Raya Rohith Yadav

// 01

About_Me

I am a Cyber Security MSc graduate from the University of Edinburgh with a foundation in Electronics and Communication Engineering from Anna University. My work sits at the boundary of security operations and applied AI.

On the security side, I build detection engineering workflows using Microsoft Sentinel, Defender XDR, and KQL, design and implement ISMS frameworks aligned to ISO 27001, and conduct web application vulnerability assessments following the OWASP Testing Guide.

On the AI side, I work as an AI Training Consultant at iMerit Technology, contributing to model evaluation and training pipelines. I am actively building knowledge in agentic AI architectures, ZAG pipelines, and LLM security, including adversarial misuse, prompt injection, and control design aligned to OWASP LLM Top 10 and MITRE ATLAS.

I delivered a conference talk at the Digital Research Conference 2026 at the Edinburgh Futures Institute on Zero-Knowledge Governance, proposing a cryptographic framework for auditing research integrity in Secure Multi-Party Computation environments.

Status Open to Opportunities

Location Edinburgh, UK

Work Auth UK Graduate Visa (Jan 2028)

Clearance BPSS / SC Eligible

Email rohithyadavraya@gmail.com

// 02

Education

MSc Cyber Security, Privacy and Trust

The University of Edinburgh

2023 to 2025

Dissertation: Tor Browser traffic fingerprinting using supervised machine learning (Random Forest, SVM, XGBoost), achieving 81 to 88% classification accuracy
Conference Speaker at Digital Research Conference 2026, Edinburgh Futures Institute

Threat DetectionCryptographyPrivacyMachine LearningISO 27001

BEng Electronics and Communication Engineering

Anna University, Chennai

2019 to 2023

Thesis: Hybrid Routing Protocol for MANETs using NS2 simulation, achieving 99.61% packet delivery rate
Class Representative for 4 years; organised Cisco-led cryptography workshop

Network ProtocolsEmbedded SystemsSignal ProcessingWireless Communication

// 03

Experience

AI Training Consultant

iMerit Technology, Scholars Programme

Feb 2026 to Present

Contributing to model evaluation and AI training pipelines for enterprise-grade LLM and agentic AI systems
Exploring ZAG pipelines and agentic AI workflow design with a security-first perspective
Applying knowledge of OWASP LLM Top 10 and MITRE ATLAS to AI security evaluation tasks

Agentic AILLM SecurityOWASP LLM Top 10MITRE ATLASZAG Pipelines

Co-Production and Experience Manager

TEDxLeith

Feb 2026 to Present

Managing sponsor coordination, ticketing administration via Humanitix, and venue logistics
Coordinating across AV contractors, venue management, and production volunteers

Event ManagementStakeholder CoordinationLogistics

Cyber Security Intern

Hactify Cyber Security (Remote)

Feb 2025 to Mar 2025

Supported security monitoring and incident triage across multiple client environments running Windows and Microsoft 365
Investigated Defender endpoint alerts for credential access and lateral movement indicators
Conducted web application vulnerability assessments; delivered plain-language findings reports to non-technical clients

Incident TriageDefender XDRVulnerability AssessmentMITRE ATT&CK

Data and Automation Intern

AICTE / IBM (Remote)

Jan 2025 to Mar 2025

Built Python automation pipelines processing approximately 3,000 security records with near-real-time dashboards
Developed ML-based anomaly detection for network traffic using TensorFlow, Scikit-learn, and Zeek

PythonTensorFlowZeekPower BI

IoT Security Intern

BSNL, Chennai

Aug 2021

Worked on live IoT telemetry monitoring using MQTT and LoRaWAN with Raspberry Pi and Arduino
Integrated AWS IoT Core for secure cloud connectivity; performed traffic analysis with Wireshark

IoTMQTTAWS IoTWireshark

// 04

Projects

SOCView on GitHub

SOC Monitoring and Incident Analysis Platform

Microsoft Sentinel SIEM with custom KQL detection rules for brute force, suspicious sign-ins, privilege escalation, and lateral movement. Full incident reports and operational runbooks mapped to MITRE ATT&CK.

