Professional Experience & Projects

A comprehensive log of my security engineering roles, research initiatives, and open-source contributions.

Featured Security Engineering Work

Security Engineer — Enterprise SIEM & Detection

@ Wazuh Inc. May 2023 – Present  ·  San Jose

Detection Engineering: Developing MITRE ATT&CK-mapped detection rules using PCRE/PCRE2 regex, enhancing threat detection coverage by 45%.

Key Deliverables:
  • SIEM Architecture: Architected enterprise-scale Wazuh SIEM across multi-cloud environments aligned with NIST 800-53 controls.
  • Cloud Infrastructure: Designed 99.9% availability security infrastructure using Terraform, Ansible, EKS, and CloudFormation.
  • Documentation: Authored official docs and blog posts serving 100,000+ Wazuh users on SIEM configuration and security monitoring.
  • Automation: Automated infrastructure deployments and workflows, reducing manual effort by 60%.
  • Malware Analysis: Performed threat intelligence analysis identifying IOCs and TTPs contributing to Wazuh CTI.
  • Compliance: Ensured deployments comply with NIST, ISO 27001, and CIS Benchmarks, supporting customer audits.
  • CIS Baselines: Created security baseline configurations for Linux, Windows, and macOS monitored by Wazuh SIEM.
Publications

Professional Timeline

Security Researcher

@ Innopolis University Aug 2022 – May 2024  ·  Innopolis

Research Focus: Offensive security research, memory forensics, and DevSecOps pipeline integration.

Key Work:
  • Memory Forensics: Carried out forensic investigation on memory dumps.
  • Botnet Research: Built a botnet for offensive security research using BYOB framework.
  • Threat Modeling: Performed threat modeling with STRIDE methodology using Microsoft Threat Modelling Tool.
  • Cloud Infrastructure: Built resilient cloud infrastructure using EC2, VPC, EKS, S3, and CloudWatch across multiple AWS regions.
  • Penetration Testing: Participated in pen tests on start-up applications deployed within Innopolis SEZ.
  • CI/CD Security: Integrated SAST/DAST checks in CI/CD pipelines using Snyk, SonarQube, and StackHawk — remediated vulnerabilities by 35%.

Infrastructure Security Engineer

@ Hardcore Biometric Systems Nov 2021 – Jul 2022  ·  Abuja

Infrastructure Security: Administered and secured enterprise environments across VMware ESXi and AWS.

Key Deliverables:
  • Server Management: Administered Windows and Linux security environments managing 200+ servers and endpoints.
  • SIEM/IDS/IPS: Implemented and managed SIEM, IDS/IPS, firewall, and vulnerability management solutions, improving security visibility by 55%.
  • Patch Compliance: Conducted vulnerability assessments and patch management, maintaining 95% compliance across all systems.
  • DevOps: Supported deployments using Jenkins, Kubernetes, and Docker, reducing deployment time by 50%.
  • Incident Response: Responded to PRTG, SIEM alerts within SLA, achieving 98% incident resolution rate.
  • Log Infrastructure: Maintained log aggregation infrastructure ensuring 99% uptime for compliance reporting.

Technical Support Engineer

@ Zeta-Web Aug 2019 – Oct 2021  ·  Abuja
Key Deliverables:
  • Administered Linux and Windows servers, Active Directory, DNS, DHCP, and print services for enterprise clients.
  • Maintained asset inventory of 700+ systems ensuring accurate tracking and compliance reporting.
  • Ensured system patch compliance at 95% across 400+ endpoints, reducing vulnerability exposure.
  • Monitored network performance using PRTG, WhatsUp Gold, and Riverbed SteelHead, reducing downtime by 65%.
  • Implemented baseline configurations and upgrades on firewalls, load balancers, proxies, and servers.

IT Technician

@ Multichoice Dec 2018 – Aug 2019  ·  Port Harcourt
Key Deliverables:
  • Provided technical support to 140+ end users, reducing business downtime by 60%.
  • Coordinated with third-party vendors for timely resolution of LAN, WAN, and VSAT network issues.
  • Created detailed documentation of all IT procedures used in the organisation.

Notable Projects

Detection Rule Library

PCRE/PCRE2 • MITRE ATT&CK • Wazuh

MITRE ATT&CK-mapped Wazuh detection rules using PCRE/PCRE2 regex for threat detection — 45% coverage improvement.

Multi-Cloud SIEM Deployment

Terraform • AWS EKS • Ansible • CloudFormation

Enterprise-scale SIEM infrastructure with 99.9% availability, aligned with NIST 800-53 security controls.

Memory Forensics Research

Volatility • STRIDE • DFD • BYOB

Forensic investigation on memory dumps and botnet research for offensive security at Innopolis University.

CI/CD Security Pipeline

Snyk • SonarQube • StackHawk • Jenkins

Integrated SAST/DAST security tests in CI/CD pipelines, identifying and remediating code vulnerabilities by 35%.

Publications & Documentation

Technical Writing • Security Research • Wazuh Docs

Official Wazuh documentation and blog posts serving 100,000+ security professionals on SIEM configuration.

Security Baseline Configurations

CIS Benchmarks • Linux • Windows • macOS

Security baseline configs mapped to CIS Benchmarks for Linux, Windows, and macOS systems monitored by Wazuh SIEM.