👤 name: Raja Shekar Reddy Seelam
🎓 education: M.S. Cybersecurity @ Florida International University (GPA 3.9, Dec 2025)
💼 current: SOC Analyst · Offensive Security Researcher · LLM Red-Teamer
🎯 targeting: SOC Analyst | Security Operations | Penetration Tester | App Sec
🌎 location: Miami, FL → Open to Relocation (CONUS)
🛂 work_auth: STEM OPT · 3 yrs authorized · No sponsorship required
💬 ask_me_about: SIEM/SOAR · Threat Hunting · MITRE ATT&CK · LLM Jailbreaks · CVE Disclosure
⚡ fun_fact: Reconstruct a full Cyber Kill Chain in <4 min from telemetry alone|
I'm a defense-first security engineer with an offensive backbone — the kind of analyst who reads detection rules from both sides of the wire. My day-to-day spans SOC operations, threat hunting, incident response, penetration testing, and AI/LLM security research. I currently anchor my work in three places:
I care about measurable security outcomes, not security theater. Every project below has hard numbers behind it. |
|
| 🎯 Metric | 📈 Result |
|---|---|
| 🐛 CVEs Responsibly Disclosed | 150+ (NCIIPC · HackerOne · Bugcrowd · OpenBugBounty) |
| 🛡️ Penetration Tests Executed | 50+ web · API · mobile engagements |
| 🚨 Security Incidents Resolved | 100+ with 40% MTTR reduction |
| 📊 Splunk Detection Improvement | 35% faster mean time to detect |
| 🎓 FIU M.S. Cybersecurity GPA | 3.9 / 4.0 |
| 🥷 TryHackMe Global Rank | Top 6% ([0x9][MAGE] · 39 rooms · 7 badges) |
| 📜 Active Certifications | SC-200 · Security+ · CEPT · ITIL 4 |
| 🤖 LLM Red-Team Efficiency | +45% jailbreak detection · −60% test time |
🏢 EduGroup — Junior Cyber Security Engineer · Jan 2022 – Dec 2023
Stack: Splunk · Wazuh · Active Directory · Nessus · Azure Key Vault · Jira
- 🛠️ Built Splunk dashboards + correlation alerts → 35% faster detection, 100+ incidents resolved, 40% MTTR reduction
- 📋 Authored IR playbooks + SOPs aligned to NIST CSF + ISO/IEC 27001 (closed audit-gap pre-cert)
- 🛡️ Threat modeling + audits → 45% reduction in undetected threat vectors, 50% fewer high-severity exposures
- 🔐 Administered Active Directory (RBAC + MFA + GPO) → 55% drop in unauthorized-access incidents
- 🎣 Phishing simulations across 300+ employees → susceptibility fell 45% in 6 months
- 🤖 Automated PKI cert issuance (600+/month) via Azure Key Vault + REST → 65% faster turnaround
🕵️ White-Hat Security Researcher (Freelance) · HackerOne · Bugcrowd · NCIIPC · OpenBugBounty · Jun 2023 – Present
Stack: Burp Suite · Metasploit · Subfinder · Amass · Shodan · ffuf · Python · Bash
- 🎯 50+ pentests across web apps, APIs, mobile → 80+ critical/high vulnerabilities discovered
- 📤 150+ CVEs responsibly disclosed to NCIIPC (India's national CIIP body)
- 📑 CVSS-scored, MITRE ATT&CK-mapped reports with PoCs + remediation guidance
- ⚡ Python+Bash recon pipelines → 40% faster assessments at 95%+ detection accuracy
🔬 Florida International University — LLM Security Researcher · Jan 2025 – Apr 2025
Stack: Garak · PAIR · GCG · JailbreakBench · Stable Diffusion · PyTorch · CUDA
- 🤖 Automated AI red-teaming → 45% jailbreak detection efficiency ↑, 60% manual testing ↓
- 🎨 Engineered reproducible adversarial pipelines against Stable Diffusion text-to-image models
- 🧪 Proposed novel cryptographic prompt-injection attack class + defensive mechanisms
🔬 FIU Cybersecurity & Privacy Lab — Graduate Research Assistant · Jan 2024 – Jun 2024
- 📊 Engineered + annotated a 10,000-entry ML behavior-analysis dataset → +18% model accuracy
- 🐍 Built Python analytical pipelines → accelerated team decisions by ~25%
 Security Operations Associate Sentinel · Defender XDR · KQL Apr 2026 |
 SY0-701 Threats · Architecture · IR Feb 2026 |
 Certified Expert Penetration Tester Mile2 · Offensive Sec Oct 2023 |
 ITIL 4 Foundation Service Management 2024 |
🥷 TryHackMe: Top 6% Globally · Rank #115050 · [0x9][MAGE] · 39 rooms cleared · 7 badges earned
|
End-to-end enterprise SOC built from scratch — segmented VLANs (DMZ/LAN/Mgmt), Suricata IDS/IPS, Wazuh SIEM with custom correlation rules, Active Directory with GPO + RBAC. Run weekly red/blue exercises from an isolated Kali VM.
|
SOAR-adjacent threat intelligence aggregator — RSS scraping, web scraping, VirusTotal IoC enrichment (hashes, IPs, domains, URLs), MongoDB persistence, scheduled weekly digest delivery. Hardened with Helmet.js, CORS, rate-limiting, RBAC, HTTPS.
|
|
Novel offensive AI research introducing cryptographic prompt injection as a new jailbreak class against text-to-image diffusion models.
|
Full PCI DSS SAQ D compliance implementation — Azure Key Vault secrets management, enforced HTTPS, firewall rules for CDE, GitHub Actions CI/CD with secret scanning.
|
|
50+ web/API assessments mapped to OWASP Top 10 with full kill-chain documentation, CVSS scoring, and remediation guidance.
|
Digital forensics tooling — EXIF metadata extraction + Isolation Forest anomaly detection to surface tampered or AI-generated imagery.
|
📝 Read more security write-ups, CVE disclosures, and lab walk-throughs at rajareddy.site/blog
+ 🔐 OSCP preparation — offensive deep dive (HTB + PWK labs)
+ ☸️ Kubernetes Security — Falco + OPA Gatekeeper + admission controllers
+ 🏗️ Terraform / IaC Sec — tfsec, Checkov, policy-as-code pipelines
+ 🌪️ CrowdStrike Falcon — EDR engineering + Real-Time Response workflows
+ 🛫 Intune + ServiceNow — endpoint management at enterprise scale
+ 📤 First CVE acquisition — moving from disclosure to CVE-numbered authority
