Ernst & Young
Cybersecurity Intern (Incident Response)
May - August 2024
I was deeply involved in two international ransomware investigations, where I applied advanced forensic tools such as Axiom Magnet and X-Ways to track the movements of the attackers and reconstruct their activities. By analyzing bash scripts, metadata, and files, I helped piece together the incident timeline, producing executive-ready reports that informed the strategy for mitigating future risks.
A significant part of my role involved investigating sensitive PII from leaked documents. Working closely with cross-functional teams, I crafted SQL queries to trace the movement of data across networks, identifying vulnerabilities and critical exposure points. Based on my findings, we implemented data protection and encryption strategies that substantially reduced data loss risks.
I also created and demonstrated Rubber Ducky payloads to simulate complex cyber-attacks, including remote access and keystroke reflection. These demonstrations were part of a broader cybersecurity awareness initiative aimed at educating employees about the risks associated with physical security breaches, especially USB-based automation attacks. The hands-on experience helped reinforce the importance of preventive measures and strengthening incident response protocols.
Ernst & Young
Cybersecurity Consulting Intern
May - August 2023
One of the key projects I worked on involved developing a Python-based Nmap compiler to automate the processing of Nmap scan results. Using Pandas and Scapy, I helped filter and categorize open ports, services, and protocols, providing clearer and more actionable insights for our cybersecurity teams. This tool made the process of identifying vulnerabilities across networks more efficient and precise.
I also participated in weekly client meetings, providing updates on vulnerability findings and helping clients understand the risks identified during Nmap scans. To make these insights more accessible, I used Alteryx to automate data processing and then created Power BI visualizations that highlighted critical security issues, such as high-risk ports and protocols.
In addition to client-facing tasks, I contributed to enhancing the security resilience of our clients' networks by assisting in the deployment of data protection solutions across multiple environments, strengthening the overall cybersecurity posture of their systems.
Teaching Assistant
Accelerated Programming in Python
USC Viterbi School of Engineering
In my role as a Teaching Assistant, I supported over 150 students in mastering the fundamentals of data structures and algorithms. I was responsible for grading exams and assignments, holding office hours, and providing one-on-one guidance to students who needed extra help. My focus was on helping students strengthen their understanding of programming concepts and solving coding challenges efficiently.
