概要

12+ years of experience in the fields of Information & Cyber Security, GRC, Business Continuity/Disaster Recovery Planning and Enterprise Infrastructure.


Governance & Risk: Information Security Governance through PCI-DSS, ISO 27001, NESA UAE, NIST and Cyber Essentials principles and SBP polices. Risk assessment, Risk analysis, Risk evaluation and Risk review.


Offensive Security Management: Vulnerability assessment, Penetration Testing, SIEM. Threat Detection, Network sniffing tools.


Business Continuity: Business continuity management, Disaster Recovery planning.


Network Security & Infrastructure: Cisco, Juniper, Routers, Switches, Symantec endpoint security, Kaspersky endpoint security, Desktop solutions and support services.

项目

Mega Network Expansion Project
Enterprise Data Network -EDN

工作经历

公司标识
AVP / Unit Head Information Security Division
MCB Bank Limited
Jun 2019 - 代表 | Lahore, Pakistan

Working as Unit Head IT Risk, Involvement with Information Security Teams to ensure Information Security systems / processes are implemented in a way that varied types of Cyber Security  risk affecting the business are mitigated at an acceptable state.
Responsibilities
·          Formulation and Implementation of Information Security Policies and its periodic review.
·          Reviewing information security Policy, Procedures and processes, SLAs etc.
·          Security assessment of projects before Go Live and after any major change.
·          Develop and participate in implementation of initiatives focused on the reduction of technology risk, governance and compliance to policies and external regulatory compliance.
·          Management and Supporting the teams for the delivery of work streams in compliance standards like PCIDSS, SBP, SWIFT, NESA UAE, OM Bahrain, CB Sri Lanka.
·          Security Governance to adhere the policies and procedures.
·          Develop and execute an IT risk management program.
·       Risk assessment of Information Technology assets while identifying threats, vulnerabilities, existing controls, likelihood, assessment of consequences and proposed controls.
·          Building Inventory of identified risk / applicable controls and prepare risk treatment plan.
·          Review information security processes and controls and develop Key Risk Indicators [KRI].
·          Drafting and implementation of Bank Risk Appetite and tolerance level.
·          Conducting Information Security Awareness Trainings to MCB Staff.
·          Staying updated on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance.
·          Performing other related duties as assigned from management time to time based on the business requirements.
·          Vendor Management, SLAs management with vendors, RFPs drafting and processing etc.

公司标识
Sr. Manager Business Continuity
MCB Bank Limited
Apr 2017 - Jun 2019 | Lahore, Pakistan


To ensure an effective enterprise Business Continuity Management (BCM) and Disaster Recovery Plans (DRP) governance framework that is consistent with regulatory requirements. Design, Implement and Execute the DR drills.
* Contribute to the development and maintenance of the Enterprise-wide business continuity management program including: development of tools and instructional guides for both business & IT Group.
* Continuity planning and event management, development and facilitation of enterprise-wide event exercises, relationship management with external vendors, development of corporate policy, standards, and guidelines.
* Ensuring all technical components of the Business Continuity Plans are successfully tested according to schedule. 

公司标识
Sr. Manager Telecommunications Support
MCB Bank Limited
Apr 2007 - Apr 2017 | Lahore, Pakistan


Main goal is to maintain the Network uptime high. Coordinates with other teams in day to day infrastructure activities. Facilitates Senior Executives to manage countrywide network effectively and efficiently. Ensuring quality IT support to all business units. Responsibilities:-

* IT Infrastructure Management & Maintenance.
* Addressing and resolving performance bottlenecks and ensuring maximum network uptime.
* Manage to provide the Desktop Support and Network Support to all MCB employees & offices locally as well as remotely.
* Working with different technologies(Fiber, Imax, VSAT, DXX, DSL, etc)
* Coordinate with PTCL, Multinet, Link.net, Wateen and other companies to resolve Link Issues.
* Development of new circuit, fault detection and rectification of online Branches.
* Documents network problems and resolution for future reference.
* Monitors system performance and implements performance tuning.
* Interaction with end users to provide support regarding network related issues like connectivity with serves, PCs and other equipment's on the LAN/WAN.
* Monitor log files & network traffic to detect and remediate any issue.

公司标识
Sr. IT Officer
Colgate Palmolive Pakistan Limited
Mar 2002 - Apr 2007 | Lahore, Pakistan

Look after the whole IT system implemented in Lahore zone.
Handle different company operating systems Like DMS, SOP, ITT, ORS.
A firm grip on software handling/troubleshooting. In addition with LAN handling / troubleshooting.

Installation, configuration & maintenance of LAN, WAN& VPN.
Responsible for the maintenance of the network and its components to include Routers, Firewalls, Switches, HUB, NIC Cards, Cabling and Terminals.
Managing more than 300 Network Nodes.
Perform diagnostics on faulty Network to determine the cause of the problem.
Troubleshoot PC’s for Hardware & Software malfunctions.

学历

Federal Urdu University of Arts Sciences and Technology
硕士, 工商管理硕士学位, ‎
Business Administration
CGPA 3.2/5
2020
Cybernetics College of Business & Computer Sciences
硕士, , Masters in Computer Sciences‎
Networking
2001

技能

熟练 Application Security
中级 CCISO
熟练 CCNA
中级 CISA
熟练 CISM
熟练 Cyber Security
熟练 Disaster Recovery
熟练 Disaster Recovery Management
熟练 Fluent in English
熟练 Governance, risk and compliance
熟练 Information Security Governance
熟练 Information Security Management
熟练 IS GRC
熟练 ISO 27001
熟练 IT Operations
熟练 IT Risk Management
熟练 IT Security Risk Assessments
熟练 IT Skills
熟练 Networks LAN / WAN
中级 PAM
中级 SIEM
熟练 SOP
熟练 System Analyst
熟练 System Support
熟练 Tbricklaying

语言

熟练 乌尔都语
熟练 英语

关注的公司

推荐

简短自我描述

Please endorse me , i am very thankful for you.

Qamar 联系人

Ghulam Murtaza
Allied Bank Limited
MUHAMMAD USAMA Yousaf
EFU HEMAYAH TAKAFUL
Tarique Jan Soomro
Allied Bank Limited
Syed Arslan Arslan Haider
MCB Bank Limited
Rana Waqas Mustafa
Mansha Brothers