At Lionsoul Global, I lead security engineering efforts in a fast-paced startup environment focused on digital assets and wealth management. My work centres on building and scaling secure infrastructure, embedding security early in the development process, and enhancing the organisation’s overall security posture.Key Achievements:• Architecting secure, resilient infrastructure in AWS using Terraform, ensuring scalable security for digital asset services.• Enhancing container and cloud security by hardening and building containerised environments, mitigating potential vulnerabilities.• Building robust security measures across the SDLC, including SAST, DAST, enabling automated vulnerability detection and remediation.• Collaborating with an external Security Operations Center (SOC), refining incident response strategies to safeguard both internal infrastructure and client data.• Conducting penetration testing for internal systems and front-end applications, identifying and addressing critical vulnerabilities, and improving content validation to counteract attacks.• Developing a comprehensive Security Engineering strategy to strengthen the company’s defences and protect customer assets.In this role, I focus on proactive, scalable security solutions that support Lionsoul’s growth, ensuring resilience and trust in our digital asset services.

At Kroo, I was one of two security engineers where I focused on embedding security across fintech services, from secure authentication systems to cloud migrations. My role centred on integrating security within development pipelines, leveraging CI/CD and infrastructure-as-code (IaC) practices to enhance security and operational efficiency.Key Achievements:• Spearheaded the creation and automation of secure CI/CD pipelines using Concourse and Terraform, facilitating security scanning and vulnerability checks within development workflows.• Defined IaC best practices and conducted security assessments, using tools like Trivy and GitLeaks, to catch vulnerabilities early in the SDLC.• Led the transition to AWS Identity Center (SSO), implementing it from scratch in a code-first manner, and built an internal application to automate permission adjustments in AWS, now adopted across the organisation.• Established a comprehensive AWS security strategy, fortifying resources with tailored security groups and minimising potential attack vectors.• Drove the deployment of the bank’s first microservice to EKS and Kubernetes, leading the project from initial proposal to successful launch.• Automated onboarding processes and operational tasks using Bash, Python, and CI/CD, streamlining workflows and enhancing efficiency for new team members.

DevSecOps/Security Engineer, shift left approach of embedding security within the SDLC. Key achievements include:•Led the seamless integration of Intrusion Detection Systems (IDS) using tools like Falco, enhancing monitoring and security alerting. • Drove the company's IT inventory revamp for improved security and compliance, and actively collaborated in the development of security solutions for open-source applications• Played a pivotal role in developing infrastructure-as-code practices, resulting in a fortified, agile security posture.”

As a Security Analyst at BT, I worked within the blue team, focusing on detecting and mitigating cyber threats for key stakeholders, including government departments. My role involved proactive threat hunting, incident response, and security audits to maintain a high level of cyber resilience.Key Achievements:• Conducted in-depth threat hunting activities, analysing network traffic to identify and investigate indicators of compromise, such as malware, phishing attacks, and other suspicious behaviours targeting critical infrastructure.• Monitored and responded to security incidents in real-time, working within the blue team to ensure swift containment and mitigation of threats, protecting sensitive data and maintaining service continuity.• Conducted regular security audits to ensure compliance with ISO27001 and industry best practices, identifying gaps and implementing improvements to fortify BT’s security posture.• Developed and maintained incident response playbooks, streamlining processes for handling various attack scenarios, and ensuring rapid, consistent responses across the security team.• Engaged with external accreditation bodies and government departments to maintain alignment with evolving regulatory standards, continuously enhancing BT’s cyber defence strategies.• Provided analysis and insights from security incidents to support continuous improvement, collaborating with teams across the organisation to reduce the risk of recurring vulnerabilities.

• Implemented SaaS solutions for law firms, focusing on dash boarding, database storage, and CRM.• Collaborated with Magic Circle Law firms on project scoping and digital implementation strategies.• Balanced part-time work at Ethien with a full-time degree at UCL.