Parrot-inspired loader study Cyber Screenshot Boot

Cyber Screenshot Boot

Secure desktop snapshot assembling

Frozen interface cards, cyan telemetry, and a fast boot pass that feels technical without overwhelming the portfolio.

CI/CD Cloud Ops Security

Terminal + HUD Loader

Command surface synchronizing

Name Scan Reveal

Identity signature locking in

The cleanest option: a focused scanline reveal around your name with a restrained premium glow.

Initializing portfolio workspace...

SL

Subash Lama Subash Lama Subash Lama

Cybersecurity Analyst with 12+ years in IT — focused on SOC operations, detection engineering, GRC, and IAM across modern enterprise environments.

SOC · GRC · IAM · CTI · Wazuh · Suricata · Sysmon · Docker · IaC · Cisco

Available for roles Open to Cybersecurity / SOC / GRC / IAM roles --:-- NPT
12+Years IT
7Certs
3Labs Built
150+Endpoints
Profile Strength
0%
📚
Currently Studying Elastic Stack (ELK)
0Log Entries Analyzed
0Scripts Written
0Labs Built
0Endpoints Secured
LIVE SOC monitor active
Download Resume Book a Call 🔗 Share on LinkedIn
About Experience Projects Skills Contact

About Me

I am a Cybersecurity Analyst with 12+ years in IT and a business degree, with hands-on experience in security operations, detection engineering, and GRC.

My enterprise IT background spans system administration at Primuson Pvt. Ltd., IT specialist work at State Bank of India, network support engineering at Green IT Solutions, and IT consulting for Unilever. This gives me a deep operational foundation for understanding how attackers move through real infrastructure.

I built a personal SOC lab using Wazuh, Suricata, and Sysmon for host visibility, network telemetry, log collection, and real-time detection practice — while earning Cisco certifications in Ethical Hacking and Endpoint Security, and IBM credentials in Cybersecurity Fundamentals and Python for Data Science.

What I bring: A business-minded perspective combined with deep hands-on IT operations experience, now applied to threat detection, governance, risk & compliance, and identity & access management.
Portfolio Security Posture:
✓ Strict CSP ✓ HSTS ✓ No-Referrer ✓ No-Clickjack ✓ No-MIME-Sniff ✓ SRI ✓ Permissions-Policy ✓ security.txt 🔗 Headers 🔗 Observatory 🔗 SSL Labs 📜 Policy
Languages: Nepali (native) · English (professional working proficiency) · French (elementary, actively studying)

Experience

Information Technology System Administrator

Jan 2020 – Feb 2025 · 5 yrs 2 mos

Primuson Pvt. Ltd. · Full-time · Lazimpat, Kathmandu · On-site

  • Managed 150+ endpoints and multi-site infrastructure across 3 office locations
  • Deployed IDS/network monitoring stack, reducing security visibility gaps across the environment
  • Standardised patch management cycle, cutting unplanned downtime by ~40%
  • Led ethical hacking exercises to identify and remediate internal vulnerabilities

Ethical Hacking · Network Monitoring · System Administration · IDS · Infrastructure Security

Information Technology Specialist

Mar 2018 – Apr 2019 · 1 yr 2 mos

State Bank of India · Full-time · Kathmandu · Hybrid

  • Administered Active Directory for 200+ banking staff across Kathmandu branches
  • Configured and hardened proxy server routing all outbound banking traffic
  • Enforced endpoint security policies across 80+ workstations meeting banking compliance standards

Proxy Server · Active Directory · Identity Management · Endpoint Security

Support Engineer

Mar 2016 – Apr 2019 · 3 yrs 2 mos

Green IT Solutions Pvt. Ltd. · Full-time · Kathmandu

  • Delivered network and infrastructure support across 20+ client organisations
  • Managed SAN/storage virtualisation deployments for enterprise clients
  • Maintained Linux server environments achieving 99%+ uptime across client engagements

Storage Virtualization · Proxy Server · Network Support · Linux Administration

Information Technology Consultant

Jan 2017 – Dec 2017 · 1 yr

Unilever · Contract · Nepal · Hybrid

  • Consulted on IT governance and infrastructure for FMCG operations across Nepal
  • Designed and documented Cisco network topology for distribution facilities
  • Supported Active Directory migration aligned with Unilever global IT standards

Cisco Networking · Active Directory · IT Governance · Infrastructure Consulting

Information Technology Trainee

Mar 2014 – May 2016 · 2 yrs 3 mos

Platinum Hotel & SPA · Full-time · Soltemode · On-site

  • Provided end-to-end IT support for 100+ hospitality staff across hotel operations
  • Managed POS system integration and network connectivity for hotel services

IT Support · Networking · Systems Troubleshooting

Projects

🛡 Home Lab Stats · last 30 days
99.7%Lab Uptime
1,247Alerts Triaged
34True Positives
2.4mAvg MTTR
🕐 Recent Activity
    📈 Contribution Activity
    Subash Lama GitHub contribution chart

    🔗 github.com/Subash107

    Filter:

    Secure Virtual Lab Automation

    Problem: Manual lab setup slowed onboarding and caused inconsistency.

