Open to opportunities

David Mawazo

@davidmawazo

Security engineering and research leader blending ISO 27001 governance with hands-on detection, DFIR, and incident response.

Kenya

Message

What I'm looking for

I’m looking for a role where I can build ISO 27001-aligned security programs while delivering hands-on SOC detection engineering, DFIR, and measurable risk reduction, working closely with product and leadership to mature security culture.

I’m an information security professional and cyber security engineer with 8 years of experience spanning governance, risk, and compliance—plus the hands-on security work that turns strategy into measurable outcomes. I’ve served as a primary security adviser and risk officer across a portfolio of 10 client organisations, designing and operating ISO 27001-aligned ISMS controls, managing risk registers, coordinating internal and external audits, and overseeing third-party risk with reporting to senior management and board-level stakeholders.

I also bring deep operational capability: I deployed and administered an Elastic Stack SIEM, led end-to-end response to a live ransomware incident across 20+ endpoints, and produced post-incident reporting that informed an executive security roadmap. In parallel, I’ve contributed as a subject matter expert and content engineer for TryHackMe, building hands-on labs and certification content across detection engineering, DFIR, cyber threat intelligence, SOAR, EDR triage, and SOC operations—earning strong learner outcomes (average NPS 60, high 79) while helping drive a 20% reduction in incidents through structured threat analysis and detection training.

Experience

Work history, roles, and key accomplishments

Cyber Security Engineer

Tryhackme, Ltd

Jan 2022 - Mar 2026 (4 years 2 months)

Served as an SME and content engineer for the cybersecurity training platform, building detection engineering, DFIR, and SOC operations learning content used by 7M+ users. Led work on four certifications (150+ scenario-based SAL1 questions) and improved learner outcomes, including average NPS 60 (max 79) and module drop-off under 6%, while contributing to a 20% reduction in cybersecurity incidents

Sigma Security Onion DFIR SOC Operations SOAR Cyber Threat Intelligence

Cyber Security Engineer

Tabiri Analytics, Inc.

Jun 2019 - Jan 2022 (2 years 7 months)

Acted as primary security adviser across 10 client organizations, designing and operating ISO 27001-aligned ISMS controls, risk registers, and audit coordination for executive and board reporting. Administered an Elastic Stack SIEM and led live ransomware response across 20+ endpoints, improving measured security posture by 40% and threat detection accuracy by 20% with mean detection time within 3

ISO 27001 NIST CSF Risk Register Third Party Risk Management Incident Response Root Cause Analysis Audit Coordination

Web Application Security Engineer

Teletracking Technologies, Inc.

May 2018 - Dec 2018 (7 months)

Secured web applications for a healthcare operations platform by assessing against OWASP Top 10 using IBM AppScan, reducing pre-production vulnerabilities by 40% and potential breaches by 30%. Developed security policies spanning detection, prevention, and incident handling, improving client compliance posture by 33%.

OWASP Top 10 IBM AppScan Web Application Security Vulnerability Management Security Assessments