Security and observability consultant at Dynatrace, focused on SIEM migrations, detection engineering, and workflow automation that reduces manual triage. I focus on making security monitoring dependable when ownership, routing, and enrichment have to work at scale.
My background includes application security, cloud-native environments, and automation work across GCP, Kubernetes, and Terraform. I like projects where security outcomes improve because the workflow gets cleaner, not because the tooling gets louder.
This portfolio collects selected projects, write-ups, and lab work in one place with room for longer technical breakdowns where they matter.
Manual Triage Automation With Enrichment
An enrichment-driven workflow that replaced manual incident creation by adding routing metadata, onboarding teams through lookup tables, and making ownership decisions automatable.
Detection Lab with MITRE ATT&CK Scenarios
An ELK-based lab for simulating credential dumping, execution, and lateral movement so detections can be tuned against realistic behavior instead of theory.
Get in touch.
If you want to talk about a project, a write-up, or security engineering work, send a message.
Send a message ↗