    Built: Docker templates, bootstrap scripts, and CI checks.

    Impact: Cut setup time by about 70% with safer defaults.

    Stack: Docker · Compose · GitHub Actions · Linux

    GitHub → Case Study →

    Cloud Migration & Governance Suite

    Problem: Cloud rollouts needed clearer controls and less drift.

    Built: Terraform environments with plan checks and release gates.

    Impact: Improved pre-deploy confidence and repeatability.

    Stack: Terraform · GitHub Actions · Azure · Linux

    GitHub → Case Study →

    Personal SOC Lab

    Problem: Needed hands-on telemetry and alerts.

    Built: Wazuh, Suricata, and Sysmon lab.

    Impact: Stronger log analysis and detection skills.

    Stack: Wazuh · Suricata · Sysmon

    GitHub → Case Study →

    Skills

    Endpoint Security & IAM90%
    Network & Infrastructure88%
    Security Operations (SOC / SIEM)75%
    Scripting & Automation72%
    GRC & Detection Engineering65%
    Core Skilled Growing

    Security Operations & GRC

    SOC Operations GRC IAM Cyber Threat Intelligence Detection Engineering Incident Response SIEM Log Analysis

    Security Tools & Monitoring

    Wazuh Suricata Sysmon IDS / IPS Endpoint Security Threat Detection Network Monitoring Ethical Hacking

    Networking & Infrastructure

    Cisco Networking Active Directory DNS Proxy Server Storage Virtualization Linux Administration Windows Server Docker

    Scripting & Automation

    Python Bash PowerShell GitHub Actions Terraform / IaC Data Analysis
    WZWazuh
    SRSuricata
    SMSysmon
    DKDocker
    GHGitHub
    PYPython
    TFTerraform
    CNCisco
    LXLinux
    ADActive Directory

    🔌 Homelab Topology

    FW pfSense IDS Suricata SYS Sysmon SIEM Wazuh CTR Docker KALI Kali SOC Analyst
    • ✓ Wazuh SIEM — host-based detection & log correlation
    • ✓ Suricata IDS — network anomaly & signature detection
    • ✓ Sysmon — Windows process, network & file telemetry
    • 🥵 Tor exit node detection — Suricata rules + Tor Project exit list

    🥵 How Tor Onion Routing Works

    Tor wraps traffic in 3 encryption layers. Each node peels one — no single node knows both sender and destination.

    ■ Guard — strips outer layer ■ Middle — strips middle layer ■ Exit — strips inner layer, makes request

    🎮 Career Skill Tree

    IT Foundations NET Networking LNX Linux SEC+ Security+ SOC SOC Ops WZ Wazuh HUNT Threat Hunt GRC GRC

    🎯 MITRE ATT&CK Detection Coverage

    Hover each tactic for technique details · Home lab: Wazuh + Suricata + Sysmon

    Recon Partial T1595 Active Scanning T1592 Gather Host Info Tool: Suricata
    Resource Dev Partial T1583 Acquire Infrastructure T1588 Obtain Capabilities Tool: Threat Intel feeds
    Initial Access Detected T1190 Exploit Public App T1078 Valid Accounts T1566 Phishing Tool: Suricata + Wazuh
    Execution Detected T1059 Command Scripting T1204 User Execution T1047 WMI Tool: Sysmon + Wazuh
    Persistence Detected T1547 Boot Autostart T1053 Scheduled Task T1543 Create Service Tool: Sysmon + Wazuh
    Priv Esc Detected T1134 Token Manipulation T1055 Process Injection T1068 Exploit Privilege Tool: Wazuh + Sysmon
    Def Evasion Partial T1070 Indicator Removal T1027 Obfuscated Files T1562 Impair Defenses Tool: Wazuh (partial)
    Cred Access Detected T1003 OS Cred Dumping T1110 Brute Force T1552 Unsecured Creds Tool: Wazuh + Sysmon
    Discovery Partial T1046 Network Scan T1082 System Info T1069 Permission Groups Tool: Suricata + Sysmon
    Lateral Mov Partial T1021 Remote Services T1570 Lateral Tool Transfer Tool: Wazuh (in progress)
    Collection Partial T1560 Archive Collected T1005 Local Data Tool: Sysmon file events
    C2 In Progress T1071 App Layer Protocol T1573 Encrypted Channel Tor exit node detection active Tool: Suricata (expanding)
    Exfiltration Partial T1048 Alt Protocol Exfil T1041 Exfil over C2 Tool: Suricata rules
    Impact Detected T1485 Data Destruction T1490 Inhibit Recovery T1489 Service Stop Tool: Wazuh FIM + alerts

    ■ Detected ■ Partial ■ In Progress  ·  MITRE ATT&CK Framework ↗

    Depth & Breadth

    Core depth is in security operations, detection engineering, network monitoring, and identity & access management, built on 12+ years of enterprise IT operations.

