One of my roles as the Director of Confluence Consulting is to lead and mentor organizations as they prepare for MITRE ATT&CK evaluations. I have a thorough understanding of performance metrics, which I apply to ensure all participants are geared up for success. Confluence Consulting’s successes include helping one of our customer’s elevate their product from one of the worst performers in MITRE ATT&CK evaluations, to one of the industry leaders. In addition to MITRE ATT&CK evaluations, I am involved in red-teaming, adversary simulation, and threat modeling. I provide in-depth offensive cybersecurity training, bolstering the capabilities of our clientele’s products and defences. I also lead the development of specialized network and memory detection evasion techniques, tailored to meet the distinctive requirements of select clients. These innovations are instrumental in ensuring that our client’s products and defences can respond to advanced threats.Overall, my role at Confluence Consulting is about equipping organizations with the tools and insights necessary to navigate the intricate landscape of advanced cybersecurity challenges.

In my role as a Solutions Architect at Sophos Ltd, I contributed to key initiatives that helped shape the direction of Sophos’s cybersecurity services. I conducted comprehensive market research and in-depth technical and security evaluations of security products and services. This work was pivotal in forming strategy and identify potential acquisition targets.In addition to the above, I developed and proposed solutions to demonstrate the feasibility of creating new security products (e.g. Adversary Emulation, Attack Surface Management, Penetration Testing as a Service). Furthermore, I championed the establishment of specialized cyber ranges. To achieve this, I lead the development and creation of domain specific ranges for M&A assessments, formulating detailed playbooks, NDR research, adversary emulation and bolstering sales enablement.Every step at Sophos Ltd reaffirmed my commitment to pushing boundaries and championing innovative solutions in the realm of cybersecurity.

In my role as a Security Technology Strategist at Sophos Ltd, I was positioned at the nexus of technical leadership and strategic planning. One of the most influential aspects of my responsibilities included overseeing the Office of the CTO’s technical and security evaluations pertinent to M&A initiatives, ensuring that our acquisitions were both technically sound and strategically aligned. I was deeply involved in shaping the future direction of our Network and MDR engineers, collaborating on both the strategic and technical fronts. This was achieved through my contributions to the foundational structure, transformative changes, and early stages of our Managed Detection and Response (MDR) service. I was part of the leadership team from the creation of the concept to more than ten thousand customers and fifty million in revenue. One of the highlights of my tenure was the opportunity to redefine and reshape the architecture of Sophos' Next-Generation Firewall (NGFW) product, ensuring its relevance and efficiency in a rapidly evolving cybersecurity landscape. During that time, I led the transition from 24% security effectiveness and $22/protected TCO to 94% security effectiveness and $6/protected TCO. My leadership was also integral in steering our network security, Endpoint Detect and Response (EDR) and Managed Detect and Response's (MDR) collaborations with third-party evaluators.In this role I reported directly to the CTO, and I frequently collaborated with the VP of Product, and the various Product Managers. Together, we continuously aligned the various product visions with market needs, the latest trends, and emerging threats, setting the roadmap for our product suite's future evolutions.I was honoured to be entrusted with this role and it was a great privilege to work so closely with the exceptional leaders at Sophos.

During my tenure as a Vulnerability Research Manager at Sophos Ltd, I had the opportunity to create Sophos’ Network Security Lab. The Lab was originally under the Sophos Network Security Group, and was created using select individuals from SophosLabs, Astaro and Cyberoam. It was a globally distributed team with offices in Canada, Germany and India. My team’s duties included research, analysis, data production, testing, performance profiling and release for Sophos’ Network Intrusion Protection Systems (IPS) engines and detection data. We supported Sophos’ UTMs, NGFW and XGS product lines. In addition to analysis and release data, this group also established its own sample and detection data management system. The system included performance analysis, attack emulation/reproduction automation, telemetry, and development and release systems, each of which supported Sophos network security devices. The application of rigorous testing and analysis helped lead a modest IPS rearchitecting that provided throughput improvements of between 10-20% (depending upon hardware model) while also increasing protection coverage and significantly reducing false positives and latency. Being a new team, I was fortunate enough to be able to establish engineering best practices and development methodologies, ensuring that our networking threat research, detection development, and DevOps teams upheld the highest quality standards. A significant part of my role involved nurturing an environment that championed learning, innovation, and the pursuit of continuous improvement. I took pride in ensuring that our software releases were both timely and of top-tier quality. Furthermore, I was actively involved in crafting and facilitating training programs, diving deep into both offensive and defensive security techniques. During my time there I provided seventeen different training and development programs spanning a wide range of programming and cybersecurity concepts.

In my capacity as Principal Threat Researcher at Sophos, I spearheaded global strategic initiatives in advanced Apple threat and network vulnerability intelligence gathering. This pivotal role involved orchestrating the development and implementation of security measures to combat evolving Apple and Network Vulnerability threats. I had the honor of leading the SophosLabs' Apple Threats Research and Network Intrusion Research teams, contributing to our collective aim of creating state-of-the-art cybersecurity solutions. My role was a critical part of implementing significant enhancements to our endpoint and network detection and remediation engines, which significantly bolstered our cybersecurity offerings. During my tenure, I played a vital role in the launch of Sophos' inaugural macOS endpoint product and provided substantial input to the macOS endpoint remediation engine. Under the banner of SophosLabs, I established and led a global team dedicated to creating the tooling and remediation data to back this engine. Furthermore, I managed the team tasked with monitoring emerging Apple threats, ensuring the timely provision of carefully curated detection data.It was a privilege to work with the many brilliant and interesting people that make up SophosLabs.