概要

Yousaf Haroon is a skilled Cyber Security Practitioner who is enthusiast in uplifting the organizational cyber security posture as well as its business security. Having more than 10 years of professional experience and skills in Cyber Security with a Masters (MS) degree in Information Security (3.86 CGPA) from Riphah International University Islamabad, he also holds renowned Cyber security certifications like CISA, CEH Practical, CHFI, CC, CCNA Security, etc.


He also has the honour of working directly with one of the World's top Cyber Security Expert Mr. Rafay Baloch in Pakistan Telecom Authority - PTA.

项目

Ministry Of IT & Telecom SLA
Remote Access VPN for employees (WFH).
Network Security and Infrastructure consultancy of Askari Guards Limited

工作经历

公司标识
Assistant Director Cyber Security
Pakistan Telecommunication Authority (PTA)
Sep 2019 - 代表 | Islamabad, Pakistan

Working with World's renowned Cyber Security Expert Mr. Rafay Baloch at PTA:
- Directly involved in PTA Internal Cyber Security engagements including but not limited to Penetration testing, VAPT, Security Audits, GRC, Cyber security  assessments and Investigations of internal IT Infrastructure, Active Directory, Applications, APIs as well as Telecom Licensee operators to improve the overall cyber security posture of Telecom sector.
- Involved in Cybersecurity CTDISR regulatory compliance audits of Licensee and revalidation of 3rd party audits.

- Involved in PTA’s Security Operation center, Telecom sectoral SOC project, SIEM solution, formulation of Telecom Cybersecurity Framework, ISO 27001, ISO 27000 series, NIST, SOC 2, CTDISR controls and maturity levels, audit and compliance guidelines, Cybersecurity audit firms’ registration criteria and categorization, etc.

- Security Advisories, Alerts and Threat Intelligence, CERT portal, blocking of unlawful content through Central DNS system, and other regulatory engagements.

公司标识
Deputy Director - Cybersecrity
Electronic Certification Accreditation Council, MoIT Govt. of Pakistan
Feb 2018 - Aug 2019 | Islamabad, Pakistan

- Coordination with Public & Private sector organizations for the Accreditation of Certification Service Providers (CSPs) and Registration of Security Auditors as per ECAC Regulations 2008.

- Involved in the implementation of National Root-CA, Public Key Infrastructure (PKI), Information Security and International best practices and standards.

- Assisting in the registration of Information Security Auditors with ECAC like Risk Associates Pvt. Ltd.

- Involved in establishing IT setup for start-ups including IT procurement as PPRA guidelines.

公司标识
NETWORK SECURITY SPECIALIST
Techaccess Pakistan
Apr 2017 - Feb 2018 | Islamabad, Pakistan

- Plan, design and implement Complex Network & Security Infrastructure for different clients.

- Security Implementation, Vulnerability Assessment & Pentesting (VAPT), Performance Optimization (throughput, user bandwidth allocation & quota, utilization) and SIEM solution (IBM QRadar).

- Installation, Configuration and troubleshooting of LAN, WAN, Wireless LAN with DNS, DHCP, VLANs, SNMP, Syslog, Switches(L2,L3), CISCO, HUAWEI, MikroTik Routers, Firewalls (HUAWEI, CISCO, Fortigate, Pfsense/OPNsense), VPN Servers, WLANs(Ruckus, HUAWEI), Video conferencing equipment at company as well as at customer premises as per defined SLAs.

- Ensure Network Policies and Security policies as per the requirement, availability of IT resources and resolve end users problems.

- Maintaining Network related software applications, operating systems and regular maintenance

公司标识
IT OFFICER
Army Welfare Trust Rawalpindi
Nov 2013 - Apr 2017 | Rawalpindi, Pakistan

- Monitoring and Policy management of AWT Network, Endpoints, Datacenter for NMS using Spiceworks, Cacti, PRTG, SysLog Server.

- Installation, support and maintenance of Windows and Linux Operating System, Internet applications such as Email Server, Proxy, DHCP etc. ERP solution support and basic maintenance.

- Planning and implementation of comprehensive IT Security, Backups & Disaster Recovery.

- Installation, Administration, Troubleshooting and maintenance of AWT users on LAN, WLAN with Windows Server Active Directory, DNS, DHCP, Forefront TMG Proxy, Squid Server, Firewall, VMware Hypervisor ESXi, vCenter Server and Kaspersky Security center at AWT Data Center.

- Supervision of IT Support team.

公司标识
Field Support Engineer - Networks
COMSATS Internet Services
Jun 2012 - Nov 2013 | Islamabad, Pakistan

- Installation and Configuration of complete WAN, WLAN.

- Survey, Installation, configuration and Troubleshooting of Wireless Point-to-Point links using UBNT devices.

- Configuration and Troubleshooting of Cisco, TP Link Switches, Load Balancers, ADSL Routers and APs.

- Complete Network, Technical Support to the customers and solving queries as per SLAs.

- Configuration and Troubleshooting of CIS CPE at the customer end, wireless and internet bandwidth management, helpdesk Ticket system and MRTG monitoring.

- Supervision of technical team.

学历

CEH (Certified Ethical Hacker) - EC Council
证书, ‎
Certified Ethical Hacker (CEH) Practical
Completed
2022
Riphah International University Islamabad
哲学硕士, ‎
Information Security
Completed
2022
Certified CISA (ISACA)
证书, ‎
Information System, Auditing, Information Security
Incomplete
2021
National University of Computer and Emerging Sciences (FAST NU)
学士, 理工学士, Bachelors of Engineering‎
Telecom and Computer Engineering
CGPA 2.8/4
2010
F.G Inter College Bilal Colony
中级/A级, 理学院(工程预科), HSSC‎
Mathematics, Organic Chemistry, Physics
等级 A
2006

技能

熟练 Cisco Certified
熟练 Networking
中级 Analytic Modeling
中级 Analytic Thinking
熟练 Application Security
熟练 Burpsuite
熟练 CEH
初学者 Checkpoint Security Management
熟练 CISA
熟练 Cisco Certified
中级 Cisco Firewall Security
中级 Cisco Information Security Knowledge
熟练 Cyber Defense
熟练 Cyber Security
初学者 DGPR HIPAA
熟练 DNS
熟练 Ethical Hacker
初学者 FedRAMP
熟练 Firewall
熟练 Implement and support routing protocols
熟练 Information Security
熟练 Information Security Awareness
熟练 Information Security Consultancy
熟练 Information Security Engineering
熟练 Information Security Management
熟练 Information Security Standards
熟练 ISO 27001
中级 IT Security Assessments
熟练 LAN and WAN
熟练 LAN Security
中级 Local Traffic Managers
中级 MCITP
熟练 MetaSploit
熟练 Minimum experience required: 01-02 years
熟练 MS Visio
熟练 Network
熟练 Network Administration
熟练 Network Security
熟练 Network systems architecture/engineering
中级 NIST
熟练 Ospf
熟练 Others related
中级 OWASP
中级 PCI DSS
熟练 Penetration Testing
中级 Product Cyber Security
中级 Product Security
中级 QRadar
熟练 SAN
熟练 Security Analysis

语言

中级 阿拉伯语
熟练 乌尔都语
熟练 英语

YOUSAF 联系人

Raees Ahmad
Smartcube Information Systems