Experience

SecurEyes
• India
• Computer and Network Security
• 100 - 200 Employee
• Information Security Management Consultant

  • Aug 2021 - Present


1LINK (Pvt) Limited

• Pakistan
• Financial Services
• 200 - 300 Employee

• Assistant Manager Information Security

  • Feb 2019 - Aug 2021

  • Application Security Control Advisory • Vulnerability assessment and penetration testing (Web, Mobile, Networks, Systems) • Monitoring security solutions and deployment • Information Technology Risk Assessment • Vendor assessment, third party security services management • Incident investigation, handling and response • Action Plans for patch management • Use cases development for SIEM solution • Cyber fraud detection patterns creation for incident response and alert. • Support and maintenance of Regulatory , PCI-DSS Compliance Show less



Habib Metropolitan Bank (Subsidiary of AG Zurich)

• Pakistan
• Banking
• 700 & Above Employee

• Information Security Analyst

  • Jan 2016 - Jan 2019

  1-External and Internal Vulnerability Assessment  Perform Internal Vulnerability assessment of critical servers / network devices  Assist CISO in managing vendor management for Information security products and services  Assist CISO and ITD in the remediation of vulnerabilities identified by External Third Party consultants. 2-Web Application Vulnerability Assessment and Threat Monitoring  Perform vulnerability assessment over web banking and other web applications on regular basis.  Recommend practical solutions to ITD for the identified vulnerabilities in Web Banking and other Web applications  Assist ITD in the remediation of vulnerabilities identified and get it fixed. 3-Security Information and Event Management (SIEM)  Integration and Monitoring of Log Sources in SIEM solution  Perform analysis of the offences / security incidents occur in SIEM and get it closed in timely manner  Coordinate with SIEM vendor and resolve issues and monitor the SLA with vendor.  Management of Rules in SIEM and monitoring of rules.  Generate MIS of SIEM offences / security incidents and other various MIS. 4-Security Incident Response Team (SIRT)  Respond to end users for the incidents reporting on SIRT@habibmetro.com  Coordinate with ITD and resolve the issue identified by end user over SIRT with respect to Information Security. 5-Business Continuity Management (BCM)  Assist BCP Team Lead in BCM related tasks like (fire evacuation drills, MIS generation, follow-ups with BCCs  Coordination with related vendors/procurement to resolve issues and monitor the SLA. 6-Risk Management  Assist Risk Manager for Payment Card Risk Assessment, Mitigation and Compliance.  Assist Risk Manager for Internet Banking Application Risk Assessment, Mitigation and Compliance.  Assist Risk Manager for Mobile Banking Application Risk Assessment Mitigation and Compliance. Show less



Rewterz

• United Arab Emirates
• Information Technology & Services
• 100 - 200 Employee

• Penetration Testing Engineer

  • Aug 2013 - Dec 2014

  • Provide Information Security Services , Penetration testing and vulnerability assessment for clients(Internal , External) • Interaction with clients for solutions and handling of issues. • Deployment of security products and POC outdoor. • Created Threat Intelligence Report for the year 2013. • Provide Information Security Services , Penetration testing and vulnerability assessment for clients(Internal , External) • Interaction with clients for solutions and handling of issues. • Deployment of security products and POC outdoor. • Created Threat Intelligence Report for the year 2013.