From a classroom to global MSSP security operations

I'm Jayodya Methmal — an Incident Response Analyst at Armature Systems, a US-based Managed Security Services Provider (MSSP), where I work remotely supporting security operations and incident response for clients across pharmaceutical, biopharmaceutical, healthcare, and enterprise industries — spanning SentinelOne, CrowdStrike Falcon, Cortex XDR, Microsoft Defender, Microsoft Sentinel, Okta, Abnormal Security, Zscaler, and Tines, while building out alert-tuning and automation processes. Before that, I spent time as an Engineer in IT Security at Commercial Bank of Ceylon PLC working inside Cortex XSIAM, and just over a year inside MillenniumIT ESP's 24/7 managed security operations center, defending banking, healthcare, and enterprise clients across on-premises, AWS, and Azure environments.

My path into security started with a genuine curiosity about how systems break. That curiosity led me to a BSc (Hons) in Cyber Security at the University of Staffordshire UK, delivered through APIIT Sri Lanka, where I graduated with First Class Honours and was awarded the Gold Medal for Best Performance in Cybersecurity — the culmination of four years split between network security labs, ethical hacking modules, and a growing stack of side projects.

What sets my approach apart is that I don't just monitor systems — I build them. From a React/Node platform connecting Sri Lankan entrepreneurs, to a fully homomorphic encryption pipeline for healthcare ML predictions, writing software keeps my defensive instincts grounded in how applications, infrastructure, and data actually behave under the hood.

On the professional side, one of the most formative experiences so far has been collaborating with Mandiant on a bank-wide compromise assessment — coordinating forensic artifact collection across more than 9,000 devices, from core servers to ATMs. It reinforced a simple principle that now guides everything I do: visibility first, then speed, then precision.