Reema Gaikwad

Motivated entry-level cybersecurity professional with foundational knowledge in Identity and Access Management (IAM), authentication principles, and access control frameworks. Experienced with user provisioning, role-based access control (RBAC), and basic security best practices. Eager to contribute to secure identity lifecycle management and grow within a cybersecurity team.

• Completed hands-on training in security operations, Identity and Access Management (IAM), digital forensics and threat hunting and Ethical hacking
• Completed TryHackMe IAM Security Labs, gaining hands-on experience with authentication/authorization models, identity enumeration, and secure access control implementation.
• Trained in IAM best practices including least privilege, role-based access control (RBAC), multi-factor authentication (MFA) setup, and credential lifecycle management.
• Completed TryHackMe Ethical Hacking, covering Linux fundamentals, web application security, network enumeration, vulnerability assessment and penetration testing methodologies.
• Completed hands-on labs on OWASP Top 10, Active Directory security, privilege escalation, and incident response, demonstrating practical offensive and defensive skills
• Performed incident response and threat detection across simulated, real-world attack scenarios
• Gained hands-on experience with tools like Splunk,Elastic and Wireshark
• Conducted forensic investigations using memory/disk acquisition and network traffic analysis

Identity & Access Management (IAM) (TryHackMe )
Hands-on cybersecurity training

• Gained practical experience in IAM concepts such as authentication, authorization, RBAC/ABAC, privileged access, and identity lifecycle management.
• Performed user/role enumeration, policy analysis, and privilege auditing to identify IAM misconfigurations.
• Learned mitigation strategies including MFA enforcement, least-privilege design, access reviews, role separation, and IAM governance practices.
• Strengthened capabilities in securing identity infrastructures and applying zero-trust principles

MR ROBOT (TryHackMe):  Penetration Testing & OSINT Project,

Summary: Recon → Web enumeration → Hidden content discovery (robots.txt) → Decode credentials → Foothold → Reverse shell → Stabilization → Local enumeration → Privilege escalation (GTFOBins / misconfigured binaries) → Root flag.

Mitigations & recommendations:

• Do not expose sensitive paths in robots.txt.
• Avoid storing encoded credentials in public files.
• Remove unnecessary SUID binaries and restrict sudo permissions.
• Enforce strict file permissions and access controls.
• Monitor server logs for anomalies and brute-force attempts.

SOC Analyst Simulation (Tryhackme):Phishing → Endpoint Compromise

Summary: train triage, investigation, threat intel enrichment, containment, and reporting within a simulated SOC environment.

Tools:

• SIEM (Splunk / ELK): alert queue, correlation searches, host/User lookups. TryHackMe
• Network tools (Wireshark, PCAPs): analyze suspicious network connections and DNS.
• EDR / Endpoint logs: detect PowerShell/command lines, process chains, persistence.

Mitigations & recommendations:

• Harden Office macro policy: block macros from internet locations or disable macros by default except via signed macros.
• Enforce MFA across all user accounts.
• EDR & logging coverage: ensure endpoint telemetry (Sysmon/EDR) and centralised logging for all hosts and critical services.
• Deploy DNS filtering + firewall egress rules to block known-bad domains and outbound anomalies.