GRC-Focused Cybersecurity Professional · Northern Virginia / DC

Animation grad building a path to GRC Analyst — one cert and one diagram at a time.

I spent four years learning how to make complex ideas land for audiences who don't share your vocabulary. In GRC, that's not a soft skill — it's the job.

Let's Connect
Currently Cybersecurity Intern · Tysons Institute
Certification Google Cybersecurity Cert · Security+ in progress
Target Role GRC Analyst L1 · Hybrid or Remote

About

An unexpected path that makes complete sense.

I spent four years in art school teaching myself to make complex ideas land with people who don't share your vocabulary. Turns out, that's exactly what cybersecurity needs.

The moment I knew this field was it: I was designing the visual identity for my dad's cybersecurity training initiative — logos, mascots, the whole brand. To do the work right, I had to understand what I was designing for — red teams, blue teams, purple teaming. So I read everything. And somewhere in that research, something clicked. The skill I had spent four years building — translating technical complexity into something a non-expert can feel, not just understand — is the core skill of GRC. I wasn't changing directions. I was pointing my existing skills at a new problem.

I'm now a Cybersecurity Intern at Tysons Institute, working through their SOC Tier I Certificate program and getting real exposure to security operations every day. I hold my Google Cybersecurity Certificate and I'm actively studying for CompTIA Security+, targeting July 2026. I write a blog called Cyber Nerd Surf on Medium, where I document what I'm learning each week — because explaining something in writing is the best test I know for whether I actually understand it.

I'm a tactile learner. My favorite study moment so far was physically dissecting a Dell Optiplex — pulling out every component and touching the hardware I'd only ever seen in textbook diagrams. That's how I learn: hands in it.

My target role is GRC Analyst in the Northern Virginia / DC area. If you're building a team that needs someone who can translate technical risk into language executives and auditors can act on — let's talk.

Skills & Certifications

What I bring to a GRC team.

I organize my skills honestly — distinguished by what I'm actively using, actively studying, and what I have foundational knowledge of. No overclaiming.

Key: Actively Using Studying Foundational

Certifications

  • Google Cybersecurity Certificate Active
  • SOC Tier I (Tysons Institute) Active
  • CompTIA Security+ Studying

Security & GRC

  • Security Operations (SOC) Active
  • Risk & Compliance Fundamentals Studying
  • SIEM Concepts Studying
  • Wireshark Studying
  • Active Directory Foundational
  • Linux CLI Foundational

Transferable Skills

  • Visual communication of technical concepts Active
  • Technical writing & documentation Active
  • Client-facing delivery Active
  • Iterative process management Active

Tools & Platforms

  • Adobe Creative Suite Active
  • Figma Active
  • GitHub Active
  • Google Workspace Active
  • Cloudflare Pages Active

Blog

Cyber Nerd Surf

I document what I'm learning each week — in writing, because that's how I find out whether I actually understand it. Published on Medium.

Published on Medium · Weekly

@ApurvaCyberSec

Security operations, GRC concepts, learning in public — from someone a few steps behind you (or ahead).

Read the Blog →

Contact

Let's build something together.

I'm open to GRC Analyst roles and conversations in the Northern Virginia / DC area — hybrid or remote. If you're building a team that needs someone who can make technical risk make sense, I want to hear about it.

↗ LinkedIn ↗ GitHub ↗ Medium Blog

Actively looking · Open to hybrid and remote · Targeting full-time GRC Analyst role as Security+ completes (July 2026)