About Blog LinkedIn GitHub Contact Resume
CISSP Certified

// Hello, I'm

Sunil Kumar

Senior Security Engineer

Building resilient security systems across cloud, DevSecOps, and enterprise infrastructure. 5+ years defending what matters.

Explore My Work → Get In Touch
sunil@tharvid ~ zsh
0
Years Experience
0
Certifications
0
Repos Secured
0
Data Sources Integrated
CISSP CompTIA Security+ AWS Security Specialty GCP Cloud Security Engineer
Docker Foundations
AWS Cloud Practitioner
Azure Security Engineer
CISSP CompTIA Security+ AWS Security Specialty GCP Cloud Security Engineer
Docker Foundations
AWS Cloud Practitioner
Azure Security Engineer

// Expertise

What I Bring

Cloud Security & K8s

AWS GCP Azure CSPM IAM Kubernetes KSPM Runtime Security

DevSecOps

SAST DAST SCA IaC Security ASPM Container Security API Fuzzing
🤖

GenAI Security

LLM Gateways Prompt Injection Defense Agentic Security Workforce Safe AI Usage Data Leakage Prevention
🔎

Threat Detection & Incident Response

SIEM SOAR SOC Incident Response DLP
💻

Security Automation

Python AWS Lambda Cloud Functions Workflow Automation GenAI Enrichment
🛡

Security Infrastructure

Firewall WAF XDR EDR File Integrity Email Security
🔒

Offensive Security

Pentesting Burp Suite Nmap Metasploit OWASP ZAP
📈

Compliance & Governance

CIS Controls PCI-DSS ISO 27001 Risk Assessment

// Projects

Things I've Built

GenAI + Security

GenAI-Based Security Alert Triage

A GenAI-powered triage engine using Claude with MCP-based integrations to fetch context from SIEM, XDR, ticketing systems, historical incidents, and SOPs, enabling intelligent alert analysis with automated TP/FP classification.

Claude MCP SIEM XDR GenAI
Automation

Enterprise SOAR Workflow

Enterprise SOAR workflow integrating CheckPoint, Entra ID, Okta, Mimecast, Jira, PagerDuty, CrowdStrike XDR, Google Workspace, AWS, and GenAI-based enrichment to automate incident response from SIEM detections.

SOAR CrowdStrike Okta Jira GenAI
DevSecOps

Open-Source DevSecOps Pipeline

Open-source DevSecOps pipeline using Jenkins, integrating Semgrep, Checkov, Trivy, Gitleaks, OWASP ZAP, and AWS ECR scanning with automated parsing and reporting to Jira and DefectDojo.

Jenkins Semgrep Trivy Gitleaks DefectDojo
SIEM

SIEM with 100+ Data Sources

Implemented a comprehensive SIEM solution integrating 100+ data sources with custom integrations, parsers, correlation rules, and SOAR response workflows to enhance enterprise-wide threat detection and automated incident response.

SIEM SOAR Coralogix Threat Detection Automation
Cloud Security

KSPM & ASPM Implementation

Deployed KSPM across 15+ Kubernetes clusters for real-time workload monitoring, behavioral threat detection, and automated policy enforcement. Implemented ASPM for comprehensive application security posture management across 500+ repositories.

KSPM ASPM Kubernetes Runtime Security DevSecOps
Awareness

Phishing Awareness Platform

Phishing awareness platform using Gophish, hosted securely on AWS EC2 with Amazon SES integration to run large-scale phishing simulations and improve employee security awareness.

Gophish AWS EC2 Amazon SES