Cybersecurity professional — MS Cybersecurity @ SFU, Security+ certified. I work in SIEM, threat detection, and endpoint hardening, currently securing 200+ endpoints at TLC Solutions.
I'm pursuing my Master's in Cybersecurity at Simon Fraser University while working as a Systems & Security Technician at TLC Solutions in Langley, BC — keeping fleets of endpoints monitored, patched, and hardened.
Three years of hands-on work across a university IT environment and a national wealth-management firm built my foundation in SIEM operations, threat detection, and risk assessment. Off the clock: custom PCs, analog film, BC trails.
Hack The Box competitor running a production-grade homelab with 25+ services behind a zero-inbound-ports architecture — see The Lab.
Triage network and endpoint security alerts across client fleets, drive patch and configuration compliance, and hardened 200+ endpoints through a fleet-wide refresh — documented in SharePoint/Confluence.
Resolved 15+ tickets daily within SLA and led OS upgrades for 1,000+ users; managed endpoints via Intune, SCCM, Active Directory, Azure AD, and Exchange.
Ran infrastructure risk assessments and led IT training that cut escalations by 30%; implemented maintenance protocols that reduced downtime.
Resolved 80% of Level 1/2 issues without escalation and reduced asset loss by 15% through streamlined tracking.
A live global threat map built on Microsoft Sentinel — ingesting VM logs and using custom KQL analytic rules to visualise attack origins in real time.
A simulated Security Operations Center for practising incident-response workflows — refining Elastic SIEM detection logic to separate false positives from real threats.
Nmap vulnerability assessments across a home network, hardened via IoT segmentation, firewall tuning, and continuous monitoring with a self-hosted SIEM on Proxmox.
A phishing-prevention campaign with educational simulations targeting social-engineering vectors — designed to build a proactive security culture.
A home server built like an enterprise network. Ubuntu 24.04, 25+ containerized services orchestrated with Docker Compose across three isolated networks — with a zero-inbound-ports posture: everything public routes through a Cloudflare Tunnel into Traefik, with CrowdSec intrusion prevention and Authelia SSO/2FA guarding the admin plane.
Full observability pipeline (Prometheus, Grafana, Loki, Alertmanager with Telegram alerting), secrets encrypted with SOPS + age, and encrypted off-site backups via Restic. No credential ever touches the repo in plaintext.
Off the clock I'm hiking BC trails with an analog camera — grain, light leaks, no retakes. This one's loaded with code instead of Kodak: every press of the shutter generates a one-of-a-kind mountain scene and develops it right in front of you.
Let's talk security.
Open to roles, projects, or just a good conversation about threat detection. Drop a message through the form or find me on LinkedIn.