Experience

Background

My route into detection engineering isn't linear — and that's the point. Business management taught me how organisations operate and where processes break down. Operations work taught me how data flows across systems. NOC and O365 administration gave me the infrastructure foundation. SOC analysis put me in front of real alerts, real threats, and real decisions daily. Each role built the one that followed. Together they make me capable of understanding a security problem at the business level and solving it at the technical level.

SOC Analyst I

Current

Precision Cyber Technologies and Digital Solutions Ltd

January 2025 – Present · Trinidad & Tobago

Working in a live SOC environment monitoring and triaging security alerts across O365, Fortinet firewall, and endpoint telemetry using CyberHawk SIEM. Responsibilities include log analysis, identification of indicators of compromise, incident response, and documentation of findings.

Independently building detection engineering capability outside core duties — writing custom Wazuh correlation rules mapped to MITRE ATT&CK, deploying Sysmon for enriched endpoint telemetry, and developing a personal detection lab on AWS.

CyberHawk SIEM Wazuh O365 alert triage Fortinet firewall Incident response MITRE ATT&CK Sysmon AWS EC2

NOC Technician / O365 Administrator

PBS Technologies Ltd

June 2023 – December 2024 · Trinidad & Tobago

Monitored and maintained network performance across client environments. Administered Microsoft O365 — managing users, security policies, and configurations. Diagnosed and resolved connectivity issues under live conditions.

Built a working understanding of how data flows across infrastructure, how network decisions affect end users, and where security controls sit within operational systems — context that is directly foundational to SOC and detection work.

Microsoft O365 Network monitoring User administration Security policies Connectivity troubleshooting

Billing Clerk & Collections Officer

Medcorp Ltd

April 2019 – May 2022 · Trinidad & Tobago

Reviewed, audited, and processed inpatient and outpatient billing. Managed collections and reported insights to senior management. Built proficiency in data accuracy, structured record-keeping, and working across departments to resolve disputes — skills that directly inform how I approach alert documentation and operational reporting today.

Data accuracy Cross-department coordination Operational reporting Process compliance

Business Management Studies

ABE Diplomas — Level 4, 5 & 6

2016 – 2021

Completed ABE Level 4, 5, and 6 Diplomas in Business Management. Studied organisational processes, business functions, people and culture, and operational systems. This foundation shapes how I approach security — not as an isolated IT function but as something that must map to how a business actually works and where the real risk lives.

Process mapping Organisational systems Business functions Stakeholder communication

Certifications

Credentials

AWS Certified SysOps Administrator

Associate · 2024

AWS Certified Solutions Architect

Associate · 2024

AWS Certified Cloud Practitioner

2023

Microsoft Azure Fundamentals

AZ-900 · 2024

CompTIA Security+

SY0-701 · 2025

Skills

Technical stack

Detection & monitoring

Wazuh SIEMCyberHawk SIEMCustom correlation rulesMITRE ATT&CK mappingSysmonLog pipeline analysisAlert tuningBrute force detectionPrivilege escalation detectionMulti-stage attack chainingIncident triage

Security automation

PythonIP reputation classificationAuth anomaly monitoringn8n workflow automationLambda automated responseAlert enrichment

Cloud & infrastructure

AWS EC2VPCIAMCloudWatchLambdaS3Route 53CloudTrailNACLsSecurity GroupsMicrosoft Azure

Business & process

Process mappingStakeholder communicationOperational documentationSecurity awarenessCross-functional collaboration