Open to opportunities

Ashani Fonseka

@ashanifonseka

DevSecOps engineer delivering security-first observability, automation, and performance optimization for resilient systems.

Sri Lanka

Message

What I'm looking for

I seek DevSecOps roles where I can integrate security into CI/CD, build observability and automation, improve reliability and performance, and grow within collaborative teams focused on proactive incident response.

I am a results-driven DevSecOps engineer with a Bachelor of Science (Hons) in Computer Science and a strong foundation in information security.

At SentryLabs I led a New Relic observability and APM POC and deployment, and developed a custom security dashboard using SentinelOne APIs and Streamlit to automate monthly MDR reporting, reducing manual reporting time and enabling exportable client reports.

I have hands-on experience monitoring and analyzing incidents with EDR/XDR/SIEM solutions, implementing observability stacks, developing Elasticsearch alerting rules for the National Cyber Security Operations Center, administering Windows AD, and optimizing Kubernetes workloads for availability and performance.

My background also includes red teaming, a published IEEE undergraduate research project on an RL-based Tabnabbing detector, and national-level recognition for an optics simulator project; I bring a practical, security-first ethos and a focus on automation, reliability, and measurable operational improvement.

Experience

Work history, roles, and key accomplishments

Current

DevSecOps Engineer

Current

SentryLabs Pvt Ltd

Aug 2024 - Present (1 year)

Delivered a New Relic observability and APM POC and deployment to improve monitoring and performance. Developed a custom SentinelOne-based security dashboard and Elasticsearch alerting rules for Sri Lanka's NCSOC while optimizing Kubernetes workloads and administering Windows Active Directory.

New Relic SentinelOne Elasticsearch Kubernetes Python Observability Alerting Docker

Associate Information Security Analyst

SentryLabs Pvt Ltd

Jan 2024 - Jul 2024 (6 months)

Monitored and analyzed security incidents using SentinelOne, Elasticsearch and FortiSIEM, producing detailed threat analysis reports and contributing to timely incident resolution. Implemented EDR/XDR, SIEM and observability tools and created dashboards and alerting rules to improve situational awareness across cloud and on-prem environments.

SentinelOne Elasticsearch Wazuh New Relic SIEM Incident Response

Intern Cybersecurity Analyst

SECNORA

Mar 2023 - Aug 2023 (5 months)

Conducted red teaming activities and vulnerability assessments, developed a comprehensive Red Team playbook, and created FUD payloads for penetration testing and security research. Reported findings to improve defensive measures and standardize TTPs.

Red Team Penetration Testing Vulnerability Assessment Playbook Development Threat Modeling Reporting

Education

Degrees, certifications, and relevant coursework

Uva Wellassa University of Sri Lanka

Bachelor of Science (Hons), Computer Science and Technology

2019 - 2023

Grade: Second Class Upper Division

Activities and societies: Undergraduate research published in IEEE (ICITR 2023); project 'Optics Simulator with Mini LMS' — NBQSA 2022 Merit Award.

Completed a Bachelor of Science (Hons) in Computer Science and Technology, graduating with Second Class Upper Division in 2023; conducted undergraduate research on RL-based detection of tabnabbing published at ICITR 2023.