rujuta.yu
available for work

Rujuta Yugaonkar

Cybersecurity Engineer

Offense-minded. Defense-built.

Five years in offensive security and detection engineering. Pen tests, honeypots, SIEM pipelines. Currently at ArcSec — the CVEs are a side effect.

[✓] OSCP·5y offense·3 CVEs
View workGet in touchResume ↗

Selected work

Sentinel

2024
Production

Lightweight SIEM pipeline that ingests, parses, and correlates logs from AWS CloudTrail, VPC Flow Logs, and syslog. Detects anomalies via rule-based and ML heuristics, with Slack/PagerDuty alerting.

PythonKafkaElasticsearchAWS

PhantomNet

2023
Open Source

SSH honeypot with full session capture, geolocation tagging, and credential-spray detection. Deployed across 12 decoy nodes; surfaces active threat actor TTPs in real time.

GoDockerPostgreSQLGrafana

VaultCLI

2023
Production

Zero-trust secrets manager for developer machines. AES-256-GCM encryption, biometric unlock via OS keychain, and audit log export for compliance. Used by 300+ engineers internally.

TypeScriptBunSQLiteFIDO2

Scope

2022
Open Source

Automated attack-surface enumeration tool. Chains subdomain discovery, port scanning, TLS fingerprinting, and CVE matching into a single declarative YAML pipeline.

PythonNmapDockerSQLite

Experience

2022 — Present

Senior Cybersecurity Engineer

ArcSec

Lead security engineer for a cloud-native SaaS platform. Own the threat model, red team operations, and incident response playbooks. Reduced MTTD from 4 hours to 18 minutes by rebuilding the detection pipeline.

Threat ModelingPythonAWSIncident Response

2020 — 2022

Penetration Tester

IronWall Security

Conducted network, web application, and cloud infrastructure pen tests for fintech and healthcare clients. Authored detailed findings reports and remediation roadmaps. OSCP-level engagements.

Burp SuiteMetasploitAWSOSCP

2019 — 2020

Security Analyst

Stratos

SOC analyst on a team monitoring 50M+ daily events. Built custom Sigma detection rules, triaged escalations, and automated tier-1 playbooks — cutting analyst toil by 40%.

SIEMSigmaPythonSplunk

Skills

Penetration Testing92
Python / Scripting90
Cloud Security (AWS)85
Threat Modeling88
SIEM & Detection Eng.82
Go75

Get in touch

Let's work together.

Open to security consulting, freelance engagements, and interesting full-time roles. Drop me a message or reach out directly.

rujutayugaonkar@gmail.com