概要

Having 13 years of experience in the Information Security, Network Management. Responsible for implementing network security by following the security principles and practices. Working in IS Governance Risk and Compliance. Creating Information Security policies / Procedures / Guidelines based on International Standard (ISO 27001) and ensuring that they are followed throughout the organization.


Handle the tasks of assessing and evaluating opportunities of vulnerability and potential items of risk in the network.


Expert in implementing End Point and Network Security Products e.g, IPS, Vulnerability Scanner, Firewall, SIEM, Antivirus, DLP. Hands on experience with Network/Network Security Devices, Vulnerability Assessmant, Penetration testing, Security Configuration Review, Secure Network Architecture Review, Computer Forensic and Mobile Forensics. Experience in working with the various clients from various industries.


Implementation of Security Devices and after sales support. Providing trainings on different security products including Kaspersky, IBM IPS/MFS/ES/SiteProtector. Conducting POC for IBM IPS/MFS/ES, Kaspersky OSS, and McAfee DLP. IBM IPS/MFS/ES, McAfee DLP and Kaspersky Professional with hands on experience in deployment, trainings and support.

工作经历

公司标识
Senior Manager Information Security Governance
Pakistan Telecommunication Company Limited (PTCL)
Mar 2019 - 代表 | Islamabad, Pakistan

Working in Information Security Governance Risk And Compliance department. Major Responsibilities include:

Documenting Information Security Policies / Procedures
Getting the docuement Policies / Procedures from various departments
Incorporing their feedback in and getting the documents finalied
Creating an Information Security Awareness Calander
Executing the Awareness Calander
Creating presenations for Senior management of Various IS Governance Initiatives

公司标识
Associate Consultant Information Security
Infogistic (Pvt.) Ltd.
Jan 2015 - Feb 2019 | Lahore, Pakistan

Gap Analysis Against ISO27001 at Qatar Baladiya in 2017,
Internal Penetration Testing at Intellytics Pakistan in 2017,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at Ejada Systems Company limited Egypt (Alexandria) in 2016,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at Ejada Systems Company limited Saudi Arabia (Riyadh) in 2016,
Technical Risk Assessment (Pentest, Configuration Review and Network Architecture Review) at SAPTCO Saudi Arabia in 2016
Penetration Testing at SATORP Saudi Arabia in 2016,
External Penetration Testing at SAMREF Saudi Arabia in 2016,
Implementation and Configuration of McAfee Email Gateway at Soneri Bank Pakistan,
Technical Risk Assessment (Pentest and Configuration Review) Gulf Warehousing Company Qatar in 2015,
Working in Pre-Sales team and attending Pre-Bid meetings, technical and financial proposal opening,
Solution Design for Network, Systems and Network Security Solution for customers,
McAfee Complete Endpoint Protection Implementation at PTCL,
McAfee Complete Data Protection Implementation at multiple customers,
IBM Next Generation IPS Implementation support at PTCL,
Mobile Forensic & Computer Forensic using professional tools such as MPE+, XRY, Encase, FTK, Mount Image pro and Virtual
Forensic Computing for Sensitive Organization in Pakistan

公司标识
Senior Information Security Engineer
Infogistic (Pvt.) Ltd.
Oct 2013 - Jan 2015 | Lahore, Pakistan

Technical Risk Assessment (Pentest and Configuration Review) Gulf Warehousing Company Qatar in 2013
McAfee Complete Data Protection
McAfee SIEM
Technical Risk Assessment for Leading Microfinance Bank in Pakistan
ISO 27001:2005 & ISO 27001:2013 Implementer
ISO 27001:2005 & ISO 27001:2013 Internal Auditor
Policy and Procedure writing in light of ISO 27001:2005 and ISO 27001:2013
SolarWinds NPM, NTA and NCM
Mobile Forensic using professional tools such as MPE+, XRY for Sensitive Organization in Pakistan

公司标识
Senior Network Security Engineer
Interactive Group of Companies
Sep 2012 - Sep 2013 | Islamabad, Pakistan

ISO 27001:2005 Implementation
ISO 27001:2005 Internal Auditor
Policy and Procedure writing in light of ISO 27001:2005
IBM Security SiteProtector Server implementation
IBM Proventia Server for Linux implementation
IBM Proventia Server for Windows implementation
IBM RealSecure Server Sensor (Windows & Linux) implementation
RSA enVision (SIEM)
Correlation Alerts creation
Ad-hoc report creation
Logs review
Symantec Endpoint Protection implementation
Installation, Maintenance and Disaster Recovery
Policy Creation and modification
Support to customers
Management of Security Operation Centre

公司标识
Senior Information Security Engineer
Aug 2008 - Aug 2012 | Lahore, Pakistan

学历

Mohammad Ali Jinnah University
学士, , Bachelors of Engineering‎
Electronics
CGPA 3.7/4
2008

技能

熟练 Configuration Review
熟练 Intrusion prevention system
熟练 ISO27001 auditing
熟练 Penetration Testing

语言

中级 乌尔都语
中级 英语

Adeel 联系人

Waheed Abbas
confidental