0x00 · Entry

ThiruvarasuThirugnanam

~$

Cybersecurity and network security engineer. I run detection, response, hardening, and compliance as the sole security practitioner at a Miami technology company. M.S. Cybersecurity, DePaul University.

Amber nodes in the helix are alerts — hover one, click to triage. Or press ` for a shell.

2+ yrsSecurity operations
M.S.Cybersecurity · DePaul
IEEEPublished, ICACCS 2021
NIST · CISControl frameworks

0x20 · Profile

The whole security function,
one practitioner deep.

At Device Connect I own no team and no budget — just the entire attack surface. Firewalls, IDS/IPS, VPNs, and segmentation on one side. Incident response, DLP, and user behavior analytics on the other. Vulnerability assessment, penetration testing, and patch cycles in between. Then the documentation that keeps an audit from becoming an incident.

Before that: Windows Server estates and PowerShell automation at FTT LLC. Firewall and VPN infrastructure for healthcare and finance clients at Databels. Six months of unpaid security work for a refugee resettlement nonprofit in between, because the alternative was letting the skills go cold.

I read packet captures the way other people read the news. I keep networks boring.

0x40 · Trace

Execution trail

Reverse chronological. Titles are as they appear on record.

Device Connect LLC Doral, FL Mar 2026 — Present

Systems and Network Administrator III

  • Design and manage cybersecurity infrastructure — firewalls, IDS/IPS, VPNs, routers, switches, network segmentation — protecting internal and customer-facing systems.
  • Monitor traffic for intrusion attempts and anomalous activity; lead incident response through containment, eradication, recovery, and root cause analysis.
  • Deploy DLP and user behavior analytics to detect insider threats and enforce least-privilege access.
  • Run vulnerability assessments, penetration testing, and system hardening across servers, workstations, and cloud environments.
  • Maintain security documentation and support compliance audits aligned to NIST and CIS Controls.
FTT LLC Miami, FL Mar 2025 — Feb 2026

Systems and Network Administrator

  • Administered Windows Server 2019/2022 environments across 50+ server instances.
  • Automated health checks, log collection, and account audits in PowerShell, cutting manual administrative load substantially.
  • Configured Active Directory, DNS, and NTFS permissions for secure domain operations.
  • Implemented patch management and endpoint hardening aligned to NIST guidelines.
Refugee-Immigrant Young-Adult Neighbor Volunteer Sep 2024 — Feb 2025

Cybersecurity Engineer

  • Monitored and triaged security events, containing threats before escalation and documenting findings for compliance records.
  • Ran vulnerability scans across network and endpoint environments; enforced security policy and maintained control documentation.
Databels Tiruchirappalli, India Mar 2021 — Feb 2022

Software and Security Engineer

  • Supported administration of enterprise firewalls, VPNs, and network security protocols for healthcare and finance sector clients.
  • Designed and enforced role-based access control for 50+ users; configured Splunk SIEM correlation rules across a 50+ device network.
  • Implemented VLAN segmentation and ACLs to reduce attack surface; resolved critical outages through root-cause analysis.
  • Trained 20+ employees on phishing risk.
MAXVY Technologies Bengaluru, India Sep 2018 — Feb 2019

Embedded Systems Security Intern

  • Implemented AES-256 and RSA firmware encryption and secure boot protocols across deployed IoT devices.
  • Identified and patched critical firmware vulnerabilities through systematic testing.

0x60 · Toolchain

What's on the bench

Tools I've used in production or in a lab I built myself. Nothing listed from a slide deck.

Security operations

SplunkSIEMSnort WazuhIDS / IPSIncident response Log analysisMITRE ATT&CK

Offense & forensics

NessusNmapMetasploit Burp SuiteWiresharkAutopsy FTK ImagerRegRipperHydra

Network & infrastructure

FirewallsVPNACLs VLAN segmentationDLPUBA Patch managementDisaster recovery

Systems & cloud

Windows Server 2019/2022Active Directory DNSNTFSLinux Cisco IOSAWS EC2 · S3 · VPC DockerVMware

Code

PythonPowerShellBash SQLC++JavaScript MATLAB

Governance

NIST CSFCIS ControlsHIPAA GDPRSOXAudit support

0x80 · Fieldwork

Three things I built
and can defend line by line

Every number below comes from work I did and can walk you through.

01

Stylometric authorship verification

DePaul University · Jan – Mar 2024 · Python, NLP, scikit-learn

Impersonation is cheap when anyone can write in your voice. I built a system that decides whether a passage was written by who it claims. Lexical and part-of-speech features, Chi-square and ReliefF selection, an ensemble bagged-tree classifier trained to separate two authors of the same series.

accuracy 87.5%   precision 0.90   F1 0.873

02

Cold case disk forensics

DePaul University · Oct – Nov 2022 · Autopsy, FTK Imager, RegRipper

A full forensic examination of a seized disk image. Recovered deleted files, reconstructed user activity from registry hives, surfaced a hidden encrypted container, identified malware artifacts, and assembled a defensible timeline — the kind an incident review or a courtroom would actually accept.

deliverable Timeline analysis + incident report

03

Reversible data embedding

Sri Krishna College · 2019 · MATLAB, cryptography

High-capacity, low-distortion reversible watermarking using difference expansion on pixel pairs. Payload goes in, comes back out, and the original image is restored bit for bit — no residue. Benchmarked against G-LSB and RS embedding at equal payload.

PSNR gain 2–3 dB over G-LSB and RS

0xA0 · Labs

Two things you can actually run

Claims on a resume are assertions. These are the same claims, executable. Nothing here is required reading — scroll past if you would rather not play.

Lab 01

Who wrote this?

A working slice of my DePaul capstone. It reads two passages, extracts the features stylometry actually uses — function-word rates, sentence length, lexical diversity, punctuation habits — and compares them.

Lab 02

Triage the inbox

Four messages. Two are hostile. I ran this drill for twenty-odd colleagues at Databels; here it is, minus the conference room.

1 / 4 0 correct

0xC0 · Research

Peer reviewed

ICACCS · IEEE · 2021

Scrutinizing Students Performance using Machine Learning

Applied supervised learning to predict academic outcomes from behavioral and performance features, with the aim of surfacing at-risk students early enough for intervention to matter. Presented at the International Conference on Advanced Computing and Communication Systems and published through IEEE.

indexed IEEE Xplore

0xE0 · Credentials

Paper trail

DePaul University · Chicago, IL

M.S., Cybersecurity

Mar 2022 — Mar 2024 · GPA 3.54 / 4.0

Network Security · Enterprise Security Infrastructure · Governance Policies · IT Risk Management · Cyber Law & Ethics · Computer Forensics

Sri Krishna College of Engineering · Anna University

B.E., Computer Science and Engineering

Aug 2017 — Apr 2021 · CGPA 7.99 / 10

  • Cybersecurity Professional Certificate Google
  • Cybersecurity Essentials Cisco
  • IoT Fundamentals Cisco
  • Packet Tracer Cisco
  • Entrepreneurship Cisco
  • Network Virtualization Concepts VMware
  • Software-Defined Storage Concepts VMware
  • Cloud Computing AWS

0x100 · Handshake

SYN. Your move.

Open to cybersecurity analyst, security engineering, and security operations roles — Miami, remote, or anywhere the work is interesting. Authorized to work in the U.S. on STEM OPT; will require H-1B sponsorship going forward.

Email me LinkedIn Resume