Shubham Khanna

Conduct comprehensive security assessments including SOC-aligned threat hunting, vulnerability identification, SIEM log analysis, and risk assessment across web applications, APIs, and network infrastructure — directly aligned with enterprise SOC analyst workflows Perform cyber threat hunting and incident investigation on HackerOne, Bugcrowd, and OpenBugBounty, analyzing threat actor TTPs using the MITRE ATT&CK Framework, identifying malware indicators (IOCs), and preparing detailed incident reports with remediation recommendations Built and operated a self-built SIEM-like security monitoring stack using Suricata IDS, Elastic Stack (ELK), and T-Pot honeypot for real-time network intrusion detection, packet-level analysis, and threat correlation — simulating enterprise SOC operations including 24x7 monitoring, alert triage, and incident response Developed n8n-based SOAR automation workflows for security alert orchestration, automated incident ticketing, and response playbook execution, reducing manual response time by 60% Applied Zero Trust Architecture principles in personal cloud infrastructure, implementing least-privilege access controls, multi-factor authentication, and segmented network zones to protect sensitive data and systems Consistently identify and report critical and high-severity vulnerabilities (XSS, SQL Injection, IDOR, SSRF, RCE, CSRF, authentication bypass) following structured disclosure processes, with documented PoC and remediation guidance

Developed and executed automated security test scripts as an SDET for the MDM (Master Data Management) project at PNC Bank, integrating EDR log analysis and SIEM-based security monitoring into CI/CD pipelines for continuous security validation — reducing critical vulnerability detection time by 40% Built Python and SQL utilities for large-scale security log analysis and threat data aggregation using Splunk SIEM, reducing manual testing effort by 75% and improving threat detection accuracy across banking applications Performed vulnerability scanning, risk assessment, and security testing across banking applications using Burp Suite, Nessus, and custom scripts; collaborated with development and security teams to prioritize and remediate identified vulnerabilities Designed and documented incident response procedures, security playbooks, and threat analysis reports following NIST CSF and CIS Controls guidelines, improving team incident handling efficiency by 33% Implemented DevSecOps practices by integrating security scanning (SAST/DAST) into GitLab CI/CD pipelines, establishing automated security gatekeeping and build breakers for the banking MDM application Conducted security awareness training sessions for cross-functional teams on OWASP Top 10 vulnerabilities, secure coding practices, and security best practices, boosting overall security posture Applied cloud security principles (AWS, Azure) and container security (Docker, Kubernetes) for infrastructure protection, implementing IAM policies, WAF rules, and network segmentation

Developed secure data extraction programs from IMS to DB2 for PNC Bank MDM project, implementing strict access controls, audit logging, and data encryption aligned with HIPAA and PCI-DSS data protection requirements Achieved 80% improvement in secure data retrieval efficiency through optimized queries, database hardening, and implementation of least-privilege database access policies Participated in secure SDLC practices, conducting security code reviews and applying static analysis tools to identify and remediate security vulnerabilities before production deployment

Configured Jira dashboards, workflows, and filters for security incident tracking, vulnerability management ticketing, and SOC case management, improving team visibility and tracking of security issues Developed custom Jira automation rules to streamline security incident escalation and resolution workflows