Services
Cyber defence, security research, and operational resilience.
Designed for regulated environments, delivery is hands-on, evidence-based, and focused on outcomes.
Cyber defence & SOC uplift
- Operating models, processes, and metrics
- Detection engineering and log strategy
- Threat intelligence integration and playbooks
Incident readiness & resilience
- Tabletop exercises and response coaching
- Evidence readiness and logging validation
- Post‑incident lessons learned and hardening
Human success factors
- Organisational security culture and human risk
- Bridging the 'trust gap' between security teams and the business
- SOC/IR burnout and staff retention
Security research & engineering
- Threat research and detection opportunities
- Security automation (pipelines, enrichment, response workflows)
- Tooling design and engineering for security teams
Security testing
- Application, API, and platform testing
- Attack path and controls validation
- Verification of remediation and regressions
Architecture & assurance
- Security architecture reviews for critical systems
- Threat modelling workshops
- Third‑party and control assurance support
I also work with first-line cyber security teams in selectively applying AI to improve triage, detection, and workflow automation — without creating new risk through uncontrolled data exposure or ungoverned tooling.