0%

SECURITY ENGINEER :: OPEN TO ROLES :: TUCSON, AZ -> CH

ASHISH DEV CHOUDHARY_

>

I build tools and break systems for a living - threat intelligence, vulnerability research, and automation that turns noise into signal. A recent Cyber Operations graduate from the University of Arizona, focused on SOC, penetration testing, and OSINT.

./view_operations establish_connection

ashish@sec — zsh interactive · try "help"

ashish@sec:~$

0+

Weekly incidents triaged

// CyberEyeAW SOC

0%

Incident resolution rate

// real-time response

0%

System exposure reduced

// vulnerability mgmt

0

Industry certifications

// Security+ eJPT ICCA

WHOAMI

01.

cat about.md

I'm a recent Cyber Operations graduate from the University of Arizona (BAS, CS minor). I spend most of my time inside other people's systems - legally - and the rest writing Python to make that work less tedious.

Past lives include a Junior SOC Analyst role at CyberEyeAW and a Cyber Intelligence internship at CogMac in New Delhi. I'm currently a Cybersecurity Fellow with Handshake AI, evaluating LLM outputs on offensive-security prompts, and most recently I designed an AI-driven security evaluation framework that critiques LLM-generated code against the OWASP Top 10.

This September I start an MSE in Information and Cyber Security at OST (Ostschweizer Fachhochschule) in Rapperswil, Switzerland.

nowOpen to SOC, Pentest & Security Engineer roles
builtAI security eval framework vs OWASP Top 10
stackPython · Semgrep · Bandit · YARA · Ghidra · Volatility
certsCompTIA Security+ · eJPT · ICCA
nextMSE Info & Cyber Security, OST Switzerland · Sep 2026

OPERATOR DOSSIER CLEARED

HANDLEashishdev13

ROLECybersecurity Engineer

LOCATIONTucson, AZ -> Switzerland 2026

EDUCATIONBAS Cyber Ops, UArizona (2026)

NEXTMSE Info & Cyber Security @ OST

FOCUSThreat Intel · Vuln Research · OSINT

WEAPONPython 3.x

STATUS● OPEN TO ROLES

CERTS

Security+eJPTICCA

ARSENAL

02.

./arsenal --list

OFFENSIVE

Penetration testing, red teaming, vulnerability research, exploit development, reverse engineering.

Burp SuiteMetasploitNmapNessusGhidraJohn the RipperHashcat

DEFENSIVE

SOC operations, incident response, threat hunting, SIEM tuning, forensic triage.

SplunkWiresharkSnortThreatLockerYARAVolatility

LANGUAGES

Python-first. Comfortable low-level when required, plus the web languages for building tools around findings.

PythonJavaCJavaScriptBashPowerShellSQL

FRAMEWORKS

Mapping work to standards the rest of the org actually cares about.

MITRE ATT&CKNIST CSFOWASP Top 10ISO 27001CIS Controls

INFRA & CLOUD

Lab and prod environments across hypervisors and cloud providers.

AWSAzureDockerLinuxActive DirectoryVMware

ANALYSIS

Turning raw telemetry and malware into actionable intel.

Static & Dynamic AnalysisPacket InspectionOSINTThreat Modeling

OPS LOG

03.

git log --career

Cybersecurity Fellow (Reviewer) @ Handshake AI

📍 San Francisco, CA🗓 Sep 2025 - Present🤖 AI Safety x Security

Audit and refine prompt-response pairs, ensuring accuracy, safety, and consistency across cybersecurity-focused LLM projects
Evaluate LLM outputs on offensive-security prompts and provide structured feedback to trainers, improving research quality across submissions
As Trainer: designed domain-specific prompts to improve correctness and model alignment

LLM EvaluationPrompt EngineeringAI AlignmentOffensive Security

UG Cybersecurity Research Assistant @ University of Arizona

📍 Tucson, AZ🗓 Jan 2026 - May 2026🔬 LLM Security Research

Designed a critique-based evaluation framework for LLM-generated code against the OWASP Top 10
Built a Python pipeline combining static analysis, rule-based scanning (Semgrep / Bandit), and LLM reasoning
Identified and classified injection, access control, and misconfiguration vulnerabilities across 200+ LLM-generated configurations

