Skip to content
View Lalith012's full-sized avatar
  • Hyderabad, India

Block or report Lalith012

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Lalith012/README.md

Lalith Basavaraju

Cloud Security Engineer — Detection Engineering · Adversary Emulation · Compliance Automation · Multi-Cloud SecOps


NovaPay — End-to-End Cloud Security Program

I designed and built a complete cloud security stack for a fictional fintech (NovaPay) operating across AWS and Azure under three regulatory jurisdictions. Each project below represents a layer of that program, progressing from detection through governance to multi-cloud compliance operations.

Detection & Offense

Project What It Does Stack
AWS Detection Lab Real-time detection pipeline across CloudTrail, GuardDuty, and Splunk — 5 MITRE ATT&CK techniques detected, cross-cloud equivalents documented Python, AWS, Splunk, Sigma
Cloud Attack Simulation Lab Full kill chain adversary emulation using Pacu and ScoutSuite — 8 ATT&CK techniques, detection gap analysis with Navigator JSON Pacu, ScoutSuite, MITRE ATT&CK

Governance & Compliance

Project What It Does Stack
Multi-Account Security Lab AWS Organizations with SCPs, delegated GuardDuty + Security Hub admin, full Terraform IaC Terraform, AWS Organizations
Cloud Compliance Scanner Automated scanner evaluating 12 AWS Config controls against GDPR, UAE PDPL, and Essential Eight — GitHub Actions CI/CD with OIDC, zero static credentials Python, AWS Config, GitHub Actions

Multi-Cloud Operations

Project What It Does Stack
NovaPay Security Operations Unified AWS + Azure compliance scanner with cross-cloud delta analysis — 24 controls across both providers, single-pane regulatory dashboard Python, AWS, Azure, Defender for Cloud

Why This Portfolio Exists

Single-cloud detection labs are common. What's uncommon is connecting detection → offense validation → governance → compliance → multi-cloud operations into one coherent program where each layer builds on the last. The NovaPay narrative ties these projects into the kind of security stack a real fintech would need — not isolated demos, but an integrated system.


Certifications

  • CompTIA Security+

Contact

[email protected]

Pinned Loading

  1. aws-detection-lab aws-detection-lab Public

    AWS native detection engineering and threat hunting lab - CloudTrail, GuardDuty, Security Hub, Python detection engine, MITRE ATT&CK mapped

    Python

  2. cloud-attack-simulation-lab cloud-attack-simulation-lab Public

    AWS cloud attack simulation lab — kill chain documentation, detection gap analysis, and MITRE ATT&CK mapping

    HTML

  3. multi-account-security-lab multi-account-security-lab Public

    Enterprise-grade multi-account AWS security architecture using Terraform, AWS Organizations, SCPs, and centralized security monitoring

    HCL

  4. cloud-compliance-scanner cloud-compliance-scanner Public

    Automated cloud compliance scanner mapped to GDPR, UAE PDPL, and Australia Essential Eight — Python, AWS Config, GitHub Actions

    Python

  5. novapay-security-operations novapay-security-operations Public

    Unified multi-cloud security operations platform — AWS + Azure compliance posture across GDPR, UAE PDPL, and Essential Eight frameworks

    Python