Parrot-inspired loader study Cyber Screenshot Boot

Cyber Screenshot Boot

Secure desktop snapshot assembling

Frozen interface cards, cyan telemetry, and a fast boot pass that feels technical without overwhelming the portfolio.

CI/CD Cloud Ops Security

Terminal + HUD Loader

Command surface synchronizing

Name Scan Reveal

Identity signature locking in

The cleanest option: a focused scanline reveal around your name with a restrained premium glow.

Initializing portfolio workspace...

Subash Lama Subash Lama Subash Lama

Cybersecurity Analyst with 10+ years in IT — focused on SOC operations, detection engineering, GRC, and IAM across modern enterprise environments.

SOC · GRC · IAM · CTI · Wazuh · Suricata · Sysmon · Docker · IaC · Cisco

Open to Cybersecurity / SOC / GRC / IAM roles UTC+5:45
Download Resume Book a Call
About Experience Projects Skills Contact

About Me

I am a System Administrator with 10+ years in IT and a business degree, now transitioning into cybersecurity — with a focus on security operations, detection engineering, and GRC.

My enterprise IT background spans system administration at Primuson Pvt. Ltd., IT specialist work at State Bank of India, network support engineering at Green IT Solutions, and IT consulting for Unilever. This gives me a deep operational foundation for understanding how attackers move through real infrastructure.

I built a personal SOC lab using Wazuh, Suricata, and Sysmon for host visibility, network telemetry, log collection, and real-time detection practice — while earning Cisco certifications in Ethical Hacking and Endpoint Security, and IBM credentials in Cybersecurity Fundamentals and Python for Data Science.

What I bring: A business-minded perspective combined with deep hands-on IT operations experience, now applied to threat detection, governance, risk & compliance, and identity & access management.

Experience

Information Technology System Administrator

Jan 2020 – Feb 2025 · 5 yrs 2 mos

Primuson Pvt. Ltd. · Full-time · Lazimpat, Kathmandu · On-site

Ethical Hacking · Network Monitoring · System Administration · IDS · Infrastructure Security

Information Technology Specialist

Mar 2018 – Apr 2019 · 1 yr 2 mos

State Bank of India · Full-time · Kathmandu · Hybrid

Proxy Server · Active Directory · Identity Management · Endpoint Security

Support Engineer

Mar 2016 – Apr 2019 · 3 yrs 2 mos

Green IT Solutions Pvt. Ltd. · Full-time · Kathmandu

Storage Virtualization · Proxy Server · Network Support · Linux Administration

Information Technology Consultant

Jan 2017 – Dec 2017 · 1 yr

Unilever · Contract · Nepal · Hybrid

Cisco Networking · Active Directory · IT Governance · Infrastructure Consulting

Information Technology Trainee

Mar 2014 – May 2016 · 2 yrs 3 mos

Platinum Hotel & SPA · Full-time · Soltemode · On-site

IT Support · Networking · Systems Troubleshooting

Projects

Secure Virtual Lab Automation

Problem: Manual lab setup slowed onboarding and caused inconsistency.

Built: Docker templates, bootstrap scripts, and CI checks.

Impact: Cut setup time by about 70% with safer defaults.

Stack: Docker · Compose · GitHub Actions · Linux

GitHub → Case Study →

Cloud Migration & Governance Suite

Problem: Cloud rollouts needed clearer controls and less drift.

Built: Terraform environments with plan checks and release gates.

Impact: Improved pre-deploy confidence and repeatability.

Stack: Terraform · GitHub Actions · Azure · Linux

GitHub → Case Study →

Personal SOC Lab

Problem: Needed hands-on telemetry and alerts.

Built: Wazuh, Suricata, and Sysmon lab.

Impact: Stronger log analysis and detection skills.

Stack: Wazuh · Suricata · Sysmon

GitHub → Case Study →

Skills

Security Operations & GRC

SOC Operations GRC IAM Cyber Threat Intelligence Detection Engineering Incident Response SIEM Log Analysis

Security Tools & Monitoring

Wazuh Suricata Sysmon IDS / IPS Endpoint Security Threat Detection Network Monitoring Ethical Hacking

Networking & Infrastructure

Cisco Networking Active Directory DNS Proxy Server Storage Virtualization Linux Administration Windows Server Docker

Scripting & Automation

Python Bash PowerShell GitHub Actions Terraform / IaC Data Analysis

Depth & Breadth

Core depth is in security operations, detection engineering, network monitoring, and identity & access management, built on 10+ years of enterprise IT operations.

I bring a business-minded perspective that bridges technical risk with governance and compliance requirements.

Certifications

Cisco

Endpoint Security

Issued Jun 2026
Cisco

Ethical Hacker

Issued Apr 2026
Cisco

Introduction to Cybersecurity

Issued Mar 2026
IBM

Cybersecurity Fundamentals

Issued Mar 2026
IBM

Python for Data Science

Issued Mar 2026
IBM SkillsBuild

Data Analysis with Python

Issued Mar 2026

Why Hire Me

  • 10+ years of enterprise IT operations across banking, FMCG, hospitality, and consulting — giving me a defender’s perspective rooted in how real infrastructure actually works
  • Business degree combined with deep technical experience means I can communicate risk to both technical teams and management stakeholders
  • Hands-on SOC lab experience with Wazuh, Suricata, and Sysmon — real detection engineering, not just theory
  • Cisco-certified in Ethical Hacking and Endpoint Security; IBM-certified in Cybersecurity Fundamentals and Python — actively investing in the craft
  • Understands GRC from the practitioner side — having operated inside environments where governance, risk, and compliance directly affected daily IT decisions
  • Documents findings, policies, and procedures clearly so teams can audit, review, and act on security work with confidence

Business-Minded Technologist

I communicate risk clearly, document controls carefully, and focus on security improvements that organizations can maintain and audit over time.

I do my best work where security operations, governance, and technical depth need to converge into practical outcomes.

Stay in Touch

Share your goals around cybersecurity, SOC operations, GRC, IAM, or security-aware IT and I will reply with practical next steps.

For a quick call, send 2-3 time options in UTC+5:45 with a short role or project note.

GitHub · LinkedIn · Resume

© 2026 Subash Lama. All rights reserved.