Hello, I'm
Nayanthi Weerasuriya
Business Information Systems undergraduate building a cybersecurity specialization through audit experience, hands-on labs, and targeted coursework. I bring a controls-oriented, evidence-driven mindset from my audit background—directly transferable to SOC alert triage and incident investigation.

About Me
Technology has always fascinated me - not just for what it can build, but for what it must protect.
As a Business Information Systems undergraduate, I've built a foundation that combines audit, risk management, and cybersecurity. My experience evaluating internal controls taught me how to investigate anomalies, think critically, and approach problems with evidence and precision. Those experiences sparked my passion for cybersecurity and motivated me to explore Security Operations, Threat Intelligence, and defensive security.
I continuously invest in my growth through practical labs, certifications, software development, and active participation in cybersecurity communities. Every project and learning experience strengthens my belief that cybersecurity is a field where curiosity, continuous learning, and resilience make the greatest impact.
My ambition is to become a cybersecurity professional who not only secures systems but also helps organizations build trust in an increasingly connected world.
Certifications & Credentials
IBM
Getting Started with Threat Intelligence and Hunting
CompletedCisco
Introduction to Cybersecurity
CompletedAPNIC
Cybersecurity Fundamentals
CompletedCisco
Introduction to IoT
CompletedISC2
Certified in Cybersecurity (CC)
Course Completed, Exam PendingIn Progress (APNIC Scholarship)
Target: November 2026
- CompTIA Security+
- Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900)
- Cisco Certified Support Technician — Networking (CCST)
Skills
Security Monitoring
- Familiarity with SIEM, EDR, NDR, EPP
- Security events & log sources
- Alert workflows
Threat Frameworks
- Cyber Threat Intelligence (CTI)
- IBM X-Force Exchange
- MITRE ATT&CK Framework
- Adversary tactics, techniques, and mapping IOCs
Network Analysis
- Packet capture and traffic analysis
- Wireshark
- Data Communication & Networking
Programming & Tools
- Languages: Python, C#, Java, JavaScript
- Web: HTML, CSS | DB: MySQL, SQLite
- Tools: Figma, VS Code, GitHub
Soft Skills
- Strong verbal and written communication skills
- Good interpersonal skills
- Hands on experience in Microsoft package
- Attention to detail
- Teamwork and collaboration
Practical Labs
Linux Fundamentals
What it covered: This room provided a foundational understanding of the Linux operating system, focusing on navigating the file system, managing permissions, and utilizing essential command-line tools. It also introduced concepts like piping and redirection.
What I learned: I developed a comfort level with the CLI, learning how to quickly locate files and understand user permissions. This gave me the confidence to move away from GUIs for administrative tasks.
Technical Takeaway: Mastered the use of the find command and grep for locating specific strings within logs, which is highly applicable for log analysis in a SOC environment.
Network Security & Wireshark
What it covered: An deep dive into packet capture analysis using Wireshark. The room covered identifying anomalous traffic patterns, filtering for specific protocols, and reconstructing TCP streams.
What I learned: I learned how to visually dissect network communication and spot potential malicious activity such as plain-text credential transmission or unauthorized scanning.
Technical Takeaway: Utilized Wireshark display filters (like http.request.method == "POST") to rapidly isolate suspicious data exfiltration attempts.
Projects
Budget Buddy
Python • Tkinter
A desktop application developed to help users track expenses and manage personal budgets effectively with a graphical interface.
View RepositorySmart HR Employee & Payroll Manager
C# • SQLite
A comprehensive system designed to manage employee records, calculate payroll, and streamline HR processes.
View RepositoryOneID
HTML • CSS • PHP • SASS
An Integrated e-Government Services Application centralizing essential public services (NIC verification, birth certificates, fine payments) into a single digital platform.
View RepositoryUniconnect
Spring Boot • Svelte • Astro • Java
A collaborative university platform bridging undergraduates, department heads, mentors, and industry, built across ITC 3373 & ITC 3375. Promoted academic and industry collaboration for a 9-member team.
View Repositoryuniapi.lk
Web Platform • Social Impact
A platform giving Sri Lankan students detailed insights into government university degree programs — course structures, yearly subjects, and GPA requirements. Benefited over 5,000 students in making informed academic decisions.
Visit PlatformMy Journey & Experience
Audit Trainee
June 2023 – July 2024Dyfferense Consultants
- Evaluated internal controls across five clients including pharmaceutical, identifying compliance gaps and control weaknesses while applying analytical and investigative techniques transferable to cybersecurity risk assessment and incident analysis.
- Produced audit working papers and compliance documentation across five engagements under tight regulatory deadlines, maintaining accurate evidence records and collaborating with multidisciplinary teams to support timely audit completion.
- Investigated financial records to identify anomalies and control exceptions, documenting evidence and escalating significant findings to senior auditors, strengthening analytical and risk assessment skills.

Delegate Manager - Cyber Summit '26
Proud to have served as the Delegate Manager for the Organizing Committee of Cyber Summit 2026. Handled participant coordination and ensured smooth communication leading up to the main event.

Industry Field Visit — Dialog Data Center & Media Hub
Visited the Dialog Axiata PLC Data Center and Dialog TV Media Hub. Observed enterprise-level server infrastructure, advanced cooling systems, high-availability setups, and television broadcasting processes.

2nd Runners-Up: CRYPTX 2.0
Secured Second Runners-Up at the CRYPTX 2.0 Designathon (Faculty of Technology, USJP). Challenged to solve complex problems and transform ideas into impactful design solutions over multiple competitive rounds.
Get In Touch
Let's Connect
I am actively seeking internship opportunities in Security Operations (SOC) and Cyber Threat Intelligence. Whether you have a position available or just want to discuss cybersecurity, I'd love to hear from you!



