root@security:~$ whoami

Nitin Beniwal

> Cloud Security Engineer _

Cybersecurity & cloud security professional with 2.5+ years of experience across offensive security, cloud architecture, IT infrastructure, and security engineering. Elite competitive rankings — TryHackMe Top 1% (7M+ users), HTB CTF Rank 61/20,000+, Security Blue Team Rank 35/40,000+. Building AI-augmented security tooling and hardening cloud environments from the ground up.

Get In Touch 📁 View Work
Nitin Beniwal
Available for hire
Scroll Down
<about>

About Me

I'm a Cybersecurity & Cloud Security Professional with 2.5+ years of hands-on experience spanning offensive security, cloud architecture, IT infrastructure, and security engineering. I hold a BCA Hons. in Cyber Security from Lovely Professional University (CompTIA Integrated Program, CGPA: 7.6).

I have a proven track record of delivering measurable business outcomes — cutting incident resolution times, automating security workflows with Python and LLMs, and hardening cloud environments from the ground up. I've taught 1,000+ students, delivered freelance vulnerability assessments for international clients, and built AI-augmented security tooling used in production.

1% TryHackMe (Top)
61 HTB CTF Rank
35 Blue Team Labs Rank
1K+ Students Taught
5+ Certifications

// Certifications

  • 🛡️ CompTIA Security+ (SY0-701)
  • 🌐 CompTIA Network+
  • 🔒 ISO 27001:2022 Associate
  • 🔐 Certified Network Security Practitioner (CNSP)
  • 🐧 Red Hat Certified System Administrator II (RH134)
</about>
<skills>

Technical Arsenal

🔐

Security Operations

  • SIEM (Splunk, QRadar)
  • Incident Response
  • Threat Detection
  • IDS/IPS · XDR/MDR · DLP
  • Zero Trust Architecture
  • Email Security
  • Phishing Simulation
  • MITRE ATT&CK
☁️

Cloud & Infrastructure

  • AWS (IAM, CloudTrail, Lambda)
  • AWS (EC2, S3, VPC, WAF)
  • AWS GuardDuty & Config
  • Azure Entra ID & Defender
  • Azure O365 Security
  • Docker · VMware
  • Linux (RHEL) · Windows Server
  • Firewalls · VPNs
⚔️

Penetration Testing

  • Vulnerability Assessment
  • Nmap · Nessus · OpenVAS
  • Burp Suite · Metasploit
  • OWASP Top 10
  • CVSS Scoring & Reporting
🔬

Forensics & Analysis

  • Digital Forensics
  • FTK Imager · Autopsy
  • Ghidra
  • Wireshark
  • Log Analysis
🤖

AI / LLM Security

  • LLM-Assisted Threat Detection
  • Python + OpenAI/Claude API
  • GenAI Security Tooling
  • Prompt Injection Defences
  • GPU Cluster Deployment
💻

Development

  • Python · Bash · PowerShell
  • JavaScript · PHP · SQL
  • Next.js · React · Laravel
  • Microsoft Intune
  • Microsoft Defender XDR
📋

Compliance & Frameworks

  • ISO 27001/27002
  • NIST CSF · NIST SP 800-61
  • GDPR · HIPAA
  • OWASP · CIS Benchmarks
  • Risk Management
</skills>
<experience>

Work History

Apr 2026 – Present Luhari Warehouse, Gurugram

IT System Engineer

PUMA Group

Microsoft Intune Defender XDR JIRA SAP PowerShell
  • Cut average IT incident resolution time by 40% by building a structured JIRA triage workflow for 30+ weekly tickets, directly reducing warehouse downtime during peak logistics cycles
  • Eliminated unauthorised device access risk across 100+ endpoints by deploying Microsoft Intune compliance policies — zero policy violations recorded in first audit cycle
  • Automated repetitive endpoint compliance reporting using PowerShell scripts, saving 5+ hours of manual effort weekly and enabling the team to focus on higher-priority security work
  • Restored network connectivity (DNS/LAN/WAN) during night-shift critical windows, maintaining 99%+ uptime for warehouse management systems and preventing estimated ₹2L+ in operational loss per incident
  • Achieved zero asset discrepancy in quarterly audits by implementing a structured IT asset tracking system — replacing ad-hoc spreadsheets with a real-time inventory process
Jan 2025 – May 2025 Remote · New Delhi, India

Cybersecurity Instructor

Placewit (Ed-Tech Startup)

CompTIA Security+ Network+ Digital Forensics Python CTF
  • Designed and delivered a structured cybersecurity curriculum covering CompTIA Security+, Network+, and Digital Forensics — contributing to placement outcomes for students in top tech companies
  • Reduced student drop-off by introducing concept-first, hands-on lab sessions replacing lecture-heavy formats, resulting in measurably stronger student engagement and completion rates
  • Built and shared automated CTF walkthrough tooling in Python, cutting the time students needed to set up lab environments from hours to minutes and accelerating practical learning
  • Grew and moderated a cybersecurity learning community of 200+ students on WhatsApp and 800+ on Telegram — providing doubt resolution, resource curation, and real-time mentorship at scale
  • Guided students through competitive events (TCS HackQuest, Advent of Cyber, HTB CTF Tryout, Blue Team Labs Online), with multiple students achieving top-percentile rankings for the first time
Jun 2024 – Jan 2025 Remote

Cloud Security & Infrastructure Engineer

Brixfly Services (Startup)

