London Area, United Kingdom
Cyber Security Engineer with experience across incident response, security operations, detection engineering, threat hunting, and vulnerability management. My background spans fintech, banking, and enterprise environments, where I have investigated and responded to security incidents across Azure, AWS, SIEM/XDR platforms, EDR, firewalls, email security, and web security technologies. I have a strong track record of improving security posture through practical, risk-led engineering aligned with ISO 27001 and NIST frameworks. My work is focused on building mature, scalable security capabilities that strengthen detection, response, and resilience. This includes developing incident response playbooks, leading tabletop exercises, implementing Azure-native vulnerability management processes, improving privileged access controls, conducting forensic investigations, and working closely with SOC, Engineering, and Detection teams to tune alerts, create new detections, and reduce organisational risk across cloud and enterprise environments.
• Lead triage, investigation, and remediation of security incidents alongside Playbooks • Use Splunk, MDE, CrowdStrike, and other security tools to detect, respond and contain • Analyse network, firewall, proxy, email, cloud, and host telemetry • Identify IOCs and trace root causes across environments • Correlate enterprise data to spot anomalies and prioritise threats • Execute rapid response actions aligned with SOPs • Tune alerts to reduce false positives and improve accuracy • Maintain detailed incident records in Jira • Document findings, actions, and process improvements • Collaborate with Red, Purple, Pen Test, Threat Intel, and Engineering teams
Blue Team: - Responding to Security Incidents - Firewall Investigation - EDR Investigation - Phishing Investigation - Partaking in Desktop Exercises - Forensics & IR - Decision Process for CS Software - Business Continuity - Automation of Manual SOC - AWS Vulnerability Auditing Purple Team: - Emulating Desktop Exercises - MITRE ATT&CK Testing - Testing Security Controls - Improving Email Gateway, Web Gateway & Endpoint Security Configuration - Comparing EDR Performance - Security Tool Engineering - Pen Testing Fundamentals