Master of Cybersecurity (Monash, Group of Eight) · SOC operations · Cloud security · Secure development. Full Australian work rights (485 Visa, valid Feb 2028).
Cloud-based SOC detection lab on Microsoft Azure. Deployed Windows Server 2022 as attack target, simulated 5 MITRE ATT&CK techniques, wrote 8 custom KQL detection rules in Sentinel, and documented 3 NIST IR incident reports.
Brute force (T1110) · Scheduled task persistence (T1053) · PowerShell execution (T1059.001) · Account enumeration (T1087) · After-hours login (T1078)
Full home SOC lab on VirtualBox with 3 VMs — Ubuntu (Wazuh SIEM), Windows Server 2022 (target), Kali Linux (attacker). Ran 5 real attacks, generated 1,195 Wazuh alerts including Level 12 Critical. Built 3 Splunk dashboards.
1,195 total alerts · Level 12 Critical (T1484) · 112 auth failures · nmap + Hydra + Metasploit from Kali
Custom Python web vulnerability scanner with 5 OWASP checks — SQL injection, XSS, open ports, missing security headers, and directory traversal. Generates HTML reports with severity ratings and remediation. Docker + GitHub Actions CI.
A01 Directory Traversal · A03 SQL Injection + XSS · A05 Security Headers + Open Ports
Full Australian work rights (485 Visa, valid Feb 2028) · Melbourne-based · Available immediately
Targeting: SOC Analyst · Security Analyst · Cloud Security Engineer · AppSec roles in Australia