Lokesh User

I’m a cybersecurity postgraduate certified through the Google Cybersecurity Professional Certificate, built on a 9-course foundation covering security fundamentals, networks & security, assets/threats/vulnerabilities, and detection & response. I bring hands-on confidence across VAPT, web app security testing, and incident-response-style workflows.

In my cybersecurity & applied security experience (2024–2026), I performed VAPT and web app security testing using Nmap, Burp Suite, Nikto, and Metasploit, identifying issues aligned with OWASP Top 10. I also worked with SIEM concepts—log analysis, incident detection, and network/packet inspection using Wireshark alongside IDS/IPS-style tooling.

I strengthen my security practice with audit and risk discipline, conducting IT auditing & risk assessments using NIST, ISO 27001, and COBIT. I apply cryptography concepts (hashing, encryption, and key management) and use Linux, SQL, and Python for automation, scripting, and security data analysis.

My projects reflect how I like to build and validate defenses: I created an AI-driven adaptive IDS/IPS system using Random Forest, Isolation Forest, and LSTM, integrated with Wazuh SIEM and Suricata IDS, with MITRE ATT&CK mapping and Docker-based deployment for intelligent block/alert/escalate actions. I’ve also completed VAPT on Metasploitable 2, built security-adjacent analytics with MongoDB + Streamlit, and presented research at an international conference (Springer 2025) on data-driven decision systems.