Security through
experience
I'm Myles — a cyber security practitioner who's spent years on a journey down the rabbit hole of practical, real-world security. I believe in reducing fear and complexity for teams, builders, and stakeholders, not adding to it.
My approach is grounded in the realities of modern infrastructure: cloud-first environments, dynamic data pipelines, and the ever-expanding attack surface that comes with them. I've spoken at WordCamp Brisbane, built open-source tooling, and been in the trenches with AWS, Azure, GCP, Cloudflare, and everything in between.
When I'm not hardening infrastructure, you'll find me surfing, snowboarding, mountain biking, running, or on the back of a motorbike. Dad. Tech geek. Coffee addict. In that order.
Cyber security focus areas
Security Architecture
Threat modelling, secure architecture patterns, and hardening frameworks for modern stacks. Practical thinking that balances risk, usability, and business context.
Cloud Security
Securing workloads across AWS, Azure, and GCP. IAM policies, network security groups, encryption strategies, and compliance posture.
Incident Response & SIEM
Splunk-driven detection, Velociraptor endpoint forensics, and building playbooks that cut response time when it matters most.
Infrastructure as Code
Terraform, Ansible, Docker, and Kubernetes — building reproducible, auditable infrastructure with security baked in from day one.
WordPress & Web Security
Hardening WordPress deployments, WAF configuration via Cloudflare, and reducing attack surface for web-facing applications.
Network & DNS
Pi-hole DNS filtering, Ubiquiti network segmentation, VLAN design, and zero-trust principles for home lab and enterprise environments.
Choose a practical security starting point
If you want to compare notes, these are useful places to start a conversation. Each topic is grounded in practical risk reduction, realistic fixes, and implementation paths teams can actually follow.
Cloud security foundations
Practical discussion around AWS, Azure, or Google Cloud foundations: IAM, network exposure, encryption, logging, backups, and configuration drift.
Book a Coffee Chat →Web & WordPress security
Conversation around public-facing sites, WordPress deployments, DNS, Cloudflare controls, WAF posture, backups, and practical hardening steps.
Book a Coffee Chat →Incident Response Readiness
Ideas for playbooks, logging, SIEM/detection coverage, endpoint visibility, and response workflows before a real incident forces the issue.
Book a Coffee Chat →Projects on GitHub
CasaOS installation scripts for Debian 13. Streamlines self-hosted home lab setup with a clean, reproducible shell-based approach.
github.com/mylesagnew →An AI-powered security agent built in Python. Automates threat detection and response workflows using modern LLM tooling.
github.com/mylesagnew →Detection rules, hunting queries, and notebooks for Microsoft Sentinel. Practical SIEM content for cloud-native threat detection.
github.com/mylesagnew →A research lab environment for testing AI-related vulnerabilities and prompt injection attack surfaces.
github.com/mylesagnew →Curated DNS blocklists for Pi-hole and similar resolvers. Blocks ads, trackers, and malicious domains at the network level.
github.com/mylesagnew →Automated Cloudflare DNS record backup script. Keep your DNS configuration versioned and recoverable without manual exports.
github.com/mylesagnew →Let's talk security
Want to compare notes on cloud, website, or infrastructure security? Book a coffee chat and bring the system, risk, or idea you want to talk through.
Book a Coffee Chat →Please do not include passwords, secrets, or sensitive credentials when booking. Share only enough context to start a safe security conversation.