Total Years of Experience: 15 Years, 0 Months
April 2015
To Present
Information Security Consultant/Specialist/Manager
at Evamp & Saanga
Location :
Pakistan - Islamabad
As an Information Security Specialist I have been assigned role of technical lead for Information Security, especially application security and security management. My responsibilities include but are not limited to:
Develop, assess and verify application security requirements and architecture for critical business and financial applications, including but not limited to mobile financial services, telecom customer self-care applications, B2B and B2C portals etc.
To conduct application security reviews to identify policy non-compliance and security vulnerabilities in change management
To communicate the solutions for identified vulnerabilities to stakeholders as per defined policies and contractual requirements and support them to ensure that vulnerabilities are fixed in timely manner without affecting project deadlines
To responsibly disclose application vulnerabilities in 3rd party functionality and provide support and Proof of Concept attacks to fix the vulnerabilities.
To ensure that security is integrated into System Development Life Cycle (SDLC)
To design and implement security solutions and controls recommended by compliance audits.
To develop and maintain information security guidelines, standards, policies and procedures
Develop and maintain information security trainings and ISO 27001 security standard compliance reporting
Develop, assess and verify application security requirements and architecture for critical business and financial applications, including but not limited to mobile financial services, telecom customer self-care applications, B2B and B2C portals etc.
To conduct application security reviews to identify policy non-compliance and security vulnerabilities in change management
To communicate the solutions for identified vulnerabilities to stakeholders as per defined policies and contractual requirements and support them to ensure that vulnerabilities are fixed in timely manner without affecting project deadlines
To responsibly disclose application vulnerabilities in 3rd party functionality and provide support and Proof of Concept attacks to fix the vulnerabilities.
To ensure that security is integrated into System Development Life Cycle (SDLC)
To design and implement security solutions and controls recommended by compliance audits.
To develop and maintain information security guidelines, standards, policies and procedures
Develop and maintain information security trainings and ISO 27001 security standard compliance reporting
September 2011
To June 2015
Information Security Researcher
at National University of Science and Technology
Location :
Pakistan - Islamabad
Computer Security
Advance Networks and Web Security
Wireless Networks Security
IT Laws and Computer Forensics
Information Security Management
Information Security Evaluation and auditing
Vulnerability Exploitation and Defense
Information Security Project Management
Cryptography
Advance Networks and Web Security
Wireless Networks Security
IT Laws and Computer Forensics
Information Security Management
Information Security Evaluation and auditing
Vulnerability Exploitation and Defense
Information Security Project Management
Cryptography
April 2010
To September 2012
Web Developer
at webhive
Location :
Pakistan - Islamabad
Worked on a number of websites using:
Custom PHP
Content Management Systems e.g. Wordpress
MVC Frameworks such as Codeigniter
Various Shopping Cart Scripts such as Pinnacle Cart, Open Cart and a few Custom Carts
Different modules and routine based tasks.
Plug-in development, template/theme integration
Payment method integration, Ecommerce Sites customization (Frontend and database)
Search Engine Optimization
Testing and vulnerability assessment of web Applications and applying proper controls to fix the vulnerabilities.
Custom PHP
Content Management Systems e.g. Wordpress
MVC Frameworks such as Codeigniter
Various Shopping Cart Scripts such as Pinnacle Cart, Open Cart and a few Custom Carts
Different modules and routine based tasks.
Plug-in development, template/theme integration
Payment method integration, Ecommerce Sites customization (Frontend and database)
Search Engine Optimization
Testing and vulnerability assessment of web Applications and applying proper controls to fix the vulnerabilities.
January 2008
To January 2009
Web developer
at Gensoft
Location :
Pakistan - Hyderabad
Dynamic HTML Web Pages
Cascaded Style Sheets
JavaScript validation in web forms
Website Content Management
Cascaded Style Sheets
JavaScript validation in web forms
Website Content Management
Share on Facebook
Share on Twitter
Share Via Email