Nov 2024 – Dec 2025 · 1 yr 1 mo · Australia · Remote

Nov 2022 – Nov 2024 · 2 yrs · Australia · Remote

Sep 2021 – Oct 2022 · 1 yr 1 mo · Greater Perth Area · Remote

• Owning the Secure Development Programme and helping engage with software and devops communities. Bringing easy to understand and navigate cyber security education to as many people as I can!

Sep 2021 – Sep 2022 · 1 yr

Mar 2021 – Sep 2021 · 6 mos · Perth, Western Australia, Australia · Hybrid

Oct 2019 – Mar 2021 · 1 yr 5 mos · Greater Perth Area · Remote

Nov 2017 – Jul 2019 · 1 yr 8 mos · San Francisco Bay Area · On-site

Sep 2016 – Oct 2017 · 1 yr 1 mo · San Francisco Bay Area · On-site

• An application security nerd with a passion for automation and continuous security.

Jul 2015 – Aug 2016 · 1 yr 1 mo · Mountain View, California · On-site

• Hacking the things - sharing the security love to all!

Feb 2012 – Jun 2015 · 3 yrs 4 mos · Greater Perth Area

• Lead and support application security services to Asterisk customers covering:
• Application security threat modelling;
• Application security architecture & design;
• Application security maturity assessments;
• Application security training;
• Application security assessments.
• Lead and support security assessment services to Asterisk customers covering:
• Penetration testing;
• Threat and vulnerability assessments;
• Wireless security assessments;
• Web application security assessments;
• VoIP security assessments;
• Policy and standards compliance reviews;
• Information asset inventory and classification;
• Technical architecture assessments.
• Lead and support security technical services to Asterisk customers covering:
• Unified threat management firewalls including content filtering, IPS, anti-virus, DLP, application control and remote access technologies;
• Threat and vulnerability management systems;
• End point control technologies including media access controls, hard drive encryption, host based firewalls, host based IPS, anti-virus and application control.

Jan 2010 – Dec 2018 · 8 yrs 11 mos

• I'm fortunate to have been invited into the BeEF developer folds by Wade Alcorn. I've ported such modules as the iPhone Skype exploit and Detection of Social Networking status into command modules, and also committed numerous other changes to the Ruby re-write of BeEF. My recent work has focused on WebRTC integration into BeEF.
• I've also presented on BeEF for Perth's first Ruxmon meeting in 2012, and OWASP's AppSec APAC Conference in Sydney, 2012, Kiwicon 8 and DEFCON 23.

Feb 2009 – Jul 2015 · 6 yrs 5 mos

• Since early 2009 I've been heavily involved in re-invigorating the local Perth OWASP Chapter, working closely with other Perth OWASP Chair Members and associated industries such as AISA, SecAU, and ANZTB. I recently supported the OWASP AppSec APAC Conference held in Sydney 2012.

Nov 2008 – Feb 2012 · 3 yrs 3 mos

• Information security specialist focusing on Online Crime Response, Security Assurance, Vulnerability Assessment, Penetration Testing, Web Application Security Assessment, Information Risk Assessment, IT Due Diligence. Highlights of 2009 so far: Active involvement in the distribution of an information security newsletter; involved in the Bankwest Graduate program as a mentor.

Dec 2007 – Nov 2008 · 11 mos

• Information security specialist focusing on Security Assurance, Vulnerability Assessment, Penetration Testing, Web Application Security Assessment, Information Risk Assessment, IT Due Diligence.

Apr 2007 – Dec 2007 · 8 mos

• Security Assurance

Oct 2006 – Apr 2007 · 6 mos

• IT and Security Specialist focusing on management, development and maintenance of a complex high-risk networked environment. Core functionality included Digital CCTV, Physical Access (SCADA) and Information and Reporting Systems. IT Skills utilised included networks, perimeter defence, scripting development for SCADA automation, database development.

Jan 2005 – Jan 2007 · 2 yrs

• IT and Security Specialist focusing on management, development and maintenance of a complex high-risk networked environment. Core functionality included Digital CCTV, Physical Access (SCADA) and Information and Reporting Systems. This role engaged me in projects in Yellowknife, NWT, Canada; Antwerp, Belgium; and the Argyle Minesite, Kimberley, Australia.

Jan 2005 – Oct 2006 · 1 yr 9 mos

• IT and Security Specialist focusing on management, development and maintenance of a complex high-risk networked environment. Core functionality included Digital CCTV, Physical Access (SCADA) and Information and Reporting Systems. IT Skills utilised included networks, perimeter defence, scripting development for SCADA automation, database development.

Jan 2004 – Dec 2004 · 11 mos

• Password cracking with clustered computing, and mobile device forensics research.

Dec 2003 – Sep 2004 · 9 mos

• Web Developer working within a niche design firm developing online CMS systems using a host of languages. Most applications developed using open source tools such as PHP and MySQL.