Managed Security Services · Incident Response · Detection Engineering
Securing Critical Infrastructure, One Detection at a Time.
First-Class Honours graduate and Cybersecurity Gold Medalist, now serving as an Incident Response Analyst with Armature Systems — a US-based MSSP defending pharmaceutical, healthcare, and enterprise clients worldwide. I believe in detection over assumption, automation over repetition, and resilience over reaction.
0+
Years in Security Operations
0+
Endpoints secured in a Mandiant-led compromise assessment
0+
Enterprise security platforms operated across SOC & MSSP roles
0st
Class Honours & Cybersecurity Gold Medalist
Core Expertise
Where I create the most impact
Two years inside live SOC environments, layered on a first-class cybersecurity education and a builder's foundation in software engineering.
Managed Security Operations
Remote incident response and security operations for Armature Systems, a US-based MSSP — investigating, triaging, and resolving alerts for clients across pharmaceutical, biopharmaceutical, healthcare, and enterprise industries.
Detection Engineering & Threat Hunting
Built and tuned detection use cases across Cortex XSIAM and FortiSIEM in prior SOC roles, mapping coverage to MITRE ATT&CK — now reviewing alert quality across SentinelOne, CrowdStrike Falcon, Cortex XDR, Microsoft Defender, and Microsoft Sentinel and recommending tuning to reduce false positives.
Security Process & Automation
Building out a structured process for alert-exclusion review and tuning, with Tines automation workflow creation in progress — paired with Jira-based operational tracking to drive continuous process improvement.
Identity, Email & Network Security
Supporting identity security in Okta, email security in Abnormal Security, secure access via Zscaler, and Google Workspace security across multi-client MSSP environments.
Cloud Security
Securing and monitoring multi-environment workloads across AWS and Azure, with hands-on administration experience supporting secure infrastructure management.
Secure Software Engineering
Full-stack development across React, Next.js, Node.js, and MySQL — applying a security-first mindset to application design, from auth flows to encrypted ML pipelines.
Selected Work
Featured projects & case studies
From enterprise compromise assessments to privacy-preserving machine learning research — work that spans defense, detection, and engineering.
MSSP Security Operations & Process Optimization (Armature Systems)
Remote incident response and alert-tuning support for pharmaceutical, biopharmaceutical, healthcare, and enterprise clients of a US-based MSSP — building toward a structured alert-exclusion and automation process.
Enterprise Compromise Assessment (with Mandiant)
Enterprise-scale forensic artifact collection and triage across 9,000+ banking endpoints, conducted alongside Mandiant.
SIEM/EDR/XDR Detection Engineering & Threat Hunting
Ongoing detection engineering practice across SentinelOne, CrowdStrike Falcon, Cortex XDR/XSIAM, Microsoft Sentinel, FortiSIEM, and QRadar — reducing noise and surfacing real threats faster.
Secure ML Model Training & Prediction for Healthcare (FHE)
A fully homomorphic encryption (FHE) server architecture enabling ML inference on encrypted healthcare data using Concrete ML.
Recognition
Academic excellence meets industry certification
Gold Medalist — Best Performance in Cybersecurity
University of Staffordshire UK / APIIT Sri Lanka, 2024
First Class Honours — BSc (Hons) Cyber Security
Oct 2021 — Oct 2024 · Honor Roll, 2022/2023
10 Industry Certifications
Microsoft SC-200, AttackIQ MITRE ATT&CK series & more
Graduation, 2024
Gold Medal for Best Performance in Cybersecurity
Open to security research collaborations & freelance engineering work
Let's strengthen your security posture — or build something new.
Whether it's detection engineering, a compromise assessment, or a full-stack build — I'm always glad to talk shop.