PythonSemgrepBanditOWASPLLM Security

Jr. Security Operations Analyst @ CyberEyeAW

📍 Sierra Vista, AZ🗓 May 2025 - Aug 2025🛡 SOC Operations

Triaged 100+ weekly security incidents with a 99% resolution rate, enabling real-time response
Ran vulnerability assessments that reduced system exposure by 70%
Collaborated with SOC teams on ThreatLocker tuning, cutting response time by 30%

SIEMThreatLockerIncident ResponseVulnerability Mgmt

Cyber Intelligence Intern @ CogMac

📍 New Delhi, India🗓 May 2024 - Aug 2024🕵 Threat Intelligence

Documented 25+ adversary TTPs via OSINT - playbooks adopted by 7 teams
Investigated 50+ risks in hardware and financial systems, helping cut response time by 30%
Automated data pipelines that saved ~40 hrs/month and increased efficiency by 25%

OSINTMITRE ATT&CKPythonThreat Intel

BUILDS

04.

ls ~/operations

OP-01 DEPLOYED · 2025

Web Vulnerability Scanner

Automated scanner for SQLi, XSS, and SSL/TLS misconfigurations across web targets - a mini Burp Suite with directory enumeration, cookie security, and missing-header checks.

pythonsqlixssssl-tls

OP-02 DEPLOYED · 2025

OSINT Reconnaissance Automation

Recon pipeline chaining WHOIS, DNS, Shodan CVE lookup, and subdomain discovery into one automated HTML intel report for authorized domain reconnaissance.

pythondnsshodanrecon

OP-03 ACTIVE · 2026

LLM-Driven OSINT Framework

Agentic recon framework using ReAct and MRKL reasoning to drive OSINT tooling - an LLM agent that plans, executes, and refines reconnaissance autonomously.

pythonllmreactmrkl

OP-04 DEPLOYED · 2024

AI BadUSB Script Generator

LLM tool that generates DuckyScript payloads for Flipper Zero red-team drops - 30+ unique payloads, 150+ validated script variants across Windows, macOS, and Linux.

llmduckyscriptred-teamflipper

OP-05 DEPLOYED · 2024

Honeypot Deployment Assistant

Automates decoy deployment and maps captured attacker TTPs to MITRE ATT&CK - cut setup time by 70% and logged 500+ unauthorized access attempts in controlled environments.

pythonhoneypotttpautomation

OP-06 DEPLOYED · 2024

Password Strength Analyzer

Entropy-based password scorer cross-checked against known breach datasets, with actionable security recommendations for weak and compromised credentials.

pythonentropybreach-db

view full archive on github →

ACADEMY

05.

sudo apt install degrees

▲ INCOMING · SEP 2026

OST - Ostschweizer Fachhochschule

MSE in Information and Cyber Security

SEP 2026 - 2028 · RAPPERSWIL, SWITZERLAND

An 18-month, 3-semester master's focused on information and cyber security.

✓ COMPLETED · MAY 2026

University of Arizona

BAS in Cyber Operations · Minor in Computer Science

AUG 2022 - MAY 2026 · TUCSON, AZ

★ Dean's List ★ GPA 3.5/4.0

// RELEVANT COURSEWORK

Active Cyber DefenseCyber Threat IntelligenceForensicsCyber WarfareViolent PythonOperating Systems

CREDS

06.

openssl verify certs/

COMPTIA

CompTIA Security+

Industry-standard certification covering threat analysis, risk management, cryptography, identity management, and security operations fundamentals.

[✓] verified credential

INE SECURITY

eJPT - Junior Penetration Tester

Demonstrates hands-on penetration testing skills including network scanning, enumeration, exploitation, and web application security assessment.

verify credential →

INE

ICCA - INE Certified Cloud Associate

Validates foundational cloud security knowledge including cloud architecture, deployment models, and security best practices across major cloud platforms.

verify credential →

07. ./establish_connection --secure

Let's build something
worth breaking.

Open to SOC, penetration testing, and security engineering roles. If you need someone who can attack, defend, and automate, my inbox is open.

send_message() linkedin github

ashishdevchoudhary@gmail.com · +1 619 254 3235 · Tucson, AZ -> Switzerland 2026