A passionate engineer with a fascination for all things defensive security
Skills
Security
I have strong experience within incident management and response activities, rule tuning and detection capabilities.
As well as in depth knowledge of Threat Intelligence, SIEM, SOAR and EDR solution configuration, management and processes.
Cloud
I'm well versed within development of services within Cloud environments attributing from multiple years of
personal and enterprise environments. I'm primarily familiar with AWS with some exposure both to Azure and GCP.
Code
I have multiple years of experience as a software engineer designing and developing internal
security tools and automation written in languages such as Python and Bash.
Tools
For my development practices I've used a range of tools including Git for source version control,
CloudFormation, Terraform and CDKTF for Infrastructure as Code (IaC) and CodePipeline for CI/CD systems.
Resume
Experience
July 2022 - Present
Senior Security Engineer
Xero
● Assisting in roadmapping exercises and team direction, as well as mentoring junior team members in security and engineering topics
● Subject matter expert and point of contact for various internal teams for security engineering and detection and response related conversations
March 2020 - July 2022
Security Engineer
Xero
● Planning, designing and implementing solutions to continuously improve the efficiency of threat detection and alerting
● Configuring and maintaining detective and preventative capabilities through various established systems including EDR, SOAR and SIEM
● Mentoring multiple graduates that rotated through our pod and enabling them to become better engineers
March 2018 - March 2020
Security Operations Analyst
Xero
● Monitoring and investigating system anomalies within platform and product environments
● Investigating, coordinating and managing suspected security related incidents and leading their recovery activities
● Keeping informed with emerging security threats that have the potential to impact the business and implementing mitigating strategies
August 2017 - February 2018
Operations Engineer / Major Incident Manager
Datacom
● Monitored system generated alerts from dozens of corporate clients performing level 2/3 technical support
● Identified, managed and coordinated teams to resolve priority 1 and 2 incidents
● Performed daily backup activities and reporting functions