Blogs

Panel on hiring trends: remote vs hybrid, skill signals, and role titles that map to real work.
Portfolio and GitHub hygiene: what reviewers skim first and common red flags.
Negotiation and benefits: total compensation, learning budget, and role scope clarity.
Audience Q&A with anonymised résumé feedback offered in follow-up office hours.

InfosecGirls Virtual Meet - 18th October, 2025

InfosecGirls Session - 18th October, 2025

Topic: Cyber resilience and backups — immutable copies, restore drills, and ransomware readiness for teams without a large SOC.

Summary

Backup strategy: 3-2-1 basics, immutability, and offline or air-gapped copies where feasible.
Restore drills: tabletop plus timed partial restores to find gaps early.
Ransomware prep: identity blast radius, admin tiering, and critical asset inventory.
Comms under stress: who declares an incident and how staff get trustworthy updates.

InfosecGirls Session - 30th August, 2025

Topic: Secure defaults in platform engineering — golden paths, paved roads, and how security teams partner with internal developer platforms.

Summary

Golden paths: opinionated templates with security baked in from day one.
Paved roads vs guardrails: when to mandate controls vs guide adoption.
Metrics platform teams care about: time-to-deploy, rollback safety, and drift detection.
Collaboration model: security as platform customers and co-designers, not gate-only.

InfosecGirls Session - 12th July, 2025

Open community meet: mid-year check-in on learning goals, conference season debriefs, and lightning talks from members.

Summary

Lightning rounds (five minutes each) on tools and lessons learned this year.
Conference and CTF season tips: budgeting travel, volunteering, and note-taking.
Mid-year goal reset: what to drop, what to double down on, and rest as a priority.
Sign-up sheet for autumn session hosts and first-time speakers.

InfosecGirls Session - 17th May, 2025

Topic: LLM security for builders — prompt injection basics, data leakage risks, and guardrails when shipping AI-assisted features.

Summary

Threat overview for apps that call external or hosted language models.
Prompt injection and indirect injection in RAG and tool-calling flows.
Data handling: minimising sensitive context in prompts and logging redaction.
Practical guardrails: output policies, human review hooks, and abuse monitoring.

InfosecGirls Session - 29th March, 2025

Presenter:

Speaker: Lekshmi Nair and Lopa Mudra Basu

Venue: Cyware Labs India Pvt. Limited UrbanVault, 762, 19th Main Rd, Parangi Palaya, Sector 3, HSR Layout, Bengaluru, Karnataka 560102

Summary

In-person session hosted at Cyware Labs in HSR Layout, Bengaluru.
Joint session with speakers Lekshmi Nair and Lopa Mudra Basu.
Community connect in a vendor-neutral learning space.
Opportunity for local members to meet peers face-to-face after the virtual-heavy years.