Available Q3 2026

Shreya
Kannabiran.

Cybersecurity & Compliance Analyst. I help teams stay audit-ready under ISO 27001, SOC 2, HIPAA and PCI DSS — and pressure-test what they ship with penetration testing and ethical hacking.

/profile.json
role
Infosec Analyst
org
Mithra Consulting
focus
ISO 27001 · SOC 2
tools
Burp · OWASP ZAP · Nmap
based
Chennai, IN
stack
Kali · Python · AWS
Scroll
01 / 06Profile

Compliance-minded, offensively curious.

B.Tech Computer Science graduate specializing in cybersecurity and IoT. Skilled in penetration testing, ethical hacking, and security tooling — OWASP ZAP, Burp Suite, Wireshark and the wider Kali stack.

Through internships and academic work I've built practical exposure to ISO 27001, SOC 2, HIPAA and PCI DSS — through audit support, policy development and compliance documentation.

4
Compliance Frameworks
ISO 27001 · SOC 2 · HIPAA · PCI DSS
3
Internships Shipped
AU + IN cyber consultancies
5+
Offensive Toolchain
Burp · ZAP · Nmap · Wireshark · Kali

Education

B.Tech, Computer Science & Engineering
Specialization: Cybersecurity & IoT
Sri Ramachandra Institute of Higher Education & Research · Porur, Chennai
2021 — 2025
IGCSE A Level — Grade 12
Lalaji Memorial Omega International School · Kovur, Chennai
2020 — 2021
Audit-ready
Pentest-native
Report-driven
02 / 06Experience

Where I've worked.

  1. Feb 2026 — PresentCURRENT

    Infosec Analyst

    Mithra Consulting· Chennai, IN
    • Converted from intern to full-time Infosec Analyst on program completion.
    • Support ISO 27001 and SOC 2 Type I / II audit activity across multiple clients.
    • Help implement and monitor security controls aligned with ISO 27001 and SOC 2.
    • Maintain policies, procedures and control documentation to keep clients audit-ready.
    • Contributed to HIPAA and PCI DSS policy development initiatives.
  2. Oct 2025 — Jan 2026

    Infosec Intern

    Mithra Consulting· Chennai, IN
    • Conducted web vulnerability assessments and penetration testing on client projects.
    • Identified, documented and remediated security vulnerabilities across web applications.
    • Practical exposure to ISO 27001, SOC 2 and HIPAA via audit prep and compliance assessments.
  3. Feb 2025 — Jun 2025

    Cybersecurity Intern

    QRSolutions· Remote · Australia
    • Performed penetration testing on test environments to surface vulnerabilities and misconfigurations.
    • Simulated real-world attack scenarios with Burp Suite, OWASP ZAP and Nmap.
    • Delivered structured vulnerability reports — recognised by supervisors for clarity.
    • Trained in AWS (EC2 / S3 / IAM) and DevOps CI/CD; hands-on with Cypress and Postman.
  4. Feb 2023 — Apr 2023

    Product Intern

    Merkrr.io· Remote
    • Built a beta-tester recruitment web app for an early-stage SaaS product.
    • Chose Bubble.io for velocity — shipped the site in time for official product launch.
    • Implemented backend to capture and store beta-tester sign-ups.
03 / 06Stack

Tools I reach for.

A working stack across compliance, offensive testing and everyday engineering — grouped by how I actually use them.

01

Governance & Compliance

policies · audit prep · control monitoring

ISO 27001SOC 2 Type I / IIHIPAAPCI DSS
02

Offensive Security

web vuln assessment · test-env pentesting

Penetration TestingSQLiXSSIDOROWASP ZAPBurp SuiteNmap
03

Networks & Systems

traffic analysis · crypto basics · linux

Network SecurityCryptographyWiresharkKali Linux
04

Cloud & DevOps

aws services · pipeline exposure

AWS EC2AWS S3AWS IAMCI / CD
05

Programming & Data

scripting · analytics · dashboards

PythonSQLTableau
06

QA & API Testing

automation · endpoint testing

CypressPostman
Languages I speakEnglishTamilHindiFrench · learning
04 / 06Projects

Selected work.

Four projects, equal weight — academic labs to security tooling.

P.01
IoT · Computer Vision

IoT Face Recognition Security System

Group build of a facial-recognition access system on a Raspberry Pi + camera module. Captures and stores facial signatures for identification, then decides entry based on match confidence.

Raspberry PiOpenCVPythonIoT
P.02
Data Analytics

Amazon Prime Shows — Data Visualization

Analysed Amazon Prime movie and TV catalogue — release dates, ratings, genres. Delivered an interactive Tableau dashboard letting viewers filter titles by year and genre.

TableauSQLData Wrangling
P.03
AI · Cyber Forensics

AI for Dark Web Forensics

Team project designing an AI system to identify and analyse dark-web activity around illicit drugs and major crimes. ML-based threat classification with Python-driven data processing and predictive analytics for forensic workflows.

Machine LearningPythonThreat IntelForensics
P.04
Offensive Security

Ethical Hacking with Python

Collaborative project focused on identifying and mitigating security vulnerabilities using Python-based ethical hacking techniques — scripted recon, exploitation and post-analysis inside controlled environments.

PythonReconExploitationKali
05 / 06Credentials

Certifications.

8 credentials · continually adding

Google Cybersecurity Professional Certificate

Security
Google

Cisco Introduction to Cybersecurity

Security
Cisco

Jr. Penetration Tester — Learning Path

Security
TryHackMe

Pre-Security

Security
TryHackMe

Claude Code 101

AI
Anthropic

Claude 101

AI
Anthropic

B2 First

Language
Cambridge English

B1 Preliminary

Language
Cambridge English
06 / 06Contact

Let's put the
controls to work.

Open to security engineering, compliance analyst and offensive security roles — full-time or contract. Reach out and I'll get back within 48 hours.

© 2026 Shreya Kannabiran R.Built with Next.js · Deployed on Cloudflare Pages