X
youtube

Hi, I'm David πŸ‘‹

Security Analyst & Engineer focusing on Incident Response and Cloud Security.

Profile


About

I am a Security Engineer who doesn’t trust assumptions. I build and break systems, then automate the guardrails: detections, incident response, and secure cloud architectures. My work spans AWS/GCP IAM sanity checks, log pipelines (Splunk + Elastic), PCAP threat hunting with Zeek/Suricata, and rule engineering (YARA/Sigma).

My Projects

Featured Projects

Open source and Proprietary projects and contributions. Here are a few highlights.

Project 1

Cross-Cloud Role Sanity Checker

Cross-Cloud Role Sanity Checker is a security-focused utility designed to validate AWS IAM roles and GCP service accounts before initiating cross-cloud data transfers β€” such as AWS DataSync operations targeting GCP.

PythonAWSBash
Website
Project 1

Log Ingestion Workflow with Splunk and Elastic

Log ingestion, detections, attack steps, queries and dashboards following simulated attacks on Windows 10 virtual machine.

SPLSysmonKibana
Website
Project 1

Threat Hunting from Malicious Traffic in PCAP

Analyzed multiple PCAP files to identify malicious activity such as ransomware, beaconing etc. and wrote Suricata signatures to catch them.

ZeekSuricataWireshark
Website
Project 2

Yara & Sigma Detection Rules Repo

Identified multiple malware families, developed detections to successfully identify malicious files and activity within devices.

YaraSigmaPowershell
GitHub
Security Research

Bug Bounty & Disclosures

Selected findings, write-ups, and vendor advisories.

  • CVE-2025-REDACTED

    2025 β€’ Reward: None β€’ Severity: MEDIUM

    Unreleased writeup pending approval!

    Write-upVendor Advisory
Experience

Where I've Worked

Previous roles, timelines, and highlights from recent engagements.

Amazon Web Services

Amazon Web Services

May 2024 β€” Present
Cloud Engineer
TFS Consulting Inc.

TFS Inc.

Aug 2022 β€” Dec 2024
Security Consultant
ParagraphAI

ParagraphAI

Dec 2023 β€” March 2024
Information Technology Manager
ParagraphAI

ParagraphAI

Aug 2022 β€” Dec 2023
Information Technology Engineer
Education

What I Studied

Degrees and programs that shaped my technical foundation.

NYU

New York University

Aug 2024 β€” Dec 2025
MSc. Cybersecurity
WGU

Western Governor's University

May 2023 β€” Jan 2024
BSc. Cybersecurity
UofT

University of Toronto

Aug 2017 β€” May 2022
HBSc. Computer Science

Certifications

AWS

Solutions Architect Associate

2024
AWS
CompTIA

A+

2023
CompTIA
CompTIA

Network+

2023
CompTIA
CompTIA

Security+

2023
CompTIA
CompTIA

CySA+

2023
CompTIA
CompTIA

PenTest+

2023
CompTIA
HTB

Certified Defensive Security Analyst (CDSA)

2024
HackTheBox
ISC2

System Security Certified Practicioner (SSCP)

2023
ISC2
CCD

Certified Cyber Defender

2025
CyberDefenders
Papers

Papers

Academic writings and thoughts on security, Cloud Infrastructure, and engineering craft.

2025-04-30

Implementation of Machine Learning in Cloud Security Threat Hunting

Practical benefits of ML algorithms when used in AWS Threat Hunting workflows.

Read more
2025-04-30

Phased Migration Strategy towards Post Quantum Cryptography

Practical Implementation and Benefits of Phased Migration towards PQC

Read more
Contact

Get in Touch

Reach out via email or find me onLinkedIn, or Github,