Ayush

Cybersecurity Engineer with 4+ years in Penetration Testing, Threat Detection, and Application Security — securing web and API environments for real-world impact.

Let's connect
Cybersecurity
I'm
Ayush,
a
self-taught
security
engineer.
I
specialize
in
penetration
testing,
threat
detection,
and
application
security.

Technical
Arsenal

Tools and technologies I work with daily.

Security Operations
SOC SIEM (ELK Stack) SOAR Incident Response Threat Hunting MITRE ATT&CK Log Analysis Alert Triage
Offensive Security
Burp Suite VAPT Web Pentesting API Exploitation IDOR OWASP Top 10 Payload Crafting
Application & API Security
JWT / OAuth2 IAM & RBAC Authentication Authorization Secure SDLC Code Review
Cloud & Infrastructure
AWS IAM AWS S3 / EC2 CSPM Zero Trust WAF Cloudflare IDS/IPS
Threat Analysis
Malware Analysis IOC Analysis Hash Analysis (MD5/SHA256) Phishing Detection VirusTotal URL Analysis
Programming & Tools
Python REST APIs Postman Linux EDR / XDR GRC ISO 27001

Case
Studies

Real-world security engineering and research work.

01 — Detection Engineering
Malicious Payload & URL Threat Detection System
Engineered an AI-assisted detection engine using Python for static malware analysis, hash extraction, and pattern matching against 1000+ known malicious signatures. Built a URL analysis pipeline integrating VirusTotal APIs and MITRE ATT&CK mapping for SOC visibility.
Python VirusTotal API MITRE ATT&CK IOC Analysis SIEM
1000+
Signatures matched
High
Detection accuracy
02 — SOC Platform
Cloud-Native SOC Monitoring & Threat Detection Platform
Built a centralized SIEM pipeline using ELK Stack and cloud log sources for ingestion and correlation of security events. Applied SOAR-based alert handling and MITRE ATT&CK aligned detection rules with custom dashboards.
ELK Stack SOAR AWS MITRE ATT&CK Threat Detection
40%
Faster MTTD/MTTR
30%
Fewer false positives
03 — Application Security
Secure E-Commerce Platform with Payment Protection
Built a transaction platform integrating Stripe and PayPal with encrypted communication. Applied WAF rules, bot filtering, and OWASP-aligned session handling and API validation to minimize unauthorized access.
WAF OWASP JWT Stripe API Bot Protection
85%
Production risk reduced
60%
Malicious traffic blocked
04 — Cloud Security
Secure Bus Tracking System with API & Cloud Security
Developed a GPS-enabled Android tracking system with secured REST APIs using JWT. Implemented IAM roles and API access validation on AWS with CSPM practices for improved traceability and detection of misconfigurations.
AWS IAM JWT CSPM REST API Android
100%
Authenticated endpoints
AWS
Cloud security layer

Work
History

Apr 2026
Mastercard
Cybersecurity Analyst — Virtual Job Simulation
  • Built phishing detection workflows using SIEM (ELK Stack), Python, and IOC enrichment, processing 10K+ email events weekly with 28% fewer false positives.
  • Designed phishing simulation campaigns increasing employee reporting rates by 35%.
  • Analyzed email headers and URLs using MITRE ATT&CK mapping, reducing triage time by 30%.
Apr 2026
AIG
Cybersecurity Analyst — VAPT & Threat Analysis
  • Investigated zero-day scenarios using CISA advisories and manual testing, reducing potential exposure risk by 38%.
  • Performed controlled exploitation of encryption weaknesses using Python-based brute-force scripts, reducing simulated recovery time by 55%.
  • Improved patch turnaround time by 30% through clear remediation guidance and risk reports.
Nov 2022 — Jun 2024
Kamboz Information Technologies Pvt. Ltd
Cybersecurity Engineer
  • Led end-to-end security for web and mobile apps using JWT, OAuth2, and AES encryption — reduced production risk by 85%.
  • Centralized logs using ELK Stack for SIEM monitoring, cutting false positives by 30%.
  • Performed manual VAPT using Burp Suite and Postman, remediating 90%+ of high-risk issues before release.
  • Deployed Cloudflare WAF and bot protection, reducing malicious traffic by 60%.
Mar 2020 — Jun 2024
Independent Security Researcher
Cybersecurity Analyst — Volunteer
  • Uncovered 100+ vulnerabilities including RCE and logic flaws using Burp Suite and manual techniques.
  • Reverse-engineered authentication flows to identify bypass vectors and close critical access control gaps.
  • Simulated multi-step attacker behavior to expose weaknesses missed by automated scanners.

Certifications

Google Cybersecurity Professional
Google
Certified Ethical Hacker (CEH)
EC-Council
IBM Cybersecurity Analyst Professional
IBM / Coursera
AIG Shields Up: Cybersecurity Simulation
AIG
Mastercard Cybersecurity Simulation
Mastercard
Cybersecurity Specialization
Coursera
Open to opportunities
Let's Talk.

Looking for a cybersecurity engineer who can find the gaps before attackers do? I'm available for full-time roles, contracts, and security consulting.

ayushkamboj148@gmail.com LinkedIn +1 (260) 442-8365