    I bring a business-minded perspective that bridges technical risk with governance and compliance requirements.

    Certifications

    Cisco

    Endpoint Security

    Issued Jun 2026 Verify ↗
    Cisco

    Ethical Hacker

    Issued Apr 2026 Verify ↗
    Cisco

    Introduction to Cybersecurity

    Issued Mar 2026 Verify ↗
    IBM

    Cybersecurity Fundamentals

    Issued Mar 2026 Verify ↗
    IBM

    Python for Data Science

    Issued Mar 2026 Verify ↗
    IBM SkillsBuild

    Data Analysis with Python

    Issued Mar 2026 Verify ↗
    Google Skillshop

    Google Ads Video Certification

    Issued May 2026 · Expires May 2027 ID 182626545 Verify ↗

    Education

    Bachelor of Business Studies (BBS)

    Jan 2015 – Jun 2022

    Nepal Mega College · Kathmandu, Nepal · Grade: 2nd

    • Business management, financial analysis, and organizational governance fundamentals
    • Computer Science background from High School (Nepal kasthamandap College, 2012–2014)
    • SLC — Tri padma Vidhya Shram Higher Secondary School (2000–2012)

    Cisco Certified — Ethical Hacking & Endpoint Security

    2026

    Cisco Networking Academy · Online

    • Ethical hacking techniques, penetration testing fundamentals, and network vulnerability assessment
    • Endpoint hardening, threat detection, and security monitoring principles

    IBM Cybersecurity Fundamentals & Python for Data Science

    2026

    IBM SkillsBuild · Online

    • Core cybersecurity concepts, threat intelligence, and security operations fundamentals
    • Python scripting for data analysis and security automation workflows

    Languages

    Nepali Native
    English Professional Working Proficiency
    French Elementary · Actively Studying

    Currently Working On

    • Expanding the personal SOC lab with Kubernetes security monitoring and container telemetry
    • Deepening MITRE ATT&CK coverage — mapping detections to real TTPs and building custom Wazuh rules
    • Exploring Elastic Stack and OpenTelemetry for observability and log correlation
    • Pursuing GRC certification to formalise governance, risk & compliance knowledge

    Last updated Jun 2026ask me what’s new

    Why Hire Me

    • 12+ years of enterprise IT operations across banking, FMCG, hospitality, and consulting — giving me a defender’s perspective rooted in how real infrastructure actually works
    • Business degree combined with deep technical experience means I can communicate risk to both technical teams and management stakeholders
    • Hands-on SOC lab experience with Wazuh, Suricata, and Sysmon — real detection engineering, not just theory
    • Cisco-certified in Ethical Hacking and Endpoint Security; IBM-certified in Cybersecurity Fundamentals and Python — actively investing in the craft
    • Understands GRC from the practitioner side — having operated inside environments where governance, risk, and compliance directly affected daily IT decisions
    • Documents findings, policies, and procedures clearly so teams can audit, review, and act on security work with confidence

    Business-Minded Technologist

    I communicate risk clearly, document controls carefully, and focus on security improvements that organizations can maintain and audit over time.

    I do my best work where security operations, governance, and technical depth need to converge into practical outcomes.

    What I’m Looking For

    🎯

    Target Roles

    SOC Analyst L1/L2 · Detection Engineer · GRC Analyst · IAM Specialist · Security Operations Engineer

    🌎

    Work Setup

    Remote worldwide · Hybrid or on-site in Kathmandu · Open to relocation for the right opportunity

    🕑

    Availability

    Available immediately · UTC+5:45 (Nepal) · Flexible hours for global teams

    🤝

    Ideal Team

    Security-first culture · Hands-on engineering · Continuous learning · Real threat detection work

    Let’s talk — contact me directly or download my CV

    Endorsements

    What colleagues say — sourced from LinkedIn recommendations.

    Recommendations from colleagues and managers across Primuson Pvt. Ltd., State Bank of India, and Green IT Solutions are available on LinkedIn.

    Contact

    Let’s Talk Security

    lamasubash107@gmail.com

    github.com/Subash107

    linkedin.com/in/subash-lama-b319a016b

    Kathmandu, Nepal · UTC+5:45

    Open to Cybersecurity Analyst, SOC Analyst, GRC Analyst, IAM Specialist, Security Operations, and related cybersecurity roles — on-site, hybrid, or remote in Kathmandu · open to remote worldwide.

    Stay in Touch

    Share your goals around cybersecurity, SOC operations, GRC, IAM, or security-aware IT and I will reply with practical next steps.

    For a quick call, send 2-3 time options in UTC+5:45 with a short role or project note.

    GitHub · LinkedIn · Resume · ♪ Music

    © 2026 Subash Lama. All rights reserved.

    Open to Opportunities SOC · GRC · IAM · Security Ops
    Contact →