Work Experience

Professional roles and key contributions

Internship

GdpLabsYogyakartaJul 2025 – Dec 2025

Designed and deployed an automated vulnerability assessment system using open-source frameworks, streamlining reconnaissance and security testing across 1000+ web applications.
Developed custom scanning workflows integrating multiple tools to detect vulnerabilities aligned with OWASP Top 10, improving testing efficiency by 70%.
Conducted security assessments that identified 7 critical vulnerabilities and delivered validated remediation recommendations.
Integrated MCP (Model Context Protocol) with LLM to enhance automated vulnerability triage and accelerate security analysis.

Internship

GdpLabsYogyakartaDec 2024 – Mar 2025

Implemented SIEM (Wazuh) for real-time log monitoring, configuring rules and dashboards across 4 systems.
Evaluated secret-management platforms to strengthen credential handling and API key protection, reducing exposure risk by 80%.
Built and deployed SOAR workflows to automate incident handling, improving SOC response time by 90%.

MSIB

PT Digital Forensic AnalystYogyakartaSep 2024 – Nov 2024

Performed forensic acquisition and analysis using industry-standard methodologies.
Analyzed Dark Web activities and server logs to detect suspicious behavior and trace malicious actions.
Documented forensic findings and supported investigative reporting.

Part-time

Yogyakarta State UniversityYogyakarta, IndonesiaJan 2024 – Dec 2024

Implemented Wazuh SIEM across 20 university servers to enhance real-time threat visibility.
Conducted penetration testing on critical academic systems to reduce security risks and strengthen data protection.
Validated vulnerability reports from bug hunters, ensuring accuracy before escalation.