Skills

Cloud Security Architecture and Engineering
Technology and Application Security Architecture
Secure DevOps (DevSecOps)
Containers (Docker) and Microservices
Automation of Security Controls / Analysis
Agile, Git, CI/CD Pipelines and IaC
Serverless Development and Architecture
Threat Modelling and Risk Management
Development: C++/QT5, NodeJS, AWS Lambda
Security Assessments, Malware Analysis and Forensics
Compliance: ISO27001, PCI, NCSC, CSA, GDPR

Publications

SANS Pentest Poster (Practice Mind Map): 2015, 2016
Malware 101 Viruses : SANS Institute: April 12, 2008
Securing Home Computers: April 30, 2010
 

  Certifications

AWS: Security Specialist, Solution Architect (Associate)
SABSA Chartered Architect (Foundations)
CISSP-ISSAP (Architecture Concentration)
GIAC: GPEN, GCIH, GREM, GCIA, GSEC
CISA, BS7799 (ISO27001) LA, Kubernetes KCNA
 

  Experience

Founder
Secur3 Ltd (www.secur3.io)
[Jul 2018 - Present]
London, UK
GIAC Gold Advisor
GIAC / SANS Institute
[Apr 2009 - Dec 2021]
Remote/Online
Cloud, DevOps & SDLC Security
Freelance/Various
[Jun 2023 - Present]
London, UK
Cloud Security Architect
Santander UK
[Dec 2021 - May 2023]
Milton Keynes, UK
Lead Security Architect/Engineer
Argus Media
[Sep 2018 - Dec 2021]
London, UK
Senior Security Architect/Engineer
Metapack
[Apr 2018 - Sep 2018]
London, UK
Senior Security Architect
Mimecast
[Sep 2015 - Apr 2018]
London, UK
Security Consultant
IBM Security [UKI]
[Feb 2014 - Aug 2015]
London, UK
Security Consultant
NCC Group (NGS Secure)
[Mar 2011 - Feb 2014]
Leatherhead, UK
Senior Consultant
Emirates Integrated Telecom Company (Du)
[Oct 2009 - July 2010]
Dubai, UAE
Security Consultant
SecureSynergy
[Sep 2006 - Jan 2009]
Bangalore, India
...

  Education

Cylon Hutzero4
[2018]
Startup Accelerator Program
SABSA Foundations (F1 and F2)
[2015]
Enterprise Security Architecture
IASA UK Architecture Summit 2013
[2013]
Architecture (Enterprise, Business and IT)
SANS EUDFIR2011
[2011]
European Digital Forensics and Incident Response Summit 2011
SANS Europe2010
[2010]
SEC560 - Network Penetration Testing
SANS Onsite (India)
[2007]
SEC504 - Hacker Techniques & Incident Handling