Portfolio

Skills

Web Application Testing

Network Testing

iOS Mobile Testing

Android Testing

AWS Security Review

Azure Security Review

Vulnerability Scanning

Vulnerability Management

Python

Bash

Security Source Code Review

Active Directory

Stuff

• Fantastic GraphQL Bugs and Where to Find Them - OWASP NZ
• Getting Started in Security - Waikato Cyber Security Challenge
• Thinking Like An Attacker: Quick Wins For Securing Your Application - OWASP Appsec Days India 2024
• CVE-2024-52286

Certs

• Certified AppSec Pentester (CAPen)
• Certified Cloud Security Practitioner - AWS (CCSP-AWS)
• OSCP (Penetration Testing with Kali Linux (Offensive Security)) - Pending Examination
• Red Team Ops (Zero Point Security) - Pending Examination

Information Security Consultant, Kiwibank, NZ

Jul 2024 — Present

As an Information Security Consultant, I help embed security within new and existing projects and at every stage of development. Colloborating with cross-functions teams and external vendors, I help ensure that security requirements are communicated clearly and risks are managed effectively.

Senior Security Consultant and Team Lead, CyberCX, NZ

Oct 2022 — Jul 2024

Delivering high quality penetration tests while assisting with pre-sales activities such as scoping of jobs and creation of statements of work. I also lead a team of junior staff and help mentor and coach them to further develop their skills.

• Mentoring junior staff members as well as conducting performance reviews.
• Working with the wider leadership team to develop and improve business processes.
• Conduct interviews to hire new staff.

Senior Security Consultant, CyberCX NZ

Aug 2022 — Oct 2022

Delivering high quality penetration tests while assisting with pre-sales activities such as scoping of jobs and creation of statements of work.

Security Consultant, CyberCX NZ (Acquired Insomnia Security)

Mar 2021 — Aug 2022

Delivered high quality penetration tests including: web applications, mobile (Android and iOS), internal/external networks and cloud reviews (AWS and Azure). Involved in scoping of upcoming jobs, kickoff calls and client debriefs.

• Helped create and manage the first iteration of the CyberCX NZ Associate Program.
• Presented keynote at New Zealand Cyber Security Challenge 2022.
• Conducted interviews to hire new staff.

Security Consultant, Insomnia Security

Mar 2019 — Mar 2021

My role as a Security Consultant involved conducting penetration tests against a wide range of items, from APIs to Web and Mobile applications to Internal & External Networks.

Project Delivery Coordinator, Insomnia Security

Mar 2021 — Aug 2022

• Working with clients and technical teams to facilitate the successful delivery of projects.
• Translating technical requirements to a variety of technical and non-technical clients.
• Keeping track of the project to ensure it stays within scope and on time.