Hello, I'm

Nayanthi Weerasuriya

Business Information Systems undergraduate building a cybersecurity specialization through audit experience, hands-on labs, and targeted coursework. I bring a controls-oriented, evidence-driven mindset from my audit background—directly transferable to SOC alert triage and incident investigation.

LinkedIn
Nayanthi Weerasuriya

About Me

Technology has always fascinated me - not just for what it can build, but for what it must protect.

As a Business Information Systems undergraduate, I've built a foundation that combines audit, risk management, and cybersecurity. My experience evaluating internal controls taught me how to investigate anomalies, think critically, and approach problems with evidence and precision. Those experiences sparked my passion for cybersecurity and motivated me to explore Security Operations, Threat Intelligence, and defensive security.

I continuously invest in my growth through practical labs, certifications, software development, and active participation in cybersecurity communities. Every project and learning experience strengthens my belief that cybersecurity is a field where curiosity, continuous learning, and resilience make the greatest impact.

My ambition is to become a cybersecurity professional who not only secures systems but also helps organizations build trust in an increasingly connected world.

Certifications & Credentials

IBM

Getting Started with Threat Intelligence and Hunting

Completed

Cisco

Introduction to Cybersecurity

Completed

APNIC

Cybersecurity Fundamentals

Completed

Cisco

Introduction to IoT

Completed

ISC2

Certified in Cybersecurity (CC)

Course Completed, Exam Pending
In Progress

APNIC Scholarship Track

Building toward three industry-recognized security certifications

TargetNovember 2026
CompTIA

Security+

CompTIA Security+

Study progress95%
Microsoft

SC-900

Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900)

Study progress35%
Cisco

CCST

Cisco Certified Support Technician — Networking (CCST)

Study progress38%

Skills

Technical foundations across security operations, threat intelligence, and development

Security Monitoring

  • Familiarity with SIEM, EDR, NDR, EPP
  • Security events & log sources
  • Alert workflows

Threat Frameworks

  • Cyber Threat Intelligence (CTI)
  • IBM X-Force Exchange
  • MITRE ATT&CK Framework
  • Adversary tactics, techniques, and mapping IOCs

Network Analysis

  • Packet capture and traffic analysis
  • Wireshark
  • Data Communication & Networking

Programming & Tools

  • Languages: Python, C#, Java, JavaScript
  • Web: HTML, CSS | DB: MySQL, SQLite
  • Tools: Figma, VS Code, GitHub

Soft Skills

  • Strong verbal and written communication skills
  • Good interpersonal skills
  • Hands on experience in Microsoft package
  • Attention to detail
  • Teamwork and collaboration

Practical Labs

Hands-on cybersecurity training through TryHackMe

TryHackMe
Top 75%Rank
4Rooms Completed

Linux Fundamentals

Completed 2025
What it covered

This room provided a foundational understanding of the Linux operating system, focusing on navigating the file system, managing permissions, and utilizing essential command-line tools. It also introduced concepts like piping and redirection.

What I learned

I developed a comfort level with the CLI, learning how to quickly locate files and understand user permissions. This gave me the confidence to move away from GUIs for administrative tasks.

Technical Takeaway

Mastered the use of the find command and grep for locating specific strings within logs, which is highly applicable for log analysis in a SOC environment.

Network Security & Wireshark

Completed 2025
What it covered

An deep dive into packet capture analysis using Wireshark. The room covered identifying anomalous traffic patterns, filtering for specific protocols, and reconstructing TCP streams.

What I learned

I learned how to visually dissect network communication and spot potential malicious activity such as plain-text credential transmission or unauthorized scanning.

Technical Takeaway

Utilized Wireshark display filters (like http.request.method == "POST") to rapidly isolate suspicious data exfiltration attempts.

Projects

Applications and platforms built across desktop, web, and social impact

Budget BuddyDesktop App

Budget Buddy

PythonTkinter

A desktop application developed to help users track expenses and manage personal budgets effectively with a graphical interface.

View Repository
Smart HR Employee & Payroll ManagerEnterprise

Smart HR Employee & Payroll Manager

C#SQLite

A comprehensive system designed to manage employee records, calculate payroll, and streamline HR processes.

View Repository
OneIDWeb App

OneID

HTMLCSSPHPSASS

An Integrated e-Government Services Application centralizing essential public services (NIC verification, birth certificates, fine payments) into a single digital platform.

View Repository
UniconnectPlatform

Uniconnect

Spring BootSvelteAstroJava

A collaborative university platform bridging undergraduates, department heads, mentors, and industry, built across ITC 3373 & ITC 3375. Promoted academic and industry collaboration for a 9-member team.

View Repository
uniapi.lkLive Product

uniapi.lk

Web PlatformSocial Impact

A platform giving Sri Lankan students detailed insights into government university degree programs — course structures, yearly subjects, and GPA requirements. Benefited over 5,000 students in making informed academic decisions.

