Dark Mode

Available for internships and Full-time opportunities

Harsh Jannawar

I'm an AI enthusiast

Master's student in Cybersecurity Engineering at UW Bothell, passionate about AI security, penetration testing, cloud security, and building resilient systems to safeguard critical infrastructure.

View Projects → Get In Touch

harsh@portfolio ~

$ cat about_me.txt

Passionate about protecting organizations through offensive and defensive security. With hands-on experience in penetration testing, AI-powered phishing detection, and cloud security hardening, I aim to blend technical depth and innovation to create safer digital ecosystems. When not working on projects, I enjoy competing in CTFs and exploring the latest in AI security.

My Skill Set

Python

React

Git

AWS

SQL

Technical Skills

✓ Vulnerability Assessment
✓ Penetration Testing
✓ Security Governance

Tools & Technologies

✓ Burp Suite
✓ Wireshark
✓ Postman

Cloud & Platforms

✓ AWS
✓ Linux
✓ Docker

Projects

AI Security RAG LLM Ops Python

SOC RAGBot: Secure Incident Investigator

New

Advanced AI-powered SOC assistant using Retrieval-Augmented Generation to deliver secure, citation-aware incident investigation reports.

🔍

Advanced RAG Engine: Citation-aware retrieval with enritched metadata and source binding to prevent hallucinations.

⚡

Optimization: Semantic caching (latency <0.3s) and multi-model orchestration (GPT-4o & 4o-mini).

🛡️

Fortified Security: Deterministic guard layer for prompt injection and jailbreak detection.

📋

Auditing: Enterprise-grade audit & replay layer capturing full interaction logs for compliance.

NLP Email Security Python

Inbox Guard: Spam & Phishing Detection

Developed a lightweight email security tool and extension to classify and block spam and phishing emails using machine learning.

Used NLP and text classification with scikit-learn
Trained on labeled spam/phishing datasets
Deployed as a Flask web app along with extension

Linux Real-time Cloud

LinuxSentinel

OS telemetry tool is a custom monitoring solution built for Linux systems. It monitors all the subsystems and sends real-time logs directly to the cloud storage.

Unables real-time tracking of critical subsystems, such as network activity, file system changes, memory usage, and input/output operations.
securely transmits all collected telemetry data directly to the cloud for storage and analysis

Security Tools Automation Red Teaming

RTeamF

Automated domain scanning tool that integrates subdomain discovery, vulnerability detection, and CVE matching into a single pipeline.

Live domains checkand Open Port Scanning
Vulnerability Detection and Technology Stack Identification
CWE and CVE Retrieval along with Exploit Database ID's.

Python AV scanning Hosting

DRedrive

DRedrive is a secure USB operations tool featuring ClamAV scanning, local file hosting, and drive formatting via an interactive GUI.

Scan USB drives for malware with integrated ClamAV
Host and share files securely over a local network
Format and manage drives without repeated unplugging

Experience

June 2025 – Present

AI Cybersecurity Engineering Intern

Secure AIs

Researched and implemented LLM API safety mechanisms and prompt-injection defense filters, improving system resilience against adversarial misuse and reducing risk of successful injection attempts by ~30%.
Performed penetration testing on the company’s web applications, identifying and remediating 20+ vulnerabilities (including critical/high-severity bugs).

ISO27001 Risk Assessment RBAC Logging

June 2023 – May 2024

Security Analyst Intern

SecureThings, Pune, India

Conducted penetration testing on 5+ web applications using tools like Nmap and Burp Suite, identifying and remediating 30+ vulnerabilities and significantly enhancing the organization’s security posture.
Secured and optimized AWS cloud infrastructure by automating IAM policy enforcement, hardening EC2 instances, and implementing S3 access controls: reducing misconfigurations by 25% and improving compliance posture by 20% through continuous monitoring and remediation.

VAPT Python Cloud AWS NIST

Jun 2022 - July 2023

Cloud Computing Intern

Pune Metro Rail Project - India

Configured AWS cloud infrastructure using services like EC2, EFS, CloudWatch, GuardDuty, and Cognito to optimize performance and ensure security across various environments, contributing to a 15% increase in system efficiency.
Monitored cloud infrastructure for performance metrics and security compliance, utilizing CloudWatch to identify bottlenecks and implementing improvements that reduced response times by 15%.

Cloud Security Compliance Monitoring AWS

Achievements

CTF Competitions

Winning multiple Capture The Flag (CTF) competitions, showcasing skills in cybersecurity and problem-solving.

Platform Recognition

Ranked among the top 1% in TryHackMe, demonstrating skills in cybersecurity challenges.

Leadership Experience

Led a team to a top placement in an IEEE hackathon, organized technical events, and mentored peers.

Professional Certifications

CompTIA Security+, AI Hacking (TCM Security), Ethical Hacking (EC-Council), Oracle Cloud Infrastructure Foundations

Harsh Jannawar

My Skill Set

Technical Skills

Tools & Technologies

Cloud & Platforms

Projects

SOC RAGBot: Secure Incident Investigator

Inbox Guard: Spam & Phishing Detection

LinuxSentinel

RTeamF

DRedrive

Experience

AI Cybersecurity Engineering Intern

Secure AIs

Security Analyst Intern

SecureThings, Pune, India

Cloud Computing Intern

Pune Metro Rail Project - India

Achievements

CTF Competitions

Platform Recognition

Leadership Experience

Professional Certifications

Let's Chat

Harsh Jannawar

Resume