Vardhan Githiki

Triage, investigate, and remediate threat intelligence-driven security events, correlating external intelligence with internal telemetry to identify and assess enterprise risk.
Partner with Security Operations, SOC, Incident Response, and Detection Engineering teams to
support intelligence-led investigations and improve response outcomes.
Conduct cyber threat intelligence activities across the full intelligence lifecycle including collection,analysis, validation, dissemination, and feedback while maintaining confidentiality across geographies.
Identify, evaluate, and onboard new intelligence sources (OSINT, vendor feeds, dark web, industry
reporting) and integrate them into monitoring and detection technologies.
Develop and curate high-confidence threat indicators (IOCs, TTPs, infrastructure) to enhance detection, alerting, and prevention capabilities.
Track and analyze current vulnerabilities, exploitation trends, malware campaigns, and threat actor
activity, maintaining situational awareness of emerging threats.

• Analyzed data from a variety of sources to identify potential targets, threats or opportunities.
• Identified and evaluated critical information from various sources, such as human intelligence, open-source intelligence, imagery intelligence, signals intelligence and geospatial intelligence.
• My core expertise lies in identifying and mapping tactics, techniques, and procedures (TTPs) to the MITRE ATT&CK framework, creating and refining threat detection rules, and conducting validation exercises to ensure our EDR (Endpoint Detection and Response) tools effectively detect and respond to simulated threat actor activities. I replicate adversary tactics to assess the robustness of detection mechanisms, identify gaps, and continuously improve the security posture.

• Practical sessions on tools and technologies, such as penetration testing, vulnerability scanning, and threat analysis.
• White Hat is a student-driven technology club focused on advancing cybersecurity knowledge and skills among its members. It creates a collaborative platform for students interested in ethical hacking, digital security, and cyber defense. Through a mix of workshops, hands-on labs, hackathons, and guest speaker sessions, members gain exposure to real-world cybersecurity practices. The club emphasizes ethical hacking techniques, secure coding, and network defense, preparing students for challenges in digital security.

• Engineered Cookie-Stealing Malware: Designed and developed a Python-based malware that effectively extracts browser cookies, providing insights into real-world data extraction and cookie hijacking techniques.
• Implemented Anti-Detection Mechanisms: Integrated methods to evade detection by popular antivirus (AV) software, enhancing the malware’s stealth capabilities and deepening knowledge of anti-forensic techniques.
• National Critical Information Infrastructure Protection Centre (NCIIPC) is an organization of the Government of India.

• Web Pentesting Docker applications.
• Developed Web Penetration testing applications vulnerabilities like RCE, jQuery, Cross-site Scripting.
• https://hub.docker.com/u/vardhangss