Himaja Nagula
Cybersecurity & AI Solutions Engineer
Building intelligent defenses that learn, adapt, and protect.
I'm open for new opportunities - if you would like to discuss your project, I'm available at himaja.nagula766@gmail.com
Building intelligent defenses that learn, adapt, and protect.
I'm open for new opportunities - if you would like to discuss your project, I'm available at himaja.nagula766@gmail.com
I'm a cybersecurity professional and AI solutions engineer passionate about building systems that both protect and learn. My work bridges deep security research — from malware reverse engineering to threat analytics — with AI-driven automation that strengthens risk intelligence and resilience. I love transforming complex security challenges into smart, scalable solutions that anticipate threats before they strike. With experience spanning SBOM automation, agentic AI workflows, and secure product development, I design defenses that evolve as fast as the risks. At the intersection of security, code, and intelligence, I turn innovation into protection.
Identify and mitigate security risks across cloud and on-prem environments by conducting vulnerability assessments, monitoring threat activity, and responding to security incidents. Experienced in vendor risk workflows, SBOM compliance, secure SDLC, and attack surface analysis using MITRE ATT&CK.
Threat Intelligence • Vulnerability Management • Incident Response & Triage • SIEM Monitoring • Third-Party Risk • Secure SDLC • Compliance (NIST / HIPAA / FDA)
Design and deploy scalable, secure automation workflows, cloud infrastructure, and integration pipelines. Skilled in building agent-based systems (MCP), system orchestration, and security-aware CI/CD architectures that enable reliable, high-availability operations.
Cloud Architecture (AWS/Azure) • Infrastructure as Code • CI/CD Security • Workflow & Platform Automation • Kubernetes + Container Security • API & System Integration
Develop agentic workflows and GenAI-powered applications that enhance security operations, automate analysis tasks, and enable intelligent decision support. Experienced in MCP server configuration, retrieval-based Q&A agents, and AI orchestration across documents, UI, and automation environments.
Python Automation • MCP Development • Agentic Workflow Design • RAG / Vector Search • Model Integration (OpenAI / Anthropic) • Security AI Tooling
Have a look at some of the rolled-out projects I'm proud of:
A scalable phishing awareness platform that integrates with GoPhish to launch phishing simulation campaigns, score employee security behavior, and provide personalized remediation recommendations to strengthen organizational security posture.
View project →
An interactive AI-driven agent that dynamically creates custom murder mystery stories based on user-selected characters, setting, and difficulty, while managing clues, guesses, and narrative progress for replayable mystery experiences.
View project →
A multi-format document intelligence agent that lets users upload PDFs, DOCX, PPT, CSV and more, then ask natural-language questions to extract insights, summaries, and contextual answers directly from the document content.
View project →
A smart dating platform featuring an AI wingman that analyzes your preferences, messaging style, and conversation history to suggest high-compatibility matches and help craft meaningful, authentic interactions.
View project →
Coming soon.
Coming soonTechnical Solutions Consultant, designing and deploying agentic workflow architectures and automation pipelines that improved operational efficiency by ~30%. I developed, tested, and refined 150+ MCP server configurations, ensuring robust performance and modular scalability across environments. Additionally, I authored 15+ technical deployment briefs, enabling teams and customers to integrate MCP-driven agent systems with clarity, reliability, and long-term maintainability.
Cyber Risk Analyst Intern, driving the automation and optimization of the Third-Party Supplier Risk Assessment process, reducing manual review time by 50% and strengthening risk governance. I built Power BI dashboards for real-time supplier security scoring and reporting, improving decision-making clarity and accelerating compliance and audit readiness by 30%.
Product Security Intern, executing 50+ security assurance tests (SBOM validation, SAST/DAST, dependency & container scanning) to maintain compliance with FDA, HIPAA, and NIST regulatory standards. I automated SBOM generation workflows using Veracode and BlackDuck, reducing processing effort by 70% and improving integration of security controls into the SDLC by ~40%, strengthening product release readiness.
Cybersecurity Intern, supporting vulnerability management and product risk assessments across 100+ hardware and software assets, improving remediation prioritization and reporting efficiency by 35%. I also researched and synthesized Zero-Trust architecture strategies tailored to operational technology (OT) environments, informing internal security roadmap discussions for industrial system modernization.
Cybersecurity Analyst Intern, enhancing Windows domain and access security by evaluating and remediating 600+ Active Directory Group Policies to reduce misconfigurations and strengthen environment hardening. I additionally deployed a Distributed Control System on Kubernetes, improving high-availability performance by ~50% and supporting scalable operational resilience.
SOC Analyst Trainee, conducting proactive threat hunting and attack surface analysis grounded in MITRE ATT&CK and Diamond Intrusion Analysis methodologies. I documented 10+ attack vectors using GreyMatter and QRadar, contributing to improved detection logic, adversary tracking, and incident response readiness across monitored environments.
I constantly study and take additional courses on cybersecurity, threat intelligence, security automation, and GenAI development.
MS IN CYBERSECURITY
With an emphasis on: Malware Reverse Engineering, Network Security, Applied Cryptography, and advanced security methodologies.
August 2023 – May 2025
BS IN COMPUTER SCIENCE
With an emphasis on: Capture the Flag, Secure Coding, Operating Systems, Object-Oriented Programming, and software engineering principles.
August 2019 – May 2023
COMPTIA SECURITY+ CE CERTIFICATION
Professional certification demonstrating expertise in security fundamentals, risk management, and security operations.
June 2023
📩 Contact: himaja.nagula766@gmail.com
Bring me in for: