خلاصہ

Information Security Specialist with 8 years of professional experience in the field of information security and Information Technology with multiple industry leading certifications

Responsible for protecting computers and networks against security breaches and cyber-attacks incident handling, alert tracking, cyber security case management.

Certifications

ISO/IEC 27001 ISMS Lead Auditor


CCNA Cyber Ops 210-250 SECFND & 210-255 SECOPS


CCNA Security 210-260 IINS (CCNA) Security


Cisco Certified Network Associate (CCNA) Routing and Switching


Kaspersky Endpoint Security Associate


Kaspersky Lab Certified Professional


Fortinet NSE 1 Network Security Associate


Fortinet NSE 2 Network Security Associate


IBM QRadar SIEM Foundation


Splunk 7.x Fundamentals Part 1 (eLearning)



Trainings
CISSP Review (ISC)²


Certified Ethical Hacker (CEH) - Trillium


Nexpose Vulnerability Assessment -Trillium


CISSP Security - IT master Charles Strut University


Phishing Countermeasures - IT master Charles Strut University


Burp Suite, Web Hacking Tool -Udemy


Effective Security Operation Using IBM QRADAR-Ebryx


FortiGate Essentials 6.2 – Fortinet


Autopsy Digital Forensics Platform – Autopsy


CNSS Certified Network Security Specialist - ICSI, UK


Siem Fundamentals - Elastic


Anomaly Detection for Cyber Security – Elastic


Siem Administration with QRadar – Pluralsight


Incident Detection and Investigation with QRadar– Pluralsight


Foundations of Operationalizing MITRE ATT&CK-AttackIQ


پراجیکٹس

Kaspersky antivirus Deployment at The Bank of Punjab
Qradar Siem Deployment at The Bank of Punjab

تجربہ

کمپنی کا لوگو
Information Security Specialist
Punjab Information Technology Board
جنوری ۲۰۲۰ - موجودہ | Lahore, Pakistan

The primary responsibility is to analyze systems for vulnerabilities suggest best security solutions, and handling cyber-attacks in an efficient and effective manner.
Duties:
 Update the Network design for emerging threats to ensure cyber security.
 Coordinate with IT for Incident Response and handling.
 Manage risk Assessment and vulnerability scanning of Infrastructure (OS, Systems, Sever, and Networks etc.)
 Risk Assessment of new IT and business initiatives.
 Network Security Monitoring and assessment using various tools.
 Contribute in Information Security SOPs/Guidelines development and maintenance.
 Manage logical and physical access controls reviews and prepare reports for higher management.
 Design and conduct targeted Information Security Awareness Trainings.
 Design and ensure the implementation of ACL and Security Baseline.
 Security Reviews for network and IT infrastructure.
 Policy Definition for End point, firewall, web gateway, Domain controller etc.
 Coordinate and perform Vulnerability scanning and penetration testing of network/systems.
 Incident logging, reporting /management.
 Awareness training of the employees on information security standards, policies and best practices.
 Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses.
 Perform static/dynamic mobile application testing, and penetration testing of web applications to identify vulnerabilities and security defects.
 Perform Internal Audits.

کمپنی کا لوگو
IT Security Engineer
Fatima Fertilizer Company Limited (FFCL)
اپریل ۲۰۱۹ - جنوری ۲۰۲۰ | Lahore, Pakistan

The primary responsibility is to design, implement, protect and support the company’s overall information security infrastructure.
Duties:
 Perform Internal Audits and Co-ordinate external audits
 Monitor for potential compromise, intrusion, significant event, or threat to the security posture of the company.
 Triage alerts and reports received from various sources and perform incident response in real time as needed
 Work closely with internal team members as well as external partners to identify and resolve information security issues
 Continuously monitor and tune SIEM and related systems to increase detection rates, reduce false positives, and improve response time
 Engage in threat hunting and proactive security operations
 Evaluate, deploy, and maintain security tools, technology, and systems
 Perform security assessments on new and existing systems, processes, and technology
 Develop, update, and maintain standard operating procedures and other technical documentation.
 Define policies for email security, endpoint protection, application whitelisting, and other systems and network enforcement points
 Collaborate to define security standards and develop secure procedures
 Work closely with multiple groups and business units globally to provide guidance and support
 Perform regular security and vulnerability reviews and participate in periodic security and compliance audits
 Monitor and respond to 'phishing' emails and 'pharming' activity
 Training, Awareness and developing cyber security skills of Fatima-group employees

کمپنی کا لوگو
information security officer
The Bank of Punjab (BOP)
مئی ۲۰۱٦ - مئی ۲۰۱۹ | Lahore, Pakistan

The primary responsibility is to design, implement, protect and support the company’s overall information security infrastructure.
Duties:
 Configure and troubleshoot security infrastructure devices and solutions to protect systems and information infrastructure, including firewalls and data encryption program
 Identify and define system security requirements for the bop infrastructure.
 Design new system security architecture and develop detailed network security designs or upgrade existing ones
 Prepare and document standard operating procedures and protocols
 Ensure that the company knows as much as possible, as quickly as possible about security incidents
 Work with security team to perform Vulnerability Assessments and uncover network vulnerabilities.
 Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement using tools (Winaudit, MBSA, NMAP, Advance IP Scanner, SIEM Qradar, Nexpose, Nessus, Rat, skybox and Nipper).
 Coordinate with Assets custodians and owners to Fix detected vulnerabilities to maintain a high-security standard.
 Monitor computer networks for security issues, attacks, intrusions and unusual, unauthorized or illegal activity
 Investigate security breaches and other cyber security incidents.
 Document security breaches and assess the damage they cause.
 Monitor and respond to 'phishing' emails and 'pharming' activity
 Maintain an information security risk register, risk tracker and assist with internal and external audits relating to information security
 Perform POC, Evaluate security products and Research security enhancements and make recommendations to management how to increase security posture and minimize security Risk.
 Perform Security Audits of network and infrastructure to highlight gaps
 Conduct cyber security awareness trainings of BOP employees

کمپنی کا لوگو
Network Support Executive
TkXel
فروری ۲۰۱۵ - فروری ۲۰۱٦ | Lahore, Pakistan

Responsible for supporting the company's employees at all levels as part of a helpdesk team. Ensuring that all hardware and software is configured and installed correctly.
Duties:
 Responsible for networking, design, installation and maintenance services.
 Installation and maintenance of Pfsense Firewall, ESX, Citrix Xen SERVER, VMware.
 Supporting users over the telephone, Skype and by email.
 Maintain the company's network infrastructure.
 Networking and providing support for Windows, Macintosh and Linux issues.
 Configuration and testing of any new hardware and software.
 Management of the daily data backup and retrieval scheme.
 Installing and operating Linux/Windows desktop and server operating systems.
 TCP/IP networking and hardware maintenance and repair.
 Training new employees. Assistance with training of staff and compiling procedural documentation.
 Assisting the network manager with support requests.
 Applying patches in accordance with company procedures.

کمپنی کا لوگو
Technical Support Engineer
Mobilink GSM (PMCL)
ستمبر ۲۰۱۴ - فروری ۲۰۱۵ | Lahore, Pakistan

کمپنی کا لوگو
Network and System Support Engineer
Cog-Soul Soft
اکتوبر ۲۰۱۳ - ستمبر ۲۰۱۴ | Lahore, Pakistan

کمپنی کا لوگو
Network and System Support Engineer
Express News
مارچ ۲۰۱۳ - ستمبر ۲۰۱۳ | Lahore, Pakistan

کمپنی کا لوگو
Intern SoftwareEngineer
Infogistic (Pvt.) Ltd.
جنوری ۲۰۱۲ - مارچ ۲۰۱۳ | Lahore, Pakistan

تعلیم

COMSATS Institute of Information Technology
بیچلرز, , Bachelors of Engineering‎
Computer Science
فی صد 71%
2012
Fazaia inter college Lahore cantt
انٹرمیڈیٹ / اے لیول, , F.Sc Pre-Engineering‎
فی صد 58%
2007
paf inter college munir road lahore
میٹرک / او لیول, , Matric in Computer Science‎
فی صد 68%
2004

پیشہ ورانہ مہارتیں

ابتدائی Amin Management
ابتدائی Automation Languages Command
ابتدائی Coordination Skill's
ماہر Cyber Defense
ماہر Cyber Security
ابتدائی Embedded Programming
ابتدائی Erlang
ابتدائی Establishing Strategic Partnerships
ابتدائی Evaluating Risk
ابتدائی Event Marketing Strategies
ابتدائی Executive Presentation Skills
ابتدائی Export Development
ابتدائی Forth
ابتدائی Go-to-Market Strategy
ابتدائی Government
ابتدائی Government Contract Negotiation
ماہر Green Hills Integrity
ابتدائی h Operations Management
ابتدائی Handling Assignments
ابتدائی Haskell
ابتدائی Heavy Machinery Knowledge
ابتدائی High Networth Individuals
ابتدائی High Rise Buildings Knowledge
ابتدائی HTML and XHTML
ابتدائی Import Operations Handling
ابتدائی Individuals / Consumers
ابتدائی Institutional Selling
ابتدائی International Business Exposure
ابتدائی Internet Services
ابتدائی Inventory Planning Skills
ماہر iOS
ابتدائی J2EE
ابتدائی Javascript
ابتدائی jQuery
ابتدائی JScript.
ابتدائی JSP
ابتدائی Knowledge of FMCG
ابتدائی Lead in
ابتدائی Less than 1 month
ابتدائی Less than Rs. 1,000
ماہر Linux System
ابتدائی Lisp
ابتدائی Live Demo
ابتدائی Lua
ماہر Mac OSX
ابتدائی Managing Midsize Teams - 5 to 20 People
ابتدائی Marketo
ابتدائی Microsoft SQL
ابتدائی Microsoft Visual FoxPro
ابتدائی Mobile Services Management

زبانیں

ماہر پنجابی
ماہر اردو
متوسط انگریزی