A sample of engagements where scope, constraints, and success criteria were explicit—and the build shipped.
Part-time CISO advisory and full ISMS build-out to land ISO/IEC 27001 certification for an Australian digital health services and software organisation handling sensitive patient data.
Designed and operationalised a scalable SIEM/SOAR and SOC operating model across cloud, identity, endpoint, enterprise SaaS, and network telemetry for a global enterprise.
Architected and rolled out AWS GuardDuty and AWS Security Hub at organisation scale, and supported Google Security Command Center across the full GCP estate, with unified case management via TheHive.
Supported global migration from Sophos to SentinelOne EDR, covering rollout strategy, policy tuning, deployment support, and uplifted detection and response.
Acted as SME for the rollout of Wiz to expand cloud vulnerability coverage, then refreshed vulnerability management policies, SLAs, and metrics around attack-path-based prioritisation.