About Me

Hello! I’m Nikhil Thatikonda, a detail-oriented cybersecurity professional from Hyderabad with a strong foundation in network security, incident response, and vulnerability assessments. I have hands-on experience in implementing security policies, leveraging NIST frameworks, and using SIEM and IDS tools.

Tech Skills (Existing + Planning to Learn)

Existing:

• Programming: Python, SQL, Bash scripting
• Networking basics: TCP/IP, CLI, Linux
• Security: Security Audits, Vulnerability Assessments, Security Hardening
• Tools: SIEM, Packet Analyzer, IDS
• Frameworks: NIST Cybersecurity Framework (CSF)

Planning to Learn:

• AWS and cloud security services
• Automation tools (Terraform, Ansible)
• Advanced cybersecurity tools and techniques

Projects I Worked On

• Port Scanner: I developed a Python-based port scanner to identify open ports on target systems. To enhance performance, I integrated threading, allowing the scanner to check multiple ports simultaneously. This project not only improved my Python skills but also deepened my understanding of how attackers scan networks for vulnerabilities. I documented my findings to support vulnerability assessments and secure network configurations.

• Basic Ransomware Simulator: I created a Python script that simulates ransomware behavior by encrypting files within a controlled environment. I also implemented decryption and backup mechanisms to simulate an organization’s response to a ransomware attack. This project helped me explore incident response strategies, endpoint protection measures, and the practical risks posed by ransomware in the real world.

• Network Traffic Analysis: I captured and analyzed network packets using Wireshark to identify anomalies and potential threats. By analyzing packet-level data, I was able to pinpoint suspicious activities and recommend security measures to improve network security. This project strengthened my ability to work with packet analyzers and understand network-based attack vectors.

• Web Application Firewall (WAF) Setup: Currently, I am working on a project to deploy a Web Application Firewall (WAF) to protect web applications against OWASP Top 10 vulnerabilities. This involves:

• Configuring the WAF rules and integrating it with the web server.

• Testing its ability to detect and block malicious requests like SQL injection and XSS.

• Fine-tuning WAF configurations to ensure minimal false positives while maintaining strong security.

Certifications

• Introduction to Databases (CCBP Intensive)
• Google Cybersecurity Professional Certification (Foundations of Cybersecurity, Assets, Threats, and Vulnerabilities, Tools of the Trade: Linux and SQL, Play It Safe: Manage Security Risks, Sound the Alarm: Detection and Response, Connect and Protect: Networks and Network Security)

Aspirations

I aspire to become a Cloud Security Engineer who bridges the gap between infrastructure and security, ensuring robust and secure cloud environments.