Visit Platform

My Journey & Experience

Audit Trainee

June 2023 – July 2024

Dyfferense Consultants

  • Evaluated internal controls across five clients including pharmaceutical, identifying compliance gaps and control weaknesses while applying analytical and investigative techniques transferable to cybersecurity risk assessment and incident analysis.
  • Produced audit working papers and compliance documentation across five engagements under tight regulatory deadlines, maintaining accurate evidence records and collaborating with multidisciplinary teams to support timely audit completion.
  • Investigated financial records to identify anomalies and control exceptions, documenting evidence and escalating significant findings to senior auditors, strengthening analytical and risk assessment skills.
Cyber Summit 2026
2026
ISACA USJLeadership

Delegate Manager - Cyber Summit '26

Proud to have served as the Delegate Manager for the Organizing Committee of Cyber Summit 2026. Handled participant coordination and ensured smooth communication leading up to the main event.

ISACA Performer of the Month - March
March 2026
RecognitionISACA USJ

Performer of the Month — March 2026

Recognized as Performer of the Month in March 2026 for member recruitment efforts and active involvement in organizing Cyber Summit 2026.

Sparsha'25 Finance Committee
2025/26
Event ManagementFinance

Finance Crew OC Member — Sparsha'25

Served as an Organizing Committee Member for the Finance Crew of Sparsha'25, managing event budget and financial coordination to ensure a successful execution.

ISACA Squad Leaders 2025/2026
2025/26
ISACA USJLeadership

Squad Leader — Member Training (2025/26)

Appointed as Squad Leader for the Member Training Squad at the ISACA Student Group USJ for the term 2025/2026. Responsible for creating impactful learning experiences and empowering members through training and development.

ISACA Performer of the Month - December
December 2025
RecognitionISACA USJ

Performer of the Month — December 2025

Recognized as Performer of the Month in December 2025 for conducting the Management Faculty awareness session.

Project Safe Space
October 2025
ISACA CSRCybersecurity Awareness

PR Personnel — Project Safe Space

Joined the PR & Networking Crew for Project Safe Space (ISACA USJ CSR initiative), focused on creating awareness and fostering safe, supportive digital communities. Contributed to Phase 1 at St. Paul's Milagiriya School, engaging 30+ students.

dHack 25 Finance Committee
2025
S@ITEvent Management

Finance Committee — dHack '25

Joined the Finance Organizing Committee for dHack '25, a Designathon organized by S@IT, University of Sri Jayewardenepura. Responsibilities included financial planning, sponsorship acquisition, and fund management to ensure the smooth execution of this innovation event.

Dialog Axiata Field Visit
April 2026
Industry VisitDialog Axiata

Industry Field Visit — Dialog Data Center & Media Hub

Visited the Dialog Axiata PLC Data Center and Dialog TV Media Hub. Observed enterprise-level server infrastructure, advanced cooling systems, high-availability setups, and television broadcasting processes.

WiCyS Cyber Handshake
February 2026
WiCySCommunity

Cyber Handshake Event

Participated in Cyber Handshake, the first in-person community event organized by Women in CyberSecurity (WiCyS) Sri Lanka, promoting collaboration, inclusion, and networking among women in tech.

Cybersecurity in Action
January 2026
ISACAKnowledge Sharing

Cybersecurity in Action Session

Engaged in a valuable knowledge-sharing session hosted by ISACA USJ and facilitated by Mr. Namodh E. (CISSP, OSCP) to bridge the gap between theory and real-world practice.

Cyber Summit 2025
2025
ISACASummit

Cyber Summit 2025 — Participant

Thrilled to have participated in Cyber Summit 2025 organized by the USJ ISACA Student Group — a remarkable event focused on the future of cybersecurity and emerging industry trends. Engaged with inspiring experts and peers passionate about the field.

IFS Field Visit
December 2024
Industry VisitIFS

Industry Field Visit — IFS R&D International

Participated in an insightful industry visit to IFS R&D International (Pvt) Ltd organized by the Department of IT, USJ. Explored enterprise software development processes and gained real-world exposure to industry practices.

Motivational Speech
Late 2024
Public SpeakingCommunity

Motivational Speech — Student-Parent Gathering

Had the privilege of delivering a motivational speech at a student-parent gathering, balancing inspiring messages for a younger audience while sharing meaningful insights for parents. Sharpened communication and public speaking skills in the process.

CRYPTX 2.0 Designathon
2025
HackathonDesign Thinking

2nd Runners-Up: CRYPTX 2.0

Secured Second Runners-Up at the CRYPTX 2.0 Designathon (Faculty of Technology, USJP). Challenged to solve complex problems and transform ideas into impactful design solutions over multiple competitive rounds.

D'Hack 2025 Winners
2025
1st PlaceUI/UX

Winners — D'Hack 2025 Redesign Category

Team Uxperts emerged as Winners of the Redesign Categoryat D'Hack 2025 (S@IT, USJP). Collaborated with teammates Avindi Getawakanda and Nethini Bandara to deliver a creative, impactful design solution under competition pressure.

A/L Prize Giving
2022/23
AcademicIsland Rank

G.C.E. A/L — Island Rank 16, District Rank 6

Recognized at school's Prize Giving 2022 for Academic Excellence in the Commerce Stream. Secured Island Rank 16 and Colombo District Rank 6 at the G.C.E. (A/L) 2022/23 examination — a result of consistent discipline and dedication.

Get In Touch

Let's Connect

I am actively seeking internship opportunities in Security Operations (SOC) and Cyber Threat Intelligence. Whether you have a position available or just want to discuss cybersecurity, I'd love to hear from you!

SeekingSOC / CTI Internships
Based inSri Lanka · Open to Remote
Response timeWithin 24 hours