Shreyans Bhatt

Key Achievements

• ▹ Adversarial ML lab: built the full attack lifecycle against a real classifier, data poisoning by label flipping, an L-infinity evasion attack at the decision boundary, and a Madry-style adversarial-training defense, all mapped to MITRE ATLAS and the OWASP ML Top 10. Repo: adversarial-ml-attacks-defenses.
• ▹ Prompt injection and EchoLeak: attacked a defended RAG chatbot across four escalating classes, ending in an indirect injection that exfiltrates data through a markdown image URL, the same mechanism as the real M365 Copilot EchoLeak (CVE-2025-32711). Repo: rag-prompt-injection-echoleak.
• ▹ MCP security, two ways: a deliberately vulnerable Model Context Protocol server with command injection and tool-description poisoning, defended with a Docker MCP Gateway and a custom JSON-RPC runtime interceptor; plus a side-by-side vulnerable vs hardened pair proving each control. Repos: mcp-security-docker-gateway, mcp-server-security.
• ▹ Membership inference and privacy: a Shokri-style shadow-model attack (MITRE ATLAS AML.T0024) against an overfit model, benchmarked against four defenses including DP-SGD via Opacus and SISA sharded training for machine unlearning. Repo: membership-inference-attack.
• ▹ LLM access governance: a deny-by-default Open Policy Agent (Rego) policy controlling who may call which model with what data, paired with a garak red-teaming harness for jailbreaks and prompt injection. Repo: llm-access-governance-opa-garak.
• ▹ AI GRC compliance mapper: a declarative engine that maps technical controls to ISO/IEC 42001, the EU AI Act high-risk articles, and NIST AI RMF, then prints an auditor-ready coverage and gap report. Repo: ai-grc-compliance-mapper.
• ▹ AI code provenance: a git commit-msg hook that detects AI authorship, writes an append-only ledger, and stamps a signed trailer, with a CI gate that fails any AI-attributed commit missing its record. Built for EU AI Act Article 12 logging. Repo: ai-code-provenance.
• ▹ Authored a pre go-live red team assessment plan for an enterprise multi-agent SDLC platform, applying MITRE ATLAS, OWASP LLM Top 10 v2.0, OWASP Agentic Top 10, CSA MAESTRO, and STRIDE for AI to test excessive agency, data isolation, and orchestration integrity.

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Deeply involved in re-platforming and modernization of EPSI, Wood Mackenzie's on-demand modeling platform for the short-term renewable energy market
• ▹ Collaborated with cross-functional teams to deliver ARDs, Tech Radar initiatives, and C4 diagrams ensuring architectural alignment and innovation
• ▹ Built and integrated Azure Event Hubs, API Management & Apache Kafka for scalable event streaming
• ▹ Delivered PoCs on API Gateway Architecture (APIM Upstream), Early Authentication, and Rate Limiting—establishing reusable patterns for scalable API security
• ▹ Presented EPSI Architecture Review to stakeholders, aligning platform modernization with long-term secure design goals
• ▹ Integrated performance enhancements reducing system latency by 30%
• ▹ Participate in GlobalLogic's Architecture Guild sharing insights on modern architectural trends
• ▹ Help engineering team with feasibility checks through targeted, precise, and demonstrable Proof of Concepts

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Founded Cyron Intelligence, a research-led cybersecurity firm, and architected cyron.io, its AI-powered API security platform protecting HTTP, WebSocket, and gRPC traffic.
• ▹ Designed the iris agent: a single Docker container that attaches at the Linux kernel using eBPF, auto-discovers live API endpoints, and needs zero code changes or application restarts.
• ▹ Built on a 'mirror, never intercept' model so analysis runs out-of-band with no added latency on the live request path, while still allowing kernel-level blocking of confirmed threats.
• ▹ Reached roughly 2ms average detection time by learning each API's normal behavior over a 24-hour baseline instead of relying on static signatures.
• ▹ Added 'System 2 Thinking', an LLM-based forensic layer that explains every flagged threat in plain English, applied only to ambiguous cases so cost and latency stay low.
• ▹ Covered the OWASP API Security Top 10 in practice: BOLA, broken authentication, credential stuffing, JWT attacks, mass assignment, business-logic fraud, and unrestricted resource consumption.
• ▹ Shipped privacy by design: raw payloads are never stored, only metadata is extracted then discarded, with EU hosting and on-premise or white-label options for regulated customers.
• ▹ Offer security posture assessments and STRIDE / MAESTRO-style threat modeling, plus compliance readiness for ISO 27001, ISO 42001, SOC 2, EU AI Act, NIS2, GDPR, and PCI-DSS 4.0.

