R ritvik.singh/portfolio
~/portfolio / experience

Experience.

A timeline of professional work, the systems I've touched, and the impact of each engagement.

Mar 2025
→ present
New Delhi, IN
full-time

Cyber Security Analyst

● active
Cybrotech Digiventure Pvt. Ltd. · cybrotech.us ↗

Embedded with engineering and ops teams to run the full security loop — finding vulnerabilities, tuning detections, and writing the policy that keeps them from coming back.

  1. Web & network pentests aligned with OWASP Top 10 — identified injection flaws, misconfigurations, and broken authentication across multiple client engagements.
  2. Ran vulnerability assessments with Nmap and Nessus; delivered CVE-mapped findings paired with remediation steps the dev team could act on the same sprint.
  3. Deployed and tuned Data Loss Prevention policies to prevent unauthorized data transfer and surface endpoint data leakage in real time.
  4. Performed office security audits — endpoint hardening, Wi-Fi segmentation, and employee awareness reviews for compliance readiness.
  5. Operated SIEM stacks (Wazuh, ThreatSpike) for log correlation, alert tuning, and incident triage; reduced noise by collapsing duplicate rule paths.
  6. Partnered with backend teams to secure APIs & databases — auth, input validation, encryption at rest and in transit.
  7. Authored cybersecurity policies and structured vulnerability reports mapped to ISO/IEC 27001:2022 controls for client audit cycles.
// stack & tooling
Burp Suite Nmap Nessus Wazuh ThreatSpike Elasticsearch DLP ISO 27001 OWASP Top 10 Python
02 how an engagement runs
// 01 RECON

Scope & map

Define rules of engagement, enumerate the attack surface, agree on out-of-scope.

// 02 TEST

Probe & exploit

Run automated scans, hand-craft payloads, validate findings end-to-end.

// 03 DETECT

SIEM & DLP

Tune rules, deploy policies, ensure the same attack is now visible if repeated.

// 04 REPORT

Document & hand off

CVE-mapped report, ISO 27001 controls, dev-ready remediation guidance.

03 earlier & alongside
2022 → 2026

B.Tech — Computer Science & Engineering

Bennett University · Greater Noida, UP

4th-year CSE student with a 9.37 SGPA in Sem 6. Relevant coursework: Cybersecurity, Network Security, Penetration Testing & Ethical Hacking, Cryptography, Incident Response.

2024

Certified Ethical Hacker (CEH)

EC-Council

Industry-recognized credential covering reconnaissance, scanning, enumeration, system hacking, and post-exploitation methodology.

2024

Google Cybersecurity Specialization

Coursera · 8-course track

End-to-end blue-team grounding: SIEM operations, Linux internals, Python for security, and incident response playbooks.

2024

Introduction to Cybersecurity

Cisco Networking Academy

Foundational concepts in network defense, the CIA triad, and the modern threat landscape.