security professional

Srikar Paida

Cybersecurity Engineer | Active CTF Player

> hello there!

Greetings, individuals. I am Srikar Paida, a curious individual in the domain of cybersecurity, always asking questions, always solving CTF challenges, always trying to understand everything I can. Forever learning, building, breaking, building again, having no idea what I'm doing (like everyone else). I love binary exploitation, reverse engineering, and forensics.

> experience

Lead Cybersecurity Engineer

Resilience Inc.

Dec 2025 - Present

▹Lead the cybersecurity engineering team, driving vulnerability management programs, coordinating cross-functional remediation, and mentoring junior engineers.
▹Oversee penetration testing engagements and security posture improvements across the organization.

Cybersecurity Engineer

Resilience Inc.

July 2025 - Nov 2025

▹Executed vulnerability scanning and web application penetration testing using Nessus, OWASP ZAP, and manual techniques to identify flaws such as injection issues, misconfigurations, and insecure authentication, and worked with engineering teams to validate and remediate findings.
▹Produced detailed vulnerability reports outlining severity, business impact, and remediation timelines, and collaborated with stakeholders to track and verify patching and risk reduction.

LLM Security Researcher

Handshake LLC, MOVE Program

Sep 2025 - Nov 2025

▹Trained and fine-tuned large language models on graduate-level, reasoning-intensive cybersecurity problems.
▹Evaluated model reasoning quality and iterated on training approaches, including CTF-style problem solving, contributing to the advancement of AI-assisted security tooling.

Graduate Teaching Assistant

University of Maryland, College Park

Jan 2025 - May 2025

▹Mentored and instructed undergraduate students in core cybersecurity concepts, along with detailed working knowledge of cybersecurity frameworks such as HIPAA, CCPA, CPRA and GDPR, addressing questions and organizing in-class hands-on activities.
▹Refined course content by facilitating discussions and collaborating with the professor, ensuring coverage of critical topics and effective application of theoretical concepts to real-world scenarios.

Software Engineer

Integral Ad Science

Apr 2022 - Jul 2023

▹Resolved critical codebase vulnerabilities identified through Cybeats SCA/SBOM platform and SonarQube, contributing to the organization’s vulnerability management and secure development lifecycle.
▹Achieved a 6% faster response in resolving priority incidents by serving as the SME for API macro mapping.
▹Enhanced team productivity and reduced new hire integration time by developing standardized, secure onboarding documentation that streamlined onboarding processes for the entire organization
▹Improved the client-facing dashboard performance by implementing Agile methodology and enhancing the UI and backend features of the prime application of the organization resulting in 3% increase in customer satisfaction.
▹Modernized the client-facing dashboard application by migrating the UI tech stack from AngularJS to ReactJS, resulting in improved performance and maintainability.

Cybersecurity Analyst

Capgemini

Aug 2021 - Mar 2022

▹Managed end-to-end deployment process for a mission-critical energy management system by coordinating with cross-functional teams and resources to ensure successful production releases every time.
▹Conducted comprehensive vulnerability assessments and security checks on production systems, documenting findings with risk ratings and remediation recommendations.
▹Delivered detailed vulnerability reports to stakeholders on a regular basis, enabling risk-informed prioritization of security improvements and ensuring proactive issue resolution.

Security Researcher

IIIT Allahabad

May 2019 - Jul 2019

▹Performed comprehensive research on Public Key Encryption in Cryptography, focusing on developing more efficient algorithms.
▹Contributed to the field of cryptography by authoring and publishing a research paper, and presenting findings at the IEEE CICT-2019 conference, leading to broader dissemination and recognition of improved cryptographic methods.

> projects

Windows-based Command-and-Control Framework

A C2 framework with a FastAPI server with HTTP channels and a lightweight C agent targeting Windows machines for modular command execution and exfiltration of information.

PythonCWindowsFastAPI

StructIQ - AI Construction Tracker

Built a VLM-powered video analysis system (FastAPI + React + Three.js + OpenCV + Claude Vision) for construction site monitoring; designed per-frame structured JSON VLM inference and mul-metric smart frame selection pipeline.

PythonFastAPIReactThree.jsOpenCVClaude Vision

Web Server in Assembly

A mini HTTP web server written entirely in x64 Assembly language that handles GET and POST requests.

x64 AssemblyLinuxSockets

Penetration Testing Enterprise Systems

Identified and documented critical vulnerabilities by executing black-box penetration testing on Windows and Linux systems, producing comprehensive technical and executive-level reports that enabled stakeholders to understand and mitigate key security risks.

Kali LinuxMetasploitNmapOther Pentesting tools

> skills

Security Tools

MetasploitBurp SuiteWiresharkNmapOWASP ZAP

Reverse Engineering Tools

GDBGhidraIDA FreeBinary Ninjax64 Assembly

Programming

PythonBashCAssemblyJavaSQL

Platforms & Tools

LinuxWindowsDockerLXC/LXDGitJiraConfluence

> certifications & achievements

Certifications

SANS GFACT2026

GIAC Foundational Cybersecurity Technologies

Security+2024

CompTIA Security+

eJPT2024

eLearn Junior Penetration Tester

GSEC*2026

GIAC Security Essentials (pursuing)

GCIH*2026

GIAC Certified Incident Handler (pursuing)

CTFs

Regular participant in Capture The Flag (CTF) competitions, focusing on diverse topics like binary exploitation, reverse engineering, forensics, OSINT and web challenges.

UMD Startup Shell x IronsiteTop 10

StructIQ - VLM-powered construction site monitoring system

BSides NoVA 2025 CTF2nd place

Team: RandomHackers2

Amazon x WiCyS CTF 20257th place

SANS x WiCyS CTF 2025Top 10

WiCyS x SANS Scholarship 2025Recipient

Awarded to the top 65 cybersecurity professionals globally, recognizing outstanding performance in the SANS x WiCyS CTF and commitment

> get in touch

I'm always open to discussing security projects, collaboration opportunities, or potential roles. Feel free to reach out.

Send Message