I'm a security operations multi-hatter, currently focused on supporting Mandiant Managed Defense customers by finding and eradicating threats in their cloud and domain environments. I have 10+ years of experience in technical and project lead roles within the cybersecurity space, summarized below:
• Technical lead for incident response engagements involving "Big Four" campaigns and financially motivated threats.
• Identified novel threats in customer environments, including a cyber espionage campaign focused on strategic intelligence collection in the Philippines (UNC4191).
• Met and exceeded the operational tempo of motivated pre-ransomware threat groups in compromised environments, prevented larger impact through rapid containment and eradication.
• Developed and implemented behavior-based threat hunting and detection engineering approaches that effectively identified malicious activity that had not triggered security product alerts.