status: livelocation: london, onuptime-monitor: 30+ servicesbuild: 2026-07-12

Everything below the company/title/dates line is under NDA, which is a normal condition of working in financial-services security and not something I'm going to pretend around. So: real employers, real titles, real dates, and bullets that say what I worked on without the specifics I can't share. If you're evaluating me for a role, the writing section is the part of this site that shows actual work instead of gesturing at it. This page is here for the recruiters and the record.

Fidelity Investments Canada

Cyber Security Team Lead / Engineer09/2023 – Present

Own SOAR playbooks in Microsoft Sentinel that handle first-line response without a human in the loop. The unsettling part of good automation is watching it work at 3am without you.

Lead detection engineering and incident response — writing and tuning the detections, not just consuming them, with enough KQL to have opinions about it.

Leading a team means the pager still finds me. It just finds me second.

Senior Cyber Security Analyst (Detect & Respond · Insider Risk · Detection Eng.)01/2022 – 08/2023

Detection engineering and threat hunting — the "Senior" mostly meant writing the detections instead of consuming them.

UEBA and playbook design, plus enough incident-response reps to stop flinching at 2am pages.

Cyber Security Analyst (Detect & Respond · Insider Risk)06/2021 – 12/2021

Incident response and threat triage in Defender XDR and ServiceNow, with the evidence-handling discipline that makes you paranoid about your own laptop.

Autodata Solutions (JD Power)

Cyber Security Analyst09/2019 – 06/2021

EDR and endpoint threat investigation — tuning alerts down from "everything" to "things worth waking up for."

DLP and incident response, in the role that taught me most alerts are noise until you build the thing that says otherwise.

TD Bank

IT Operations Analyst10/2018 – 08/2019

DLP, device control, and security-policy work at a bank — enough to understand why financial services moves the way it does.

Patch management: the least glamorous job in security and one of the most important. Nobody tells you that going in.

Barj IT Solutions

IT Analyst – Support04/2012 – 04/2014

IT ops, ITSM, and support work — back when "incident response" meant someone’s printer and a strongly worded SOP.

Relocation & Studies04/2014 – 10/2018

Moved to Canada and went back to school — Fanshawe College, Information Security Management.

No, that's not a typo — yes, I actually sat for Lean Six Sigma. Process improvement habits turn out to transfer well to detection engineering; both disciplines are mostly "find where the noise is coming from and remove it."

QualificationInstitutionYear
Diploma, Information Security ManagementFanshawe College, Ontario2018
B.C.A., Computer Application & NetworksKadi University, Gujarat2014