AWS IAM CloudTrail GuardDuty Lambda WAF Claude API
  • Reduced cloud infrastructure attack surface by 70% by redesigning IAM from scratch — implementing least-privilege roles, permission boundaries, and service control policies across four live products
  • Achieved full cloud audit coverage (previously zero) by deploying AWS CloudTrail + CloudWatch; automated anomaly alerting cut mean-time-to-detect suspicious access events from days to under 2 hours
  • Eliminated public S3 exposure across all products by enforcing bucket policies, encryption, versioning, and ACLs — resolving a critical misconfiguration that had left customer data at risk
  • Built Lambda-based security automation that auto-remediated misconfigured resources on detection, removing the need for manual remediation rounds and saving ~8 hours of engineering time per week
  • Deployed AWS GuardDuty and AWS Config for continuous compliance monitoring, establishing the startup's first formal security baseline ahead of investor due diligence
  • Integrated an LLM-powered log analysis pipeline (Python + Claude API) that summarised CloudTrail events in plain English, cutting security review time by 60% and making findings accessible to non-technical founders
  • Configured WAF rules and OWASP Top 10 protections across all web-facing services, blocking an average of 500+ malicious requests per day post-deployment
Jan 2024 – Present Remote · International Clients

Freelance Cybersecurity Consultant

Independent

Nessus Burp Suite OpenVAS Docker AI Integration
  • Delivered end-to-end vulnerability assessments for international clients using Nessus, Nmap, Burp Suite, and OpenVAS — CVSS-scored reports with remediation roadmaps enabled clients to close critical findings 3x faster than previous manual processes
  • Identified and documented OWASP Top 10 vulnerabilities (SQLi, XSS, misconfigurations) in client web platforms with working proof-of-concept exploits, directly preventing potential data breach exposure
  • Built a Python + LLM automation that ingested raw vulnerability scanner output and generated executive-ready risk reports in minutes — replacing a 4-hour manual reporting process
  • Set up complete business IT infrastructure for drjointguard.com — server configuration, SSL, SPF/DKIM/DMARC email security, firewall rules, and secure hosting — enabling a zero-downtime business launch
  • Deployed StyleSync AI platform on a custom rented GPU cluster; implemented Docker containerisation, API key management, rate limiting, and prompt injection defences across Google Gemini and DALL-E 3 integrations
  • Developed and launched multiple local business websites with security-first architecture — HTTPS enforcement, input validation, secure authentication — all delivered within agreed timelines as sole developer
Sep 2023 – Jun 2024 Hisar, Haryana

IT Infrastructure & Security Consultant

OURS Academy

Network Design VLANs Firewall CIS Benchmarks
  • Built the campus IT infrastructure from zero — network design, server installation, workstation deployment, and internet provisioning — enabling full digital operations for the first time
  • Reduced unauthorised network access to zero by defining and enforcing firewall rules across the perimeter firewall and all host-based systems, implementing allowlist-only policies
  • Segmented network traffic using VLANs (student / staff / admin), eliminating lateral movement risk and improving network performance by reducing broadcast traffic by ~50%
  • Hardened all endpoints against CIS Benchmarks — account policies, audit logging, USB restrictions, and patch management — cutting the institution's vulnerability exposure significantly
  • Delivered a full Institutional Inventory Management System as sole developer, replacing manual spreadsheet tracking and saving staff 10+ hours per week in asset management overhead
May 2023 – Sep 2023 Hisar, Haryana

IT Instructor

Paryatan Foundation

Linux Networking C Programming Cybersecurity
  • Delivered Linux, networking, C programming, and cybersecurity fundamentals to 30+ learners through structured classroom sessions and hands-on labs
  • Designed lab exercises covering phishing awareness, cyber hygiene, and safe internet usage — improving measurable security awareness scores in end-of-program assessments

// Education

🎓

BCA Hons. – Cyber Security

CompTIA Integrated Program · CGPA: 7.6

Lovely Professional University, Jalandhar, India Aug 2022 – May 2025
</experience>
<projects>

Projects & Simulations

In Development

wishlist.shop

Full-Stack Price Tracking Platform

Next.js 14 Laravel 12 MySQL PWA OWASP
  • Supports Amazon, Flipkart, Myntra with automated price alerts and 90-day history charts
  • PWA support with OWASP-aligned secure API design throughout the stack
Live

nitinbeniwal.in

Cybersecurity Portfolio

Next.js OWASP AI / LLM Secure Coding
  • Interactive portfolio with live security tools suite and AI-powered CV tailoring engine
  • Demonstrates applied OWASP practices, secure coding, and full-stack development
Delivered

RecruiterRadar

AI-Powered Job Tracking Platform

Gmail OAuth Python AI/ML Naukri.com
  • Gmail OAuth integration auto-identifies recruiter names and companies by analysing Naukri.com's masked email structure
  • Eliminated 100% of manual job-application tracking overhead for users
Forage · Completed

Deloitte GRC Simulation

Virtual Security Analyst Program

ISO 27001 NIST CSF NIST SP 800-61 GRC
  • End-to-end risk assessments mapped to ISO 27001 and NIST CSF; produced gap analysis reports with remediation roadmaps across 20+ enterprise security controls
  • Authored incident response playbooks following NIST SP 800-61 framework
Forage · Completed

AIG Shields Up

Cybersecurity Risk Analyst

MITRE ATT&CK CISA Python Threat Modelling
  • Analysed CISA ransomware advisories and mapped threat actor TTPs to the MITRE ATT&CK framework
  • Built a Python-based ethical decryption proof-of-concept to support threat modelling activities
Forage · Completed

Mastercard Security Simulation

Security Awareness Analyst

Phishing Simulation Social Engineering Security Awareness
  • Identified phishing patterns and social engineering risks across business units
  • Designed phishing simulation scenarios and revised security awareness training procedures
</projects>
<contact>

Get In Touch

Ready to collaborate on securing your digital infrastructure? Let's connect and discuss how I can help strengthen your security posture.

📧 nitiinbeniwal@gmail.com 💼 LinkedIn 🎯 TryHackMe 🌐 nitinbeniwal.in
</contact>