I'm an experienced IT consultant transitioning into cybersecurity, where my passion for protecting digital assets meets my proven ability to deliver business results.
After five years of banking/fintech product consulting, I'm channeling that same expertise toward cybersecurity challenges. Industry certifications - from CompTIA Security+ to ISO 27001 Provisional Implementer - demonstrate my commitment to mastering this field technically, while my consulting background ensures I can translate security concepts into business value.
I'm seeking opportunities to apply my stakeholder engagement skills and fresh cybersecurity knowledge to help organizations strengthen their security posture. Ready to grow together?
Compliance, Governance & Risk Management (GRC) +
- ISO 27001, NIST CSF, NIST SP 800-53, ASD Essential 8, CIS Benchmarks, Australian ISM, PCI-DSS
- ISMS implementation, risk assessment, treatment/mitigation strategies
- Internal audits, policy development, security controls implementation and gap assessments
Security Operations & SIEM +
- Microsoft Defender XDR (Endpoint, O365, Entra ID, etc.)
- Splunk Enterprise administration & dashboard creation
- SIEM configuration, Log correlation, monitoring & alerting: Splunk (SPL), Sentinel (KQL)
- Incident detection & response procedures
Threat & Vulnerability Management +
- MITRE ATT&CK framework implementation & threat mapping
- Threat hunting, threat intelligence (OSINT), IOCs, CVSS/CVEs
- Vulnearbility assesment (Nessus), penetration testing concepts
- Remediation strategies (hardening, patching)
Core Cybersecurity Concepts +
- Network security fundamentals and secure architecture design
- Identity and access management (IAM) principles
- Email protection (DKIM, SPF, DMARC), WAF, Cyber Kill Chain
- Cryptography, PKI, and data protection methodologies
- Cloud security (AWS, Azure) and hybrid environment protection