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Laid foundation of robust and reusable backend components and design patterns by creating Microservices decomposition and communication diagrams
• ▹ Defined branching strategies and proposed High-Level Architecture Designs adhering to Singapore government's high-security standards—IM8 and OWASP
• ▹ Actively participated in project steering committee guiding technical course through backlog grooming sessions and estimations
• ▹ Mentored 5+ developers, improving code quality by 20% and reducing feature delivery times by 25%
• ▹ Developed critical algorithms achieving 98% project functionality within deadlines, gaining client trust
• ▹ Designed database structure for all microservices and oversaw implementation
• ▹ Optimized backend-React integration, reducing API response time by 40% through efficient data flow strategies
• ▹ Maintained and enriched team's technical documentation for faster onboarding using Confluence

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Completed database design in record time for project kickstart
• ▹ Full ownership of the product on technical aspect with close collaboration with CTO
• ▹ Ownership of technical decisions including programming paradigms, deployment strategies, and data migrations
• ▹ Executed system architecture modeling with deep understanding of implications
• ▹ Designed required diagrams and workflows for team of programmers
• ▹ Demonstrated robustness of system architecture to technical stakeholders
• ▹ Implemented highly advanced POCs for MVP release demonstrating system capabilities to stakeholders
• ▹ Active participation in coding activities across web app, desktop application, mobile app, and cloud-based serverless functions
• ▹ Implementation of REST-based web service using XML/JSON bindings following Domain Driven Design

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Architected .NET-based microservices on Azure App Service with Kafka streaming and event-driven design
• ▹ Designed and implemented high-performance .NET 8 microservices with Azure Kubernetes Service (AKS) and Kafka event processing
• ▹ Spearheaded Beauty Tech Microservice design for L'Oreal, delivering scalable solutions with industry best practices
• ▹ Designed scalable product data platform blueprint using microservices and API-first strategy ensuring cross-system consistency across ERP, analytics, and e-commerce
• ▹ Built integration pipelines and harmonized product metadata across Azure and AWS services ensuring seamless ingestion and synchronization
• ▹ Optimized backend .NET Core APIs and improved Azure Service Bus/Kafka-based messaging performance by 40%
• ▹ Implemented functional deliverables using DDD, improving integration with client team achieving 95% success rate
• ▹ Achieved positive feedback consistently about superior code quality from client's leadership
• ▹ Demonstrated aptitude to learn Domain-Driven-Design, Railway-Oriented Programming, and Functional Programming concepts

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Received B2B Innovation Award for defining scalable microservices, increasing system reliability by 30%
• ▹ Awarded technical lead for organization's most rewarding B2B platform for extraordinary contribution in Test Preparation Interface module
• ▹ Executed responsibility for delivering quality features by actively participating in development activities, technical and functional grooming sessions
• ▹ Worked on establishing company's first DevOps implementations for different environments leading to production server
• ▹ Implemented Onion Architecture and Clean Design code for new microservices-focused API
• ▹ Played crucial role in upgrading the technical stack of the product
• ▹ Maintained Azure DevOps pipelines for different environments

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Proved technical feasibility of newly discovered AI-enabled Schema Manager solution by efficiently implementing and demonstrating POC to stakeholders achieving required scalability
• ▹ Achieved stakeholder approval by demonstrating Cloud-based & AI-enabled Schema Manager with 50% faster POC delivery
• ▹ Led the programming team of Schema Manager product to deliver the MVP under stipulated time
• ▹ Ensured high levels of quality in implemented code by following best practices for microservices and cloud-based scalability
• ▹ Architected scalable pipeline using Python, NLP, Scrapy, Azure PaaS, and CosmosDB
• ▹ Applied ANN/CNN models to support multilingual rendering across web and voice interfaces
• ▹ Performed task breakups, communicated timeframes with estimations, and mentored team members as technical lead

