Skills, tooling, and workflow

Core capabilities from my CV and day-to-day work across application security, cloud security, DevSecOps, red teaming, and security engineering.

Cloud security and DevSecOps

  • Cloud security architecture

    IAM configuration review, network segmentation, and encryption controls across multi-cloud SaaS environments — applied extensively during white-box pentest engagements across all Exabeam products.

  • CI/CD security integration (SAST / SCA / DAST)

    Managing scanning pipelines, result triage, false-positive reduction, and PR-level feedback loops. Enforced mandatory security gates in CI/CD across all product repositories via Ansible IaC.

  • Infrastructure-as-Code

    Terraform, Ansible, and Packer for repeatable, auditable, secure-by-design pipelines — including automated C2 infrastructure and isolated lab environment provisioning.

Offensive security

  • Application and network penetration testing

    White-box and adversary-style testing focused on attack paths, exploitation feasibility, and practical remediation across all company products.

  • Red team and assumed-breach exercises

    Custom payload development to bypass AV/EDR, lateral movement, data exfiltration testing, and C2 framework evaluation in isolated lab environments.

  • Purple team engagements

    Collaborative re-runs of red team scenarios with the SOC team for step-by-step validation of rules and alerts, and collaborative rule and alert creation.

Security engineering

  • Threat modelling and risk assessment

    Data flow and process flow diagrams at system scale, supporting threat modelling across cloud-native SaaS products. Cross-functional collaboration from individual contributors to C-level.

  • AI-assisted security tooling

    Built an AI-powered findings triage system that classifies SAST/SCA results, filters false positives at scale, and automatically opens GitHub PRs with AI-generated remediation code — demonstrating production-grade LLM integration within a security engineering workflow.

  • Security mentorship and training

    Mentored software engineers on secure coding practices, OWASP Top 10, and threat modelling; delivered internal training sessions to embed security as a first-class engineering concern across product teams.

Languages and infrastructure

  • Programming languages

    Python, Go, Rust, C# — automation, tooling, and systems-level security work. Also PHP and Java from earlier web development roles.

  • Payload and evasion R&D

    Testing custom payloads and loaders (Rust, Nim) with focus on antivirus and EDR bypass within authorized lab environments. C2 framework evaluation and detection testing.

  • Cross-functional communication and leadership

    Managed teams of 4–7 engineers across multiple industry verticals. Clear, actionable risk communication from engineering teams to C-level stakeholders.