I’m the Cloud Security Lead and a Senior Security Consultant at F-Secure Consulting. I’m also the lead developer of Leonidas, a cloud-native attack simulation and detection framework.
Since joining the cybersecurity industry, I’ve has focused on offensive security testing in agile, fast-paced and cloud-native environments and organisations. More recently, I’ve been putting that experience to use helping organisations validate and enhance their attack detection capabilities, particularly in the cloud space. Prior to my time at F-Secure, I undertook internships in embedded software engineering, and then pivoted into the cybersecurity industry by joining MWR InfoSecurity. I then became part of F-Secure Consulting as a result of the acquisition of MWR by F-Secure.
I hold a Masters of Engineering in Computer Science from the University of Southampton, along with the Offensive Security Certified Professional (OSCP), AWS Certified Solutions Architect Professional, and AWS Certified Security Specialty.
What I do
When I’m not working to secure advanced, cloud-native estates at our clients, I frequently present at conferences and other industry events to share the lessons I’ve learnt in the cloud and devops security space. I’m also big believer in building tools and automation as a way of being more effective at what you do, and have open sourced some of the most pertinent tools.