Crop Picture
NOTE: Do not upload any image that violates our Picture Policy. Doing so will result in the removal of the concerned image without prior notification.
概要
Having 13 years of experience in the Information Security, Network Management. Responsible for implementing network security by following the security principles and practices. Working in IS Governance Risk and Compliance. Creating Information Security policies / Procedures / Guidelines based on International Standard (ISO 27001) and ensuring that they are followed throughout the organization.
Handle the tasks of assessing and evaluating opportunities of vulnerability and potential items of risk in the network.
Expert in implementing End Point and Network Security Products e.g, IPS, Vulnerability Scanner, Firewall, SIEM, Antivirus, DLP. Hands on experience with Network/Network Security Devices, Vulnerability Assessmant, Penetration testing, Security Configuration Review, Secure Network Architecture Review, Computer Forensic and Mobile Forensics. Experience in working with the various clients from various industries.
Implementation of Security Devices and after sales support. Providing trainings on different security products including Kaspersky, IBM IPS/MFS/ES/SiteProtector. Conducting POC for IBM IPS/MFS/ES, Kaspersky OSS, and McAfee DLP. IBM IPS/MFS/ES, McAfee DLP and Kaspersky Professional with hands on experience in deployment, trainings and support.
工作经历
Senior Manager Information Security Governance
Working in Information Security Governance Risk And Compliance department. Major Responsibilities include:
Documenting Information Security Policies / Procedures
Getting the docuement Policies / Procedures from various departments
Incorporing their feedback in and getting the documents finalied
Creating an Information Security Awareness Calander
Executing the Awareness Calander
Creating presenations for Senior management of Various IS Governance Initiatives
Associate Consultant Information Security
Gap Analysis Against ISO27001 at Qatar Baladiya in 2017,
Internal Penetration Testing at Intellytics Pakistan in 2017,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at Ejada Systems Company limited Egypt (Alexandria) in 2016,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at Ejada Systems Company limited Saudi Arabia (Riyadh) in 2016,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at SAPTCO Saudi Arabia in 2016
Penetration Testing at SATORP Saudi Arabia in 2016,
External Penetration Testing at SAMREF Saudi Arabia in 2016,
Implementation and Configuration of McAfee Email Gateway at Soneri Bank Pakistan,
Technical Risk Assessment (Pentest and Configuration Review) Gulf Warehousing Company Qatar in 2015,
Working in Pre-Sales team and attending Pre-Bid meetings, technical and financial proposal opening,
Solution Design for Network, Systems and Network Security Solution for customers,
McAfee Complete Endpoint Protection Implementation at PTCL,
McAfee Complete Data Protection Implementation at multiple customers,
IBM Next Generation IPS Implementation support at PTCL,
Mobile Forensic & Computer Forensic using professional tools such as MPE+, XRY, Encase, FTK, Mount Image pro and Virtual
Forensic Computing for Sensitive Organization in Pakistan
Senior Information Security Engineer
Technical Risk Assessment (Pentest and Configuration Review) Gulf Warehousing Company Qatar in 2013
McAfee Complete Data Protection
McAfee SIEM
Technical Risk Assessment for Leading Microfinance Bank in Pakistan
ISO 27001:2005 & ISO 27001:2013 Implementer
ISO 27001:2005 & ISO 27001:2013 Internal Auditor
Policy and Procedure writing in light of ISO 27001:2005 and ISO 27001:2013
SolarWinds NPM, NTA and NCM
Mobile Forensic using professional tools such as MPE+, XRY for Sensitive Organization in Pakistan
Senior Network Security Engineer
ISO 27001:2005 Implementation
ISO 27001:2005 Internal Auditor
Policy and Procedure writing in light of ISO 27001:2005
IBM Security SiteProtector Server implementation
IBM Proventia Server for Linux implementation
IBM Proventia Server for Windows implementation
IBM RealSecure Server Sensor (Windows & Linux) implementation
RSA enVision (SIEM)
Correlation Alerts creation
Ad-hoc report creation
Logs review
Symantec Endpoint Protection implementation
Installation, Maintenance and Disaster Recovery
Policy Creation and modification
Support to customers
Management of Security Operation Centre
