Cybersecurity & AI Governance | MSc Computer Science

I build security tools, research AI governance frameworks, and work across the full stack.
My focus is on making AI systems accountable and security operations smarter through automation.

🛡️ Cybersecurity Threat hunting · Incident response · Detection engineering · SIEM analysis (Splunk) · MITRE ATT&CK · Security tooling for real-world attack patterns 🔒 AI Governance & GRC ISO 42001 · ISO 27001 · SOC 2 · NIST CSF · NIST AI RMF · AI risk management · Privacy-first tooling · Compliance automation 💻 Software Development Full-stack applications · CI/CD pipelines · Database design · Cloud infrastructure (AWS)

Featured Projects ProjectStackDescriptionISO 27001 RAG AuditorOllama, Qwen3-Coder, ChromaDBPrivacy-first AI that maps audit findings to ISO 27001 controls — runs 100% locally, zero data leaves the deviceOAuth Token AuditorPythonScans OAuth apps across Google Workspace & Salesforce, flags risky permissions based on real 2025 breach patternsGRC Policy PortfolioSOC 2, ISO 27001, NIST CSF5 enterprise policies, risk register, 40-control mapping matrix, gap assessment with remediation roadmapAWS Compliance AutomationPython, AWSAutomated evidence collection across IAM, encryption, logging, and network services mapped to audit criteriaCI/CD Migration PlatformNext.js, TypeScript, PostgreSQLAI-assisted platform converting Jenkins pipelines to GitLab CI/CD with security-hardened configurations

☝️ Replace the # links above with your actual repo URLs after uploading

Tech Stack

Published Research & Writing

🔍 Breach analysis of 2025 Google/Salesforce OAuth supply-chain attacks affecting 700+ organizations 📊 SOC 2 implementation methodology using risk-first approach over control-first compliance 🤖 AI governance framework comparisons — ISO 42001 vs EU AI Act vs NIST AI RMF