Hi, I'm Sandhya Cybersecurity Specialist

Purple Team expert combining offensive security techniques with digital forensics precision to protect and defend against evolving cyber threats.

3+
Years Experience
Big 4
Firm Experience
KPMG
Current Role
Purple
Team Specialist

Technical Expertise

Comprehensive skill set spanning digital forensics, penetration testing, and security operations

🔍

Digital Forensics

Expert in evidence collection and analysis

EnCase FTK Cellebrite Falcon Neo NUIX Relativity
⚔️

Penetration Testing

Offensive security and exploitation

Nmap Burp Suite Metasploit SQLMap Gobuster Wireshark
🛡️

Security Frameworks

Industry-standard methodologies

MITRE ATT&CK OWASP Top 10 Threat Modeling Risk Assessment
💻

Technical Skills

Programming and system administration

Python Git Linux Network Security Web Security

Professional Experience

Building expertise at the intersection of forensics and offensive security

Consultant – Risk Advisory & Digital Forensics

KPMG Assurance & Consulting Services LLP

Sep 2022 – Present

Digital Forensics & E-Discovery

  • Led digital evidence collection & analysis for legal cases using EnCase, FTK, Falcon Neo, and Cellebrite, ensuring chain of custody
  • Designed and executed e-discovery strategies for high-profile investigations, covering data collection, processing, review, and production
  • Conducted indexing and processing with NUIX to optimize review efficiency and data reduction
  • Performed financial transaction and cheque reviews using Relativity
  • Collaborated with clients and legal teams to define scope, provide technical advisory, and deliver investigation reports
  • Developed SOPs for forensic workflows to enhance operational consistency
  • Mentored junior analysts in digital forensic tools and processes

Offensive Security & Lab Work

  • Built and configured penetration testing lab with DVWA, Metasploitable, and Kali Linux
  • Performed vulnerability scans and exploitation using Nmap, Burp Suite, SQLMap, and Metasploit
  • Created Python scripts for reconnaissance automation and proof-of-concept exploits

Intern – Digital Forensics

KPMG Assurance & Consulting Services LLP

Mar 2022 – Aug 2022
  • Coordinated with developers in establishing branching labeling/naming conventions using Git
  • Assisted in forensic imaging and investigation of multiple device types
  • Supported senior consultants in mobile, network, and endpoint forensics
  • Operated various forensic tools for data acquisition and analysis

Projects & Achievements

Hands-on security research and recognized contributions

DVWA Penetration Test

Identified SQL Injection, XSS, and Broken Authentication vulnerabilities in a simulated web application environment. Provided comprehensive mitigation strategies and documented attack vectors.

Network Penetration Lab

Conducted full-cycle penetration test on Metasploitable2, including enumeration, exploitation, and privilege escalation. Documented complete attack chains and remediation steps.

Incident Response Simulation

Captured malicious network activity with Wireshark and performed detailed forensic analysis to trace attacker steps, creating comprehensive incident response documentation.

KPMG Recognition

Recognized for exceptional accuracy and speed in evidence handling, contributing to successful litigation outcomes in high-stakes investigations for major clients.

Education

Strong academic foundation in cybersecurity and forensic science

M.C. Cyber Security

November 2020 – August 2022

CGPA: 8.26

B.Sc. Forensic Science

July 2017 – October 2020

CGPA: 8.41

Intermediate Education

June 2015 – March 2017

96.5%

Secondary Education (SSC)

2015

CGPA: 8.8

Let's Connect

Interested in cybersecurity collaboration or consulting? Reach out!