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Awarded Outstanding Performer of the Year 2018 for the planned transformation of legacy product to microservice-based solution
• ▹ Awarded Extra Miler for the quarter (Q4 2018) for outstanding performance
• ▹ Took responsibility to remove Silverlight technology, contributing to creation of required tools for new microservices
• ▹ Promoted as Module Leader responsible for Object Relation Models mapping between old and new systems
• ▹ Consciously implemented appropriate design patterns for supporting legacy code and new web API consumed by Angular clients
• ▹ Contributed to R&D on Dimensionality Reduction algorithm research and implementation
• ▹ Guided and mentored Junior Software Engineers to achieve targeted team performance
• ▹ Joined organization for migrating huge, complex legacy Tax filing system into new generation product

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Transformed legacy product to Microservice architecture with full ownership of technical components
• ▹ Took full ownership of .NET-based and open-source integration with migration plans
• ▹ Implemented Android mobile application using Android SDK for API level 29 with stylus pen support for handwritten doctor's prescriptions
• ▹ Developed automated facial detection through web camera integration using Windows SDK for in-patient enrollment feature
• ▹ Designed robust, reusable and secure workflows for maintaining highly integrated medical records
• ▹ Executed plan for systematic upgradations addressing trade-offs from MVP release phase
• ▹ Demonstrated high degree of professionalism by achieving quality implementations on pre-decided time
• ▹ Handled team of 10 members consisting of Senior and Junior engineers covering all aspects of SDLC and release management

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Joined organization predominantly as SSRS developer with strong C# knowledge
• ▹ Developed quality-driven code while maintaining existing Silverlight-based web application
• ▹ Implemented SSRS-based multilingual and customized reports
• ▹ Created multilingual SSRS reports by gaining entire system's SQL database knowledge
• ▹ Created new web APIs to support new features in single tenancy database environments with heterogeneous release versions
• ▹ Built indigenously developed rendering engine capable of designing input parameter controls dynamically
• ▹ Generated over 100 reports under various categories with multilingual parameter filtering

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Developed high-quality code for complex, high-performance eDiscovery Document Management Platform modules
• ▹ Integrated Big Data implementation with .NET-based Windows application using appropriate abstractions and interfaces
• ▹ Implemented highly efficient code for processing millions of records
• ▹ Contributed to development of attribute-based document search system for e-discovery solutions
• ▹ Helped junior developers with technical difficulties by removing technical bottlenecks
• ▹ Participated in Requirement Gathering and Analysis meetings and production release activities
• ▹ Developed eZREVIEW (Most Used Document Review Platform Worldwide) - Automatic Document Profiling module integrating .NET and Java algorithms
• ▹ Built server-side export and notification system enabling background processing without client wait time
• ▹ Created automated phrase detection for Solr integration and database search
• ▹ Developed eZVUE (Efficient data culling tool) - Multiple Load Flat File Import processing 500GB+ datasets efficiently

Tech Stack

Skills Applied (Project Depth)

Key Achievements

• ▹ Joined as intern and earned permanent role as dedicated .NET programming resource for German ERP development team
• ▹ Extended generic and flexible entity framework for product development following Object Oriented Principles
• ▹ Supported customers troubleshooting technical difficulties in server deployment and availability
• ▹ Developed web projects as individual contributor and deployed on regional servers
• ▹ Built Performance Management System (CRM-PMS) with web interface for Project & ToDos management
• ▹ Developed LEA+ WILKEN integration module for Outgoing Invoice using VSTO Word Bookmarks
• ▹ Created Invoice Template and Billing modules with editable/non-editable bookmark fields
• ▹ Implemented Dynamic Captions, Runtime Field Generation, Multicolumn Search, Resolution Independent Layout

Tech Stack

Skills Applied (Project Depth)