Training

I design and deliver hands-on security training for individuals and teams, based on real attack patterns and actual incidents. Exercises where people work through problems, hit obstacles, and figure out together how to handle it, or how to do better next time. Topics range from Linux security practices to threat modelling, incident response, and security architecture. Every session is tailored to what a team actually needs.

Coaching

I work one-on-one with security professionals, architects, and team leads who want to get better at what they do. Sometimes it's technical depth. Sometimes it's navigating organisational pressure without losing your grip. Sometimes it's just having someone to think out loud with who has been there before. We meet regularly, talk through whatever is on the table, and find ways forward.

Consulting

I help teams think through hard security problems. Architecture reviews when something doesn't feel right. Incident retrospectives that actually surface what went wrong and why. Risk assessments that look beyond compliance checkboxes to what could and is likely to actually hurt you. I don't come in with a pre-packaged methodology. I look at what you have, ask questions, and help you figure out what needs to happen next.

Simulations and exercises

I build and run realistic enough security exercises for teams who need to know if their incident response actually works. Not tabletop walkthroughs where everyone agrees nicely (and yawns). Simulations where people get uncomfortable, make mistakes, and learn what breaks when pressure goes up. Based on real threats, tailored to your environment, and debriefed in a way that turns failure into something useful.