With over 15 years of hands-on experience in the cybersecurity field, Sonny is a trusted advisor to organizations navigating the complex landscape of cyber threats, digital transformation, and regulatory compliance. From humble beginnings as a security analyst to overseeing the enterprise-wide security strategy for a multi-billion-dollar multinational organization, Sonny has built a reputation for delivering results, earning trust, and making security pragmatic, measurable, and impactful.
As one of the co-founders of Brockton Point Solutions, As Co-Founder of a cybersecurity consulting firm, Sonny plays an active role in helping small to large enterprises and non-profits enhance their cyber resilience. His goal is to build sustainable security strategies, aligning business priorities with the proper protection, and fostering a culture of resilience across diverse organizations. His portfolio includes guiding clients through SOC 2 readiness, PCI DSS compliance, cloud security assessments, red and purple teaming, and executive-level risk management.
Sonny has worked across a diverse range of industries including finance, retail, government, education, and blockchain, bringing deep expertise in:
- Security program design and implementation
- Incident response and digital forensics
- Cloud and web application security
- Data privacy and regulatory compliance
- Cybersecurity due diligence for M&A
- Governance and leadership of security operations
He currently serves on the Board of Directors for the CISO Division of CIOCAN, where he helps shape strategic discussions for Canada’s top IT leaders. Sonny is also the Chair of the Cybersecurity Committee for the Canadian Blockchain Consortium, where he leads efforts to define cybersecurity standards for blockchain and crypto companies in collaboration with banks, insurers, and regulators.
A respected voice in the cybersecurity community, Sonny has published articles for SANS and is an active member of the SANS Advisory Board. His qualifications include:
- Certified Information Systems Security Professional (CISSP)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Certified Incident Handler (GCIH)
- GIAC Intrusion Analyst (GCIA)
- GIAC Critical Controls Certification (GCCC)
- GIAC Security Essentials (GSEC)
- Certificate of Cloud Security Knowledge (CCSK)
- Bachelor of Technology in Computer Crime Forensic Investigations
Whether advising a CISO, acting as a vCISO, coaching a startup, or assessing an organization’s cybersecurity posture, Sonny brings clarity, integrity, leadership, and execution to every engagement.