Cybersecurity Analyst · Threat Detection & Incident Response · Web Application Security
Cybersecurity analyst with hands-on experience across SOC operations, cloud SIEM, web application security, and incident response. Based in Melbourne - building real skills through real labs.
I started in Bangalore with a B.Tech in Aeronautical Engineering - spending three years across some of Asia's most demanding engineering environments including Sansera Engineering, Brahmastra Aerospace, and Autodesk. My final year project was a fully functioning obstacle-avoidance drone I built and coded from scratch - writing the C++ algorithm, designing every component in CAD, and integrating four ultrasonic sensors with PID control logic. That project taught me something I carry into cybersecurity: understanding how systems fail is more valuable than knowing how they work.
In 2023 I relocated to Melbourne and pivoted deliberately into cybersecurity. At RMIT I built a genuine technical foundation - vulnerability assessments, pfSense and Snort IDS/IPS configuration, Active Directory security controls, and a complete five-phase NIST CSF incident response plan for a simulated client engagement covering red, blue, and purple team operations.
Since graduating I've been building independently - deploying a Microsoft Sentinel lab in Azure with real KQL threat detection queries, completing cybersecurity programmes with Commonwealth Bank, Mastercard, Deloitte, and TCS, and working operationally at Coles CFC while I target the right cybersecurity role. Everything on this portfolio is real, documented, and defensible in an interview.
Every project below represents real hands-on work - each with full documentation, exploitation evidence, and professional-grade reporting.
A comprehensive hands-on web application security assessment conducted against DVWA using industry-standard tools and methodology. Identified, exploited, and documented six critical vulnerability classes aligned to the OWASP Top 10 - including SQL injection with full credential extraction, reflected and stored XSS with session cookie theft, OS command injection with file system access, and brute force with Burp Suite. Each finding includes exploitation evidence, risk rating, and remediation guidance, replicating the output of a professional penetration test.
Deployed a cloud-based SOC environment using Microsoft Azure and Microsoft Sentinel. Provisioned a Windows Server 2025 VM, connected it to a Log Analytics workspace, and configured real-time Windows Security Event ingestion via AMA data connector. Wrote and executed KQL queries to detect failed login attempts, identify brute force patterns, and produce a login activity dashboard - replicating core L1 SOC analyst workflows in a live cloud SIEM environment.
Led the final implementation session of a full red, blue, and purple team security engagement for a simulated business client. Executed and defended against ARP poisoning, guest Wi-Fi session hijacking, SYN flood, and credential phishing attacks. Deployed CCProxy web filtering to block phishing at proxy level, enforced WPA2 encryption, configured Snort IDS/IPS rules on pfSense, and pushed static ARP policies via Active Directory Group Policy. Produced a five-phase NIST CSF incident response plan and full technical documentation.
Conducted a structured web application security assessment as part of the Commonwealth Bank cybersecurity programme. Identified vulnerabilities across the OWASP Top 10 including SQL injection, OS command injection, broken access control, session management weaknesses, and cryptographic failures. Produced a formal penetration testing report with risk ratings, proof-of-concept evidence, and remediation recommendations aligned to industry standards.
Designed an enterprise phishing email simulation targeting employee personas across departments as part of the Mastercard cybersecurity programme. Interpreted simulation results to identify departments with the highest susceptibility and produced a security awareness training recommendation report with targeted risk mitigation strategies.
Completed Deloitte's cybersecurity virtual programme covering threat analysis, risk identification, and security advisory thinking. Applied structured frameworks to analyse real-world security scenarios, assessed business impact of cyber threats, and produced risk-aligned recommendations - building the consulting and advisory skills relevant to GRC, audit, and professional services cybersecurity roles.
Completed a structured, assessed AWS Academy programme through RMIT University with timed hands-on modules across core AWS services. Configured EC2 instances with security group policies, applied least-privilege IAM roles and policies, set up RDS databases within VPC private subnets, deployed Lambda functions with scoped execution roles, and managed S3 bucket access controls. Each module was assessed and marked - covering cloud architecture, security best practices, pricing models, and support structures. Awarded the AWS Academy Graduate - Cloud Foundations badge upon completion.
Built a functioning quadcopter drone entirely from scratch as a final year B.Tech project. Designed all mechanical components in AutoCAD and SolidWorks, wrote a real-time obstacle avoidance algorithm in Arduino C++ using four ultrasonic sensors and PID control logic, and integrated a KK2.1.5 flight controller. Successfully demonstrated live collision avoidance across all four directional axes during flight testing.
A quick introduction - who I am, what I've built, and what I'm looking for.
Short technical write-ups from real lab work - the kind of thinking that gets you hired.
A walkthrough of setting up a Windows Server VM in Azure, connecting it to Microsoft Sentinel, generating real failed login events, and writing KQL queries to detect brute force patterns - including what the results actually mean from an analyst's perspective.
From ARP poisoning to phishing defence - a breakdown of how our team attacked and defended a simulated business network, what worked, what didn't, and the key lessons about defence in depth that no textbook explains as clearly as doing it for real.
A step-by-step technical write-up of exploiting SQL injection in DVWA - from manual injection to full credential extraction, and the exact remediation steps that fix it. Written for analysts who want to understand both sides of the vulnerability.
Most cloud breaches come down to overpermissioned IAM roles. A practical guide to configuring EC2, Lambda, and RDS with genuinely least-privilege IAM policies - based on hands-on AWS Academy lab work and what the assessors actually tested.
Based in Melbourne and open to opportunities across Australia and New Zealand. Reach out through any of the channels below.