Hello, I'm

Anshul Dhull

Cybersecurity Engineer & SOC Analyst

I specialize in threat modeling, penetration testing, and security automation. Currently analyzing threats at University of Maryland while pursuing my Master's in Cybersecurity.

Get In Touch View Projects
Python OWASP ZAP Burp Suite AWS Security Terraform SIEM
anshul@security:~

$ whoami

Anshul Dhull - Security Engineer

$ cat certifications.txt

PNPT | CompTIA Security+ | AWS Security Specialty

$ echo "Type 'help' for commands"

Type 'help' for available commands

$

01. Experience

SOC Analyst

Sept 2023 – Present

University of Maryland • College Park, MD

  • Conduct real-time threat monitoring and incident triage using surveillance systems and security tools, escalating high-severity alerts to law enforcement
  • Active practitioner in offensive research and hands-on skill building (CTFs, bug-bounties, GitHub projects); leveraged public tooling (Burp, Metasploit, ZAP)
  • Delivered reproducible writeups to accelerate cross-team knowledge sharing
SIEM Incident Response CTF

Cyber Security Intern

June 2023 – Aug 2023

Solar Energy Industries Association (SEIA) • Washington, D.C.

  • Developed and implemented threat modeling frameworks for over 20 critical solar energy systems, enhancing system resilience and reducing potential attack vectors by 30%
  • Executed comprehensive security assessments of solar inverter systems, evaluating firmware, network interfaces, and control protocols against industry standards (IEEE 1547.3)
  • Drove remediation of non-compliant issues to achieve full regulatory adherence
Threat Modeling ICS Security Compliance

Security Engineer

Sept 2020 – Aug 2022

IBM • Bangalore, India

  • Designed and implemented threat models for over 20 complex cloud-native systems, utilizing STRIDE and DREAD frameworks to proactively identify potential attack vectors
  • Performed secure code reviews in Python, JavaScript, and C++, identifying and remediating 150+ critical issues through SAST/DAST analysis
  • Developed security automation scripts in Python to streamline vulnerability triage, cutting manual review time by 35%
  • Conducted adversarial security assessments and penetration testing using Burp Suite, OWASP ZAP, and Nmap
  • Delivered security training to development teams, improving vulnerability remediation efficiency by 40%
Penetration Testing SAST/DAST Python Cloud Security

02. Projects

☁️

Web Application Migration on AWS

Spearheaded web application development and migration to AWS public cloud, conducting in-depth analysis and independently assessing cloud deployment suitability. Integrated GitHub Actions CI/CD pipelines with Terraform security automation.

  • Performed incident response after successful deployment
  • Ensured NIST 800-53 and CIS benchmark compliance
  • Reduced misconfigurations by 35%
AWS Terraform GitHub Actions NIST 800-53
🎓

Secure Smart University System

Led a team of 4 in designing and implementing a smart university system application using secure SDLC and Agile methodologies in Python. Delivered security awareness training to development teams on secure coding practices.

  • Implemented secure SDLC practices
  • Boosted remediation efficiency
  • Reduced repeat security flaws by 20%
Python Secure SDLC Agile
+

More projects coming soon...

03. Blog

Thoughts on security, development, and everything in between.

Coming Soon 5 min read

Getting Started with Threat Modeling

A practical guide to implementing STRIDE and DREAD frameworks in your security workflow...

Read More
Coming Soon 8 min read

Automating Security with Python

How I built automation scripts that reduced vulnerability triage time by 35%...

Read More
View All Posts

04. Get In Touch

I'm currently open to new opportunities and always interested in connecting with fellow security professionals. Whether you have a question, want to collaborate, or just want to say hi — my inbox is always open!

📧 anshuldhull1997@gmail.com 💼 LinkedIn 🐙 GitHub