OPERATOR // PORTFOLIO // v2.0
SHOURYA SAI MACHA
Security-focused CIS student — SOC operations, incident response (NIST 800-61), GRC/compliance, vulnerability management, and cyber threat intelligence. CompTIA Security+ · Network+ certified. Graduating December 2026.
SKILLS MATRIX
CAPABILITIES // OPERATOR LOADOUT
PROFICIENCY_CHART // HOVER NODES TO INSPECT MODULE
MODULE_01 // SOC & INCIDENT RESPONSE
MODULE_02 // CYBER THREAT INTELLIGENCE
MODULE_03 // GRC & COMPLIANCE
MODULE_04 // VULNERABILITY MANAGEMENT
MODULE_05 // SIEM & DETECTION ENGINEERING
MODULE_06 // NETWORK & ENDPOINT SECURITY
MODULE_07 // IAM & ACCESS CONTROL
MODULE_08 // CLOUD & INFRASTRUCTURE
OPERATIONS LOG
DEPLOYED ASSETS // FIELD OPERATIONS
MITRE ATT&CK TTP MAPPER
Automated IOC extraction, indicator enrichment, and adversary TTP correlation across 1,200+ incident records. Managed full Sigma rule lifecycle — SPL/KQL export — for Splunk, Elastic, and Azure Sentinel.
IoT / OT ATTACK SURFACE SCANNER
OpenVAS-methodology authenticated/unauthenticated vulnerability scans aligned to MITRE ATT&CK for ICS. CVSS-scored findings. GPT-4o-powered interactive dashboard for remediation briefings.
EMAIL PHISHING DETECTION TOOL
Automated triage across 500+ .eml files — HTML payload deobfuscation, SPF/DKIM/DMARC forensics, VirusTotal enrichment. Mapped to MITRE ATT&CK T1566.
SECURE AUDIT LOGGING SYSTEM
Cryptographic chaining audit architecture across 50+ endpoints. Sigma correlation rules for Splunk/Elastic/Sentinel. Aligned to NIST SP 800-53 AU/SI, SOC 2, FISMA, FedRAMP.
COMP — CARE OPTIMIZATION & MEDICATION PROCESSING
AI governance R&D for healthcare compliance. Simulated pre-submission insurance medical reviewer — real-time compliance flags, patient-history rebuttals, approval-ready letters and appeal scripts.
SENIOR FACILITY ROOM OCCUPANCY SYSTEM
Enterprise RBAC and full IAM lifecycle for 200+ residents and 100+ rooms. REST APIs with sub-100ms latency on AWS RDS. OWASP A03 injection prevention.
EMPLOYMENT RECORD
ACTIVE DEPLOYMENT // FIELD ASSIGNMENT
UNIT: MD ANDERSON LIBRARY // UNIVERSITY OF HOUSTON
STUDENT IT ASSISTANT
LOG_01 // INCIDENT RESPONSE
Executed Detection & Analysis for 50+ daily security alerts across network, digital, and print systems (NIST 800-61) — classified incident severity, executed structured escalation workflows, performed triage, containment, and documented response actions.
LOG_02 // DOCUMENTATION & TRAINING
Authored 10+ SSP-adjacent security documents — IR playbooks, access control procedures, and remediation runbooks aligned to NIST SP 800-53 — adopted organization-wide. Delivered technical training materials for rotating IT staff cohorts.
LOG_03 // IDENTITY & ACCESS MANAGEMENT
Administered identity provisioning and user access reviews for 100+ accounts across JSTOR, ProQuest, EBSCOhost. Enforced RBAC and least-privilege policies. Maintained 10,000+ physical and digital records with zero data-handling incidents.
LOG_04 // VULNERABILITY & REMEDIATION
Diagnosed security weaknesses across network infrastructure and mission-critical systems. Applied firewall configuration adjustments, network segmentation corrections, and endpoint hardening. Maintained audit-ready POA&M-style remediation records.
CERTIFICATIONS
OPERATOR CLEARANCES // VERIFIED
OPEN CHANNEL
INITIATE CONTACT // TRANSMISSION READY
SHOURYA SAI MACHA // B.S. CIS // UNIVERSITY OF HOUSTON // DEC 2026