12+ years of experience in the fields of Information & Cyber Security, GRC, Business Continuity/Disaster Recovery Planning and Enterprise Infrastructure.
Governance & Risk: Information Security Governance through PCI-DSS, ISO 27001, NESA UAE, NIST and Cyber Essentials principles and SBP polices. Risk assessment, Risk analysis, Risk evaluation and Risk review.
Offensive Security Management: Vulnerability assessment, Penetration Testing, SIEM. Threat Detection, Network sniffing tools.
Business Continuity: Business continuity management, Disaster Recovery planning.
Network Security & Infrastructure: Cisco, Juniper, Routers, Switches, Symantec endpoint security, Kaspersky endpoint security, Desktop solutions and support services.
Working as Unit Head IT Risk, Involvement with Information Security Teams to ensure Information Security systems / processes are implemented in a way that varied types of Cyber Security risk affecting the business are mitigated at an acceptable state.
Responsibilities
· Formulation and Implementation of Information Security Policies and its periodic review.
· Reviewing information security Policy, Procedures and processes, SLAs etc.
· Security assessment of projects before Go Live and after any major change.
· Develop and participate in implementation of initiatives focused on the reduction of technology risk, governance and compliance to policies and external regulatory compliance.
· Management and Supporting the teams for the delivery of work streams in compliance standards like PCIDSS, SBP, SWIFT, NESA UAE, OM Bahrain, CB Sri Lanka.
· Security Governance to adhere the policies and procedures.
· Develop and execute an IT risk management program.
· Risk assessment of Information Technology assets while identifying threats, vulnerabilities, existing controls, likelihood, assessment of consequences and proposed controls.
· Building Inventory of identified risk / applicable controls and prepare risk treatment plan.
· Review information security processes and controls and develop Key Risk Indicators [KRI].
· Drafting and implementation of Bank Risk Appetite and tolerance level.
· Conducting Information Security Awareness Trainings to MCB Staff.
· Staying updated on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance.
· Performing other related duties as assigned from management time to time based on the business requirements.
· Vendor Management, SLAs management with vendors, RFPs drafting and processing etc.
To ensure an effective enterprise Business Continuity Management (BCM) and Disaster Recovery Plans (DRP) governance framework that is consistent with regulatory requirements. Design, Implement and Execute the DR drills.
* Contribute to the development and maintenance of the Enterprise-wide business continuity management program including: development of tools and instructional guides for both business & IT Group.
* Continuity planning and event management, development and facilitation of enterprise-wide event exercises, relationship management with external vendors, development of corporate policy, standards, and guidelines.
* Ensuring all technical components of the Business Continuity Plans are successfully tested according to schedule.Â
Main goal is to maintain the Network uptime high. Coordinates with other teams in day to day infrastructure activities. Facilitates Senior Executives to manage countrywide network effectively and efficiently. Ensuring quality IT support to all business units. Responsibilities:-
* IT Infrastructure Management & Maintenance.
* Addressing and resolving performance bottlenecks and ensuring maximum network uptime.
* Manage to provide the Desktop Support and Network Support to all MCB employees & offices locally as well as remotely.
* Working with different technologies(Fiber, Imax, VSAT, DXX, DSL, etc)
* Coordinate with PTCL, Multinet, Link.net, Wateen and other companies to resolve Link Issues.
* Development of new circuit, fault detection and rectification of online Branches.
* Documents network problems and resolution for future reference.
* Monitors system performance and implements performance tuning.
* Interaction with end users to provide support regarding network related issues like connectivity with serves, PCs and other equipment's on the LAN/WAN.
* Monitor log files & network traffic to detect and remediate any issue.
Look after the whole IT system implemented in Lahore zone.
Handle different company operating systems Like DMS, SOP, ITT, ORS.
A firm grip on software handling/troubleshooting. In addition with LAN handling / troubleshooting.
Installation, configuration & maintenance of LAN, WAN& VPN.
Responsible for the maintenance of the network and its components to include Routers, Firewalls, Switches, HUB, NIC Cards, Cabling and Terminals.
Managing more than 300 Network Nodes.
Perform diagnostics on faulty Network to determine the cause of the problem.
Troubleshoot PC’s for Hardware & Software malfunctions.
Please endorse me , i am very thankful for you.