Career Profile
I am currently a software engineer III at Duo Security. Duo provides a cloud-based access protection solution for companies like Uber, X, Meta, Airbnb and organizations worldwide. Clients use its solution for adaptive authentication, BYOD (bring your own device) security, cloud security, endpoint security, mobile security, and two-factor authentication. Previously, I was an AI Consultant at Deloitte. I got a lot of exposure with wide ranges of clients and I helped them design their AI Pipeline. Before Deloitte, I was a cyber security engineer at Sports Engine (owned by NBC Sports) where I designed a safe infrastructure to protect networking systems from potential hackers and cyber-attacks. I graduated from St. Olaf with dual-degrees in Computer Science and Mathematics. I am currently pursuing my Masters at NYU while working full-time. Cryptography and Machine Learning are my top interests.
I grew up in southern Nepal and studied at Budhanilkantha School. Having left home at an early age, I had the opportunity to live with people who differ in terms of political views, financial status, religious views, gender identities, citizenship status and a lot more. My experiences have shaped me to become a kind & genuine mission-driven person and a developer.
Experiences
I am Software Engineer III on the Data Engineering team, working on Duo’s threat detection offerings. Developing software to proactively detect anomalous behavior within our customers accounts. This is accomplished by building out a modern data pipeline (Python, Kafka, Elasticsearch), integrating with our Data Science team’s machine learning algorithms (EMR, Spark, Scala), and surfacing it via API and UI (Python, React, D3).
- Build new features to support RBA (Risk Based Authentication) used by 1M+ users
- Build secure APIs and design database architecture to help millions of customers authenticate using Duo Mobile app
- Work with product managers and UI/UX designers in an agile environment to deliver value to our customers.
I am a tech consultant in the Strategy and Analytics offering at Deloitte. I work with tech, health care, life sciences and multiple other clients to help them design their data engineering pipeline and make the best out of their datas.
- Modernized the hiring platform by desiging a secure Serverless app (Python and React) and deployed it on AWS
- Designed the ETL Pipeline using Airflow, Redshift and other DE tools and also deployed ML models on AWS Sagemaker
My work spans multiple skill sets, from Security Engineer to Operations to Software Developer.
- Leverage security tools and services to protect customer data including intrusion detection systems (ThreatStack), web application firewalls, vulnerability scanners (Qualys), static code analysis tools (Veracode) and more.
- Incident Response Team - Investigated a customer-affecting security incident and tracked down the cause of the incident within 10 hours and shared the results with the team
- Follow best security practices - Defense in Depth, Least Priviledge, Separation of duties, SIEM for event logging
- In depth mathematical knowledge of Symmetric Encryption (AES-256 used by KMS and other block ciphers) and Assymetric Encryption (Public and Private Cryptography)
- Configure, deploy and manage AWS resources using Infrastructure automation tools like Terraform and Cloudformation
- Create VPC’s, having multiple AZ’s, Public and Private subnets, Components like IGW, Route tables, NAT instance, Bastion Host, Route 53, Network ACLs, Security groups.
- Write custom Chef cookbooks to deploy and manage servers in AWS OpsWOrks
- Created packer templates to build EC2 AMI and wrote Chef InSpec tests to verify the installed packages and libraries
- Migrated the existing Payments Application build on NodeJS (deployed on Opswork) to Kubernetes cluster (EKS)
- Analyzed 10M+ logs in Splunk and added exception for WAF Rules to allow the false positives blocked by the Cloudflare WAF
I got an opportunity to work with mindful, intelligent and humble software developers. Small team environments and pair programming were common. While I worked on a wide range of projects, I focused in the security area at Kipsu.
- Add functionalities on the web application built with Codeigniter, a PHP framework & ActiveRecord + SQL
- Detect security vulnerabilities (OWASP Top 10) on the application and fix them
- Configure ansible-playbooks to automate application deployment in AWS
- Write test plans, design documentations and practice Scrum, an agile framework
I was the grader for Hardware Design Class and I graded assignments for 35 students. Apart from being a grader, I also served as an IPv6 researcher. After receiving a training on IPv6, I set up a virtual environment to understand the differences between IPv4 and IPv6.
- Developed a python script to auto grade assignments of students
- Inspect packets and network traffic using Wireshark & understand the packet headers in depth
- Set up IPv6 lab in virtual environment for testing and find the differences between IPv4/IPv6 before deploying Ipv6
IDInsight provides information-based decisions to financial instituations to avoid fraud losses, reduce operational costs and improve customer experiences.
- Developed scripts in Python to standardize U.S street addresses as recognized by the USPS (United States Postal Service)
- Built five models using machine learning algorithms to predict the addresses and compared the error rate
- Enhanced my knowledge on Apache server, PostGIS, PostgreSQL and C++ code debugging skills
As a technology Consultant, I helped students diagnose the network, printer, hardware failure or software related issues on their personal computers. Apart from that, I provided trainings to new technology consultants on the basic troubleshooting steps.
- Fix network related problems. For example- IP Conflict, DNS failures or simple Wi-Fi troubleshooting
- Fix printer issues