I’m the Head of Research at WithSecure, where I also consult on cloud security, having led the cloud security team there for five years. I’m also the lead developer of Leonidas, a cloud-native attack simulation and detection framework. Since joining the cybersecurity industry following a stint as a software engineer, I’ve has focused on offensive security testing in cloud-native environments and organisations. More recently, I’ve been putting that experience to use helping enterprises validate and enhance their attack detection capabilities, particularly in the cloud space.
I hold a Masters of Engineering in Computer Science from the University of Southampton, along with the Offensive Security Certified Professional (OSCP) and AWS Certified Solutions Architect Professional.
What I do
When I’m not working to secure advanced, cloud-native estates at our clients, I frequently present at conferences and other industry events to share the lessons I’ve learnt in the cloud security space. I’m also big believer in building tools and automation as a way of being more effective at what you do, and have open sourced some of the most pertinent tools.