I'm an IT professional with over 5 years in the banking tech world. I've worn quite a few hats - implementing banking products, consulting with clients, and leading managed services teams. I'm pretty good at juggling development teams using agile methods, consulting on product solutions, and setting up processes that actually work.
What really gets me excited? Keeping information secure and protecting against those pesky cyber threats. While I've built a solid foundation in app support, I'm now diving headfirst into cybersecurity and GRC frameworks.
I've picked up some shiny certifications along the way and am looking for my next challenge in IT support leadership or junior cybersecurity roles.
Compliance, Governance & Risk Management (GRC) +
- ISO 27001, NIST CSF, NIST SP 800-53, ASD Essential 8, CIS Benchmarks, Australian ISM, PCI-DSS
- ISMS implementation, risk assessment, treatment/mitigation strategies
- Internal audits, policy development
Security Operations & SIEM +
- Microsoft Defender XDR (Endpoint, Identities, O365, Entra ID)
- Defender Vulnerability Management
- Log correlation / monitoring & alerting: Splunk (SQL), Sentinel (KQL)
- Incident detection, analysis & response
Threat & Vulnerability Management +
- Threat hunting, vulnerability scanning (Nessus), threat intelligence (Mandiant, OSINT)
- Network traffic analysis (Wireshark, tcpdump)
- Remediation strategies (hardening, patching)
Core Cybersecurity Concepts +
- Attack vectors (phishing, malware, ransomware), OWASP top 10 Vulnerabilities and exploitation techniques
- Email protection (DKIM, SPF, DMARC), WAF, MITRE ATT&CK, Cyber Kill Chain
- Cloud security (AWS, Azure), Scripting (Bash, PowerShell), Linux/Windows admin
