SOC Shift Lead at Precision Cybertechnologies, running 24/7 security operations across multiple client environments. Around the SOC, I build the documented security programs small Caribbean organizations don't have yet. Detection through remediation. Risk through roadmap.
I'm Jelani Maitland, a SOC Shift Lead at Precision Cybertechnologies, where I run 24/7 security operations across multiple client environments: SIEM investigations in Microsoft Sentinel and Elastic Stack, incident response from detection through remediation, proactive threat hunting with MITRE ATT&CK, and mentoring the analysts on my shift.
Around the SOC work, I build open-source GRC programs aimed at a gap I keep seeing across the Caribbean. Small healthcare practices, law offices, and professional services firms run on Microsoft 365, handle sensitive data every day, and have one person managing all of IT, with no documented security program. My MedCaribe portfolio is the reference material to help close that gap, dual-mapped to NIST CSF 2.0 and CIS Controls v8.
I learn by building. I don't trust a control I haven't stood up myself, so I run the labs, map the frameworks at the source, and publish the work.
Across multiple client environments, I own advanced alert triage, threat escalation, and end-to-end incident response. I direct SIEM investigations in Microsoft Sentinel and Elastic Stack, run proactive threat hunts with MITRE ATT&CK, mentor junior analysts in detection engineering and forensics, and translate technical risk into business impact for executive and board-level stakeholders.
Five interconnected projects building a complete security program for MedCaribe, a 55-person healthcare provider in Trinidad & Tobago. All published on GitHub.
A complete governance program dual-mapped to NIST CSF 2.0 and CIS Controls v8 IG1: a 20-risk register with quantitative scoring, five core security policies, and an incident response plan covering five incident types. Delivered with a board-level risk briefing and a phased 12-month remediation roadmap costed at TTD 15K to 37.5K and prioritized by risk reduction per dollar.
Mapped all 56 CIS Controls v8 IG1 safeguards to specific Microsoft 365 Business Premium features (Entra ID, Defender, Intune, Purview), finding that 82% of essential IG1 controls are fully addressable through existing licensing at zero additional cost. Flagged the three gaps M365 can't cover and sequenced a six-wave rollout.
Three tabletop scenarios (business email compromise, insider threat, vendor breach) with facilitator guides, participant handouts, observer worksheets, and after-action templates. Each runs five escalating injects that force real decisions on containment, evidence preservation, and regulatory notification.
A third-party risk framework with two-factor tiering (data sensitivity x service criticality), weighted security questionnaires, and a scoring rubric. Includes a sample assessment of CloudMed, a cloud EHR provider holding 12,000 patient records, scored 67% (Medium Risk) with a documented risk acceptance and data-controller liability analysis under the T&T Data Protection Act.
A dual-framework gap assessment tool with cross-framework comparison templates and a completed report showing a 129% maturity improvement over eight weeks, from 1.05 to 2.4 on the NIST CSF scale, and 39% CIS Controls v8 IG1 implementation from a zero baseline.
An isolated enterprise SOC environment with pfSense (firewall/IDS/IPS), Windows Server 2022 (Active Directory, RBAC), and Windows 10 endpoints. Deployed CrowdSec and Sysmon with custom alerting and log analysis, achieving 30% faster incident resolution.
Deployed Elastic Stack to centralize logs from Kali Linux and Windows systems, automating ingestion via Elastic Agents to cut manual collection by 40%. Built Kibana dashboards that surfaced 50+ simulated malicious events and visualized attacker TTPs.
End-to-end social engineering campaigns built in Gophish, with realistic email templates and credential-harvesting landing pages to test user awareness and validate the technical email security controls behind them.
A control only matters when you can trace it back to the risk it answers. I work from risk first, controls second.
I don't trust a control I haven't stood up myself. The lab is where theory either survives or gets corrected.
Security an analyst can't run is just paperwork. The win is people who can execute, not a binder.