I'm a passionate Security Engineer with expertise in cloud security, penetration testing, and DevSecOps.
Currently working at FLORIM USA, I specialize in automating security processes and implementing robust cybersecurity frameworks.
My journey in cybersecurity began with a fascination for ethical hacking and has evolved into a comprehensive understanding of
enterprise security, threat intelligence, and secure software development.
I believe in continuous learning and staying ahead of emerging threats through hands-on experience
and cutting-edge security practices.
Work Experience
Security Engineer | FLORIM USA
July 2024 - Present
Automated vulnerability management with Varonis and Hadrium
Performed VAPT and remediated FortiClient EMS vulnerabilities
Configured FortiGate firewalls, VPNs, and IAM policies
Managed devices with Intune, AD automation with Adaxes
Implemented threat intelligence and compliance with Libraesva and Veema
Developed MSS with MITRE ATT&CK, enhancing incident detection by 25%
Teaching Assistant | University of Maryland
August 2023 - December 2023
Graded tests for 75+ students on reverse engineering and exploits
Mentored students in cybersecurity concepts and practical applications
Cybersecurity Analyst | DigiSec360
July 2021 - January 2022
Led VAPT, reducing incidents by 30%
Improved data protection by 25%
Conducted security audits across web, mobile, cloud, and network platforms
Enhanced incident response with blue teams and optimized mitigation strategies
Projects
Terraform Projects – Infrastructure as Code (IaC)
January 2024 - Present
Deployed AWS serverless applications (Lambda, API Gateway, S3) and multi-tier architecture (EC2, RDS, ELB)
Integrated AWS CodePipeline, CodeBuild, CodeDeploy for automated CI/CD
Utilized Jenkins for CI/CD application development
Secure Coding – DevSecOps Application Build
August 2023 - December 2023
Developed secure budget tracking app with ASP.NET and C#
Led SDLC integration, secure code reviews, and security audits
Cloud Security – Cloud Migration [Project Leader]
October 2022 - December 2022
Led AWS migration plan for enterprise app
Implemented NIST/ISO 27001 security controls
Configured IAM, security groups, NACLs, and firewall rules
Implemented encryption, MFA, network segmentation, and continuous security monitoring
Personal Projects: Security Tools
August 2020 - May 2022
Developed tools for network scanning, packet sniffing, file interception
Created ARP spoofing and DNS spoofing utilities
Built custom penetration testing frameworks
Technical Skills
Security Tools & Technologies
Varonis
FortiGate
AWS Security
Penetration Testing
Terraform
IAM & Access Control
Programming & Scripting
Python
Java
JavaScript
Bash Scripting
C#
HTML/CSS
Security Frameworks
MITRE ATT&CK
OWASP Top 10
NIST Framework
ISO 27001
Certifications & Achievements
AWS Certified Security - Specialty
Advanced cloud security knowledge and best practices
CompTIA Security+
Foundation of cybersecurity concepts and practices
Certified Ethical Hacker (CEH)
Ethical hacking and penetration testing methodologies
Academic Excellence
Dean's List - University of Maryland (2022-2024)
Security Achievements
25% improvement in incident detection, 30% reduction in security incidents
Education
University of Maryland
Master of Engineering in Cybersecurity
College Park, Maryland, USA August 2022 - May 2024
Key Courses:
Cloud Security & Architecture
Information Assurance & Risk Management
Network Security & Cryptography
Digital Forensics & Incident Response
Penetration Testing & Ethical Hacking
Secure Software Engineering
University of Mumbai
Bachelor of Engineering in Computer Engineering
Mumbai, India August 2018 - June 2022
Get In Touch
soham.pawaskar@email.com
linkedin.com/in/soham-pawaskar
github.com/soham-pawaskar
Maryland, USA
Let's Connect!
I'm always interested in discussing cybersecurity, new technologies, and potential collaborations.
Whether you have a project in mind or just want to chat about security, feel free to reach out!