GRC-Focused Cybersecurity Professional · Northern Virginia / DC

Animation grad building a path to GRC Analyst — one cert and one diagram at a time.

I spent four years learning how to make complex ideas land for audiences who don't share your vocabulary. In GRC, that's not a soft skill — it's the job.

Let's Connect Read the blog →
Currently Cybersecurity Intern · Tysons Institute
Certification Google Cybersecurity Cert · Security+ in progress
Target Role GRC Analyst L1 · Hybrid or Remote
Apurva Bakshi — GRC Cybersecurity Professional

About

An unexpected path that makes complete sense.

I spent four years in art school teaching myself to make complex ideas land with people who don't share your vocabulary. Turns out, that's exactly what cybersecurity needs.

The moment I knew this field was it: I was designing the visual identity for my dad's cybersecurity training initiative — logos, mascots, the whole brand. To do the work right, I had to understand what I was designing for — red teams, blue teams, purple teaming. So I read everything. And somewhere in that research, something clicked.

The skill I had spent four years building — translating technical complexity into something a non-expert can feel, not just understand — is the core skill of GRC. I wasn't changing directions. I was pointing my existing skills at a new problem.

I'm now a Cybersecurity Intern at Tysons Institute, working through their SOC Tier I Certificate program and getting real exposure to security operations every day. I hold my Google Cybersecurity Certificate and I'm actively studying for CompTIA Security+, targeting July 2026. I write a blog called Cyber Nerd Surf, where I document what I'm learning each week — because explaining something in writing is the best test I know for whether I actually understand it.

I'm a tactile learner. My favorite study moment so far was physically dissecting a Dell Optiplex — pulling out every component and touching the hardware I'd only ever seen in textbook diagrams. That's how I learn: hands in it.

My target role is GRC Analyst in the Northern Virginia / DC area. If you're building a team that needs someone who can translate technical risk into language executives and auditors can act on — let's talk.

Skills & Certifications

What I bring to a GRC team.

I organize my skills honestly — distinguished by what I'm actively using, actively studying, and what I have foundational knowledge of. No overclaiming.

Key: Actively Using Studying Foundational

Certifications

  • Google Cybersecurity Certificate Active
  • SOC Tier I (Tysons Institute) Active
  • CompTIA Security+ Studying

Security & GRC

  • Security Operations (SOC) Active
  • Risk & Compliance Fundamentals Studying
  • SIEM Concepts Studying
  • Wireshark Studying
  • Active Directory Foundational
  • Linux CLI Foundational

Transferable Skills

  • Visual communication of technical concepts Active
  • Technical writing & documentation Active
  • Client-facing delivery Active
  • Iterative process management Active

Tools & Platforms

  • Adobe Creative Suite Active
  • Figma Active
  • GitHub Active
  • Google Workspace Active
  • Cloudflare Pages Active

Experience

Where the background becomes the skill set.

Every role I've held has sharpened a skill that maps directly onto GRC work — structured communication, documentation discipline, and making technical complexity legible to people who need to act on it.

Mar 2025 – Present

Vienna, VA

Cybersecurity Intern

Tysons Institute

  • Deploy and configure virtual machines on Windows and Linux to execute structured security labs, building hands-on SOC Tier I skills in network monitoring, threat triage, and incident fundamentals.
  • Produce a weekly technical blog translating complex cybersecurity concepts into accessible language for practitioner and non-technical audiences — directly exercising the communication core of GRC.
  • Working toward SOC Tier I certificate covering SIEM fundamentals, security operations workflow, and defense-in-depth principles.

Jul 2024 – Present

Remote

Graphic Designer

Creative Repute

  • Manage multi-stakeholder deliverables from intake to delivery, applying structured scope definition, iterative review cycles, and deadline discipline — the same process rigor GRC project work demands.
  • Translate client brand standards into documented design specifications that govern execution across campaigns — building a policy-to-practice documentation instinct.
  • Collaborate directly with clients to prototype and deliver a website for a city-wide public initiative, managing requirements, revisions, and final handoff.

May 2023 – Aug 2023

Remote

Art & Social Media Intern

Creative Repute

  • Developed visual and written materials for three internal employee onboarding training courses — directly parallel to GRC security awareness program development and policy communication.
  • Produced social content within documented brand governance standards, building structured workflow habits across a distributed team.

Sept 2021 – Mar 2023

Philadelphia, PA

Student Ambassador

Moore College of Art and Design

  • Served as primary communication liaison for prospective students — conducting structured information sessions, managing correspondence, and supporting admissions documentation workflows.
  • Developed stakeholder communication skills across written, verbal, and event-based channels for diverse audiences.

Apr 2019 – Present

Stephens City, VA

Associate

Walmart

  • Trained four new team members on inventory systems and operational procedures while maintaining compliance with transaction and fulfillment processes.

Education

BFA in Animation and Game Arts

Minor in Business

Moore College of Art and Design · Philadelphia, PA

Graduated 2024  ·  GPA: 3.94 / 4.0  ·  Summa Cum Laude

AFA in Visual Arts

Northern Virginia Community College · Sterling, VA

Graduated 2021  ·  GPA: 3.87 / 4.0  ·  Presidential Scholar  ·  Dean's List 2019–2021

Awards & Honors

Request Full Resume ↗

Or connect on LinkedIn

Blog

Cyber Nerd Surf

I document what I'm learning each week — in writing, because that's how I find out whether I actually understand it.

Class & Lab Notes · Log 05

You Are The Admin Now

User accounts, permissions, PowerShell, and what I actually learned from breaking things in Windows — on purpose.

May 2025

 Cyber Nerd Surf

The Lock That Thinks

Encryption demystified — from Caesar ciphers to TLS handshakes, and why understanding the math matters for GRC.

Apr 2025

 Class & Lab Notes · Log 04

The OS Paradox

Operating systems are the thing that's always there and never noticed — until something goes wrong. Here's what I figured out.

Mar 2025
View all posts

Contact

Let's talk about working together.

I'm actively looking for GRC Analyst roles in the Northern Virginia / DC area — hybrid or remote. If you're building a team that needs someone who can make technical risk make sense to the people who need to act on it, reach out.

✉ Email Me ↗ LinkedIn ↗ GitHub ↗ Blog

Actively looking · Open to hybrid and remote · Targeting full-time GRC Analyst role as Security+ completes (July 2026)