JASMY ELZHA MATHEW

McLean, VA | jasmyelzhamathew@gmail.com | +1 (571) 337-7721 | GitHub/Jasmy-Elzha-Mathew-1715 | LinkedIn/jasmy-elzha-mathew/

EDUCATION
The George Washington University, School of Engineering & Applied Science Washington, DC
Master of Science in Cybersecurity in Computer Science, GPA: 3.84 May 2024
Relevant Coursework: Network Security, E-Commerce Security, UNIX, Management of Information Security, Cloud Computing
Saintgits College of Engineering Kerala, India
Bachelor of Technology - Computer Science and Engineering, GPA: 3.78 July 2021
Relevant Coursework: Data Structures, Linux Operating Systems, Distributed Systems, System Software, Computer Networks
TECHNICAL SKILLS
Skills: C, C++, Python, JavaScript, Java, C#, R, Julia, Ruby, PHP, TensorFlow, Keras, Django, Flask, Node.js, Bootstrap, Flutter, React.js,
Selenium, WordPress, Linux (Ubuntu, CentOS, Kali Linux, Amazon Elastic Compute Cloud), Unix, Adobe CS, Microsoft Office Suite,
JIRA, TryHackMe, Hack The Box, OWASP, MongoDB, Bash, Git, HTML/CSS, PowerShell, MySQL, .NET, ISP, TCP/IP, NLTK, NumPy,
Pandas, Jupyter, Kubernetes, MATLAB, Power BI, SDLC (Agile, Waterfall), Cloud (OAC/OAS/FAW), AWS(EC2, RDS, EBS, VPC, AMI)
RELEVANT WORK EXPERIENCE
NASCO Insurance Group (Tata Consultancy Services) Atlanta (Remote)
Assistant Systems Engineer August 2021 - August 2022
• Conducted security assessments, design reviews, and penetration testing on production software and networks using tools
such as Wireshark, tcpdump, and Nagios.
• Led full-cycle security engagements, including vulnerability discovery, exploitation, risk analysis, and remediation planning
using tools like Burp Suite, Nessus, and Metasploit.
• Developed testing campaigns and abuse scenarios to advocate for secure practices, utilizing AWS and Docker to simulate
various environments.
• Created security solutions for testing, monitoring, remediation, and automation with Python and Bash scripting, integrating
with Jenkins for CI/CD automation.
• Collaborated with development teams to create advanced security tools using Kubernetes and Terraform.
• Delivered high-quality, impactful security audits with strong technical expertise and communication skills.
Industrus Tech Remote
Junior Security Engineer May 2018 - June 2021
• Utilized scripting languages such as Python, Ruby, and Bash to automate security tasks, creating custom scripts for security
monitoring and data analysis.
• Implemented secure coding practices and identified vulnerabilities using SAST (SonarQube) and DAST (OWASP ZAP).
• Built strong relationships with cross-functional teams to enhance security practices, facilitating the integration of security tools
like Nagios and tcpdump into the development pipeline.
• Applied project management and process improvement skills to security operations, using JIRA for project tracking and
management.
• Utilized Docker and Kubernetes for containerization and orchestration to enhance security testing environments.
• Conducted network simulation and packet analysis with Wireshark and tcpdump to ensure network security.
• Integrated security monitoring solutions with Splunk and Nagios to ensure continuous security visibility and alerting.
ACADEMIC PROJECTS
Secure Web Application Development and Penetration Testing September 2023 – December 2023
• Implemented secure coding practices to prevent common vulnerabilities such as SQL injection, cross-site scripting (XSS), and
cross-site request forgery (CSRF).
• Developed threat models to understand and mitigate potential security risks.
• Used SQLMap for automated SQL injection detection and remediation.
Cloud Infrastructure Security and Compliance September 2023 – December 2023
• Utilized Terraform to define and deploy cloud infrastructure, ensuring reproducibility and version control.
• Configured and secured Kubernetes clusters to manage containerized applications.
• Implemented monitoring and logging solutions using Splunk to detect and respond to security incidents.
• Developed Python scripts to automate security tasks, such as log analysis and incident response.
ACHIEVEMENTS
• SEAS Dean's Award Scholar and Women in Cybersecurity (WiCyS) Scholar 2023
• NSA Code Breaker: Top 50 performers (CTF write-ups posted on GitHub)
CERTIFICATIONS
• GIAC Information Security Fundamentals
• AWS Cloud Architecting