Security Engineering
Secure by design. Scalable by default.
π‘οΈ Threat modeling & risk assessments
π Compliance readiness (ISO27001, PCI-DSS)
π Secrets & identity management automation
π¨ Incident response & breach readiness
π Vulnerability lifecycle management
π§ͺ Security testing integration (DAST/SAST)
π§° Secure development lifecycle (S-SDLC)
π Supply chain & third-party risk review
𧡠Attack surface monitoring & alerting
π§ Developer enablement & training
ScotAccount Identity Platform
Led the security architecture and incident readiness for Scotlandβs digital identity system. Embedded threat modeling, secure coding practices, and secrets automation across services.
PCI-DSS Secure Mobile App
Architected the security controls for a mobile payment platform, including TLS pinning, Vault integration, network hardening, and pipeline enforcement in a regulated environment.
Secrets Rotation at Scale
Built and deployed AWS Secrets Manager-based rotation pipelines, integrated with Terraform and GitHub Actions. Supported zero-downtime deployments and audit trail validation.
Vulnerability Management Pipeline
Automated vulnerability scanning using Trivy, Snyk, and GitHub Dependabot. Prioritized alerting and remediation with custom Slack integration and JIRA ticketing.
π HashiCorp Vault / AWS Secrets Manager
π Trivy / Snyk / Checkov / Dependabot
βοΈ GitHub Actions / Terraform / Terragrunt
π¦ OIDC / Auth0 / Cognito
π§ SPDA / OWASP / NCSC guidance
π Prometheus / Grafana / CloudWatch
π¦ AWS WAF / GuardDuty / Inspector
π JIRA / Notion / Slack integrations
π§ͺ K6 / DAST pipelines
π§° Custom Confluence security patterns
Need Security Leadership?
From secure development pipelines to compliance strategy β Cipherer helps you ship fast, stay secure, and sleep well.
Get In Touch