About
Who am I?
Cybersecurity professional working in the space where technology meets business. I combine a solid technical foundation with a strategic mindset — understanding risk, making it understandable for others, and helping shape security that actually works in practice.
Approach
I combine technical depth with strategic thinking. While I enjoy getting hands-on with infrastructure and security tooling, my focus is on the bigger picture — how security programs are built, how risk is communicated, and how technical decisions align with business objectives.
Background
Years of experience across cybersecurity, IT & OT infrastructure, and risk management. Background spanning technology, critical infrastructure, and medical — environments where security decisions carry real weight.
Philosophy
Security should be a business enabler, not a bottleneck. The most effective security programs are built on trust, clear communication, and pragmatic risk decisions — not on fear or compliance checklists alone.
What I Bring
Security Architecture
Zero trust, cloud security, network segmentation, infrastructure hardening
Threat Management
Threat modeling, incident response, vulnerability management
SecOps & Automation
Monitoring, detection engineering, SIEM, security automation
Strategic Thinking
Risk assessment, security program design, translating technical risk into business context
This Site
defaire.cc is where I write about cybersecurity strategy, infrastructure, and the occasional deep-dive into the homelab where I test ideas hands-on.
Built with Next.js and self-hosted on a 3-node HA K3s cluster running on Proxmox. Storage is backed by NVMe-oF/TCP from TrueNAS, with automated CI/CD through Gitea Actions. TLS is handled by cert-manager with wildcard certificates, and the whole stack is monitored via Zabbix — because understanding the technology you're securing matters.