SentinelKQLDefender XDRMITRE ATT&CK

GRCView on GitHub

ISO 27001 ISMS Implementation: CloudRise Analytics

Audit-grade ISMS portfolio for a fictional SaaS scenario. Full Annex A documentation, risk register, Statement of Applicability, internal audit execution with CAPA lifecycle and closure evidence.

ISO 27001GRCInternal AuditNIST CSF

VAPTView on GitHub

Web Application Vulnerability Assessment

Structured assessment of DVWA and OWASP Juice Shop across OWASP Top 10 (2021). 10 confirmed findings including SQLi (9.9 CVSS), file upload RCE, broken authentication, XSS, IDOR, and CSRF.

Burp SuiteOWASPCVSS v3.1Nmap

MLView on GitHub

Tor Browser Traffic Fingerprinting: MSc Dissertation

Supervised ML system classifying Tor Browser traffic with 81 to 88% accuracy using Random Forest, SVM, and XGBoost. Addresses anonymisation network detection as a threat to network visibility.

PythonScikit-learnTraffic AnalysisPrivacy

ZKPDRC 2026

Zero-Knowledge Governance: DRC 2026

Governance framework combining SMPC and zero-knowledge proofs to audit research integrity without exposing sensitive data. Presented as a conference talk at Edinburgh Futures Institute, February 2026.

ZKPSMPCCryptographyGovernance

MLView on GitHub

Web Phishing Detection using Machine Learning

Classification system detecting phishing URLs based on domain identity, URL structure, and SSL indicators. Flask web app deployed on IBM Watson Studio. Collaborative undergraduate project (AICTE / IBM).

PythonScikit-learnFlaskIBM Watson

// 05

Skills

Security Operations

Microsoft Sentinel (SIEM)
Defender XDR / EDR
KQL Detection Rules
Incident Triage and Response
MITRE ATT&CK
CVSS v3.1 Scoring
Wireshark / Nmap

Offensive Security

Burp Suite
OWASP Top 10
Web Application VA
Metasploit
Kali Linux
OSINT / Shodan
Nmap / Gobuster

GRC and Compliance

ISO 27001 / 27002
NIST CSF 2.0
SOC 2 Type II Mapping
Risk Register and SoA
Internal Audit (CAPA)
GDPR Awareness
Data Protection

AI and Security

Agentic AI Architectures
ZAG Pipelines
OWASP LLM Top 10
MITRE ATLAS
Prompt Injection Defence
LLM Model Evaluation
Zero-Knowledge Proofs

Languages and Tools

Python
KQL
Bash / PowerShell
JavaScript / TypeScript
SQL
Git / GitHub
Docker

ML and Data

Scikit-learn
TensorFlow / Keras
Pandas / NumPy
Power BI
Zeek (Network ML)
Anomaly Detection
Traffic Classification

// 06

Achievements

Conference Speaker

Digital Research Conference 2026

Edinburgh Futures Institute, University of Edinburgh, 26 February 2026. Presented a lightning talk on Zero-Knowledge Governance: Auditing Research Integrity in Secure Multi-Party Computation (SMPC). Session chaired by Professor John Vines on Ethics, Security and Integrity in Digital Research.

ZKPSMPCResearch IntegrityCryptographic Governance

IEEE

IEEE ICONSTEM 2024 Publication. A Comparative Study of Ad-Hoc Networks for Hybrid Protocol Development.View Paper

IEEE

IEEE ICACITE 2023 Publication. An Empirical Assessment of Wireless Communication Technology Issues in the Smart Home.View Paper

AWARD

Runner-Up, Techgium Hackathon by L&T. Recognised for AI-driven aerospace maintenance forecasting at a national-level challenge hosted by Larsen and Toubro.

AWARD

Runner-Up, Smart India Hackathon (ARSENICS). Wearable obstacle detection system for visually impaired prosthetic limb users. University-level runner-up.

CR

Class Representative, 4 Years. Represented 60+ students at Rajalakshmi Engineering College. Organised a Cisco-led cryptography workshop, co-led a national symposium with 2,000+ participants, and published two IEEE papers during tenure.

ED

Chief Editor, ElComm Magazine 2022. Led editorial strategy, content selection, and design for the department magazine.

// 07