Projects
18 years of projects. These are the ones where I learned the difference between knowing something and truly understanding it.
Device Trust
Technical Lead
Most organisations know who is logging in. Far fewer know what device they're logging in from — and whether that device should be trusted.
This project closed that gap. I designed and implemented a device trust framework that evaluates every device before it can touch a single business application. Managed and unmanaged devices are treated differently. Compromised or non-compliant devices are blocked automatically, no matter whose credentials they're carrying.
The result is simple: if the device isn't one of ours, it doesn't get in.

Phishing-Resistant Authentication
Technical Lead
Passwords and SMS codes are not security. They're a false sense of it.
I rolled out a full migration for 600+ users — moving away from push notifications, SMS, and passwords to phishing-resistant authentication methods. The result was passwordless. No more credentials to steal, no more push fatigue attacks, no more legacy risk.
The outcome surprised even the sceptics: users found it easier than what came before, and security got stronger at the same time.

Data Center Network Migration
Technical Lead
Migrating a live data center network is one of those projects where the margin for error is measured in seconds — literally.
I designed the entire migration from the ground up: selected the hardware, planned the architecture, and moved 2 data centers from aging switches to a modern virtualised fabric with vPC technology. Multiple sites, thousands of ports, all while keeping the business running. We had a 30-second downtime window. We hit it.
The result was a network built for the next decade — faster, more resilient, and actually manageable.
