Cybersecurity Strategist.
I've spent 15+ years in cybersecurity — running detection and response inside SOCs, building cloud security in AWS and Azure, and writing the risk reports and briefings that turn posture into decisions managers and IT leadership can act on. Along the way I've interviewed candidates with perfect cert pyramids who couldn't triage a phishing alert, and self-taught engineers with no badges who saved their company from a ransomware spread. That gap — between knowing something and being able to execute under pressure — is what CyberSecurityPad is about.
To me, security is organisational resilience — governance, identity, detection, response, and testing as connected layers, not silos. CSPAD is where I write up the patterns, missteps, and lessons that don't fit a tweet — practitioner notes from the work itself, not vendor talking points or textbook framings.
Credentials
CISM — Certified Information Security Manager
ISO 27001 Lead Implementer
AWS Certified Security — Specialty
AZ-500: Azure Security Engineer Associate
Expertise
Cloud Security
Architecting secure multi-cloud environments across AWS and Azure with focus on shared responsibility models.
Zero Trust
Implementing continuous verification strategies for identity, devices, and applications within hybrid networks.
DevSecOps
Integrating security into CI/CD pipelines through automated scanning, policy-as-code, and shift-left testing.
GRC
Aligning technical controls with regulatory frameworks and business risk management strategies.