Rohitash Kumar

Staff Threat Researcher @ Zscaler

Jodhpur, Rajasthan, India

9799838552 kulannothing10@gmail.com linkedin.com/in/rooks00
Download PDF

Summary

Security Researcher and DevSecOps practitioner with 4+ years of experience in identifying vulnerabilities, implementing mitigation strategies, and enhancing security measures. Skilled in automating compliance workflows, building CI/CD security pipelines, and driving threat research initiatives. Always looking for opportunities to learn new methodologies for vulnerability assessment and security automation.

Skills

Container ScanningCI/CD SecurityVulnerability ManagementDevSecOpsCompliance AutomationVulnerability Management AutomationThreat Detection & ResponseCloud Security (AWS, Azure)Deception TechnologiesIdentity Threat DetectionWindows Security / ASRDocker & Container Security

Experience

Zscaler

4 years 5 months
Staff Threat Researcher December 2024 - Present
  • Leading DevSecOps initiatives, automating compliance scans and vulnerability management workflows
  • Building CI/CD security pipelines for container scanning and infrastructure hardening
Sr. Security Researcher August 2024 - December 2024
Security Researcher April 2023 - August 2024
  • Contributed towards Identity Threat Detection and Response (ITDR) by building ETW based detections
  • Built POCs for Attack Surface Reduction (ASR) on Windows endpoints
  • Co-related and analysed identities across multiple Zscaler products to map out threat surface
Associate Security Researcher November 2021 - April 2023
  • Helped enhance deception capabilities by creating detection rules
  • Created Azure Sentinel Workbooks to monitor threats against customers and provide real-time alerts on Slack using Logic Apps
  • Drove deployment of honeypots across multiple AWS regions to gather threat intel and IOCs

Deloitte

Risk Advisory Intern August 2021 - November 2021

Pentester Academy

Research Intern October 2020 - June 2021
  • Creation, testing, and exploitation of exam challenges for Cloud Security, Container Security, and Web application security bootcamps
  • Researching new CVEs and replicating them in a Docker environment
  • Testing and maintenance of labs and AWS resources

Cyberops Infosec LLP

Summer Intern May 2019 - July 2019
Jaipur, Rajasthan
  • Explored various fields in Information Security with hands-on experience
  • Developed plans to safeguard computer files against unauthorized modification, destruction, or disclosure

Certifications

Education

JIET Group of Institutions Jodhpur

Bachelor's of Technology, Computer Science · 2017 - 2021

Army Public School Jodhpur

High School, Computer Science · 2005 - 2017