security Orchestration, Automation, and Response) function.
  • Integrated SOAR with ticketing platforms to streamline incident resolution.
  • Mitigated alert fatigue and bolstered alert fidelity through research and refinement of detection engineering efforts and processes.
  • Led and guided the onboarding of several customers for the SOC service.
  • Developed process to ensure complete data ingest from valuable sources in customer environments.
  • Ensured timely deployment of new customer environments within the allocated time frame.