Submitting more applications increases your chances of landing a job.

Here’s how busy the average job seeker was last month:

Opportunities viewed

Applications submitted

Keep exploring and applying to maximize your chances!

Looking for employers with a proven track record of hiring women?

Click here to explore opportunities now!
We Value Your Feedback

You are invited to participate in a survey designed to help researchers understand how best to match workers to the types of jobs they are searching for

Would You Be Likely to Participate?

If selected, we will contact you via email with further instructions and details about your participation.

You will receive a $7 payout for answering the survey.


User unblocked successfully
Adnan Fayyaz, Senior Manager Information Security & Privacy

Adnan Fayyaz

Senior Manager Information Security & Privacy·SS&C | Primatics Financial

Saudi Arabia

Bachelor's degree, Telecomm. and Networks

Work experience

Total years of experience: 14 years, 4 months

Senior Manager Information Security & Privacy

February 2019 - Present

SS&C | Primatics Financial

Karachi, Pakistan

February 2019 - Present

Total Employees: 22, 600+

Who We Are:
SS&C EVOLV is a comprehensive, cloud-based, end-to-end accounting solution for financial institutions that integrate and automate all risk and finance processes relating to a loan portfolio, from data capture to back-end reporting and analytics. EVOLV streamlines loan accounting, increases efficiency, assures data integrity, strengthens compliance, and frees managers to focus on making better-informed decisions.

Duties & Job Responsibilities:
- Responsible to coordinate with Business executives and cross functions to deliver successful Information security operations by managing a business-wide security team.
- Responsible to oversee, manage, maintain, and improving business unit Information Security Policies, procedures, and controls.
- Responsible for delivering an integrated Governance, Risk, and Compliance (GRC) Program for group-wide GRC requirements.
- Responsible for managing routine security operations, SOC 1 Type II, SOC 2 Type II audits, IT Risk Management Program, Vulnerability Management Program, and Third-party Vendor Risk Management Program for business unit operations.
- Responsible to drive business-wide Information Security initiatives, new implementations, and upcoming projects.
- Responsible to oversee Information Security Training & Awareness activities and Business Continuity/Disaster recovery plan.

Company industry:
Software Development
Job role:
Management

Manager Information Security

March 2016 - January 2019

SS&C | Primatics Financial

Karachi, Pakistan

March 2016 - January 2019

Key Achievements:
- Initiated, tested, implemented, and rolled out Enterprise-grade Application for managing Third Party Open-Source code analysis and licensing management.
- Developed and implemented workflow-based automated mechanism for policies, procedures, programs, and processes annual review and final sign-off.
- Proposed, assessed, acquired, and implemented pre-populated Shared Assessments SRA SIG and Cloud Security Alliance CAIQ questionnaire bundled with tearsheets for clients' periodic security due diligence requests as the first line of response.
- Migrated AICPA SOC 2 Control sheet to TSP 2017 Criteria to align business reports with the latest market available standard.

Company industry:
Software Development
Job role:
Information Technology

Assistant Manager Information Security

August 2014 - February 2016

Primatics Financial

Pakistan

August 2014 - February 2016

Key Achievements:
- Managed and delivered successful on-site client technology audits.
- Initiated and developed a risk management program and periodic risk assessment process for companywide verticals.
- Initiated and developed a separate internal audit management team, which is responsible for all internal and external audits including onsite client audit requests and periodic internal audits.
- Developed and rolled out a process and team charged with analyzing all critical systems, developing reports to document system vulnerabilities, and recommending appropriate solutions.

Company industry:
Financial Services
Job role:
Information Technology

Information Security Analyst

December 2012 - July 2014

SS&C | Primatics Financial

Karachi, Pakistan

December 2012 - July 2014

Key Achievements:
- Closely worked with the Senior Management in the development of the Vulnerability management program. Managed and delivered semi-annual internal and external vulnerability assessments.
- Initiated and developed a due diligence Vendor management program, processes, questionnaires, risk assessment guide, and reporting templates for critical vendors and service providers.
- Managed and delivered successful SSAE 16 SOC I Type 2 service Audit.
- Instrumental in developing and implementing Business Continuity and Disaster Recovery (BCP & DRP) plans for corporate offices in Karachi, Pakistan, and Mclean VA, USA.
- Initiated and developed a highly effective Information Asset register upgrade procedure to enable the latest information in risk assessment activity.

Company industry:
Software Development
Job role:
Information Technology

Information Security Analyst

March 2012 - December 2012

Trillium Information Security Systems

Karachi, Pakistan

March 2012 - December 2012

Key Achievements:
- Assisted clients with architecting and implementing security solutions.
- Coordinated with parties to ascertain the requirements and execution of penetration testings, vulnerability assessments, and configuration audits.
- Carried out pre-project presentations and performed successful PoCs and technical demos of Rapid7 NeXpose, Rapid7 Metasploit, and CA Identity Minder with several banks and institutions in Pakistan.
- Led professional training team to deliver several successful EC-Council official training for clients.

Company industry:
Cyber & Network Security
Job role:
Consulting

Education

Karachi Institute Of Economics And Technology

February 2010

February 2010

Bachelor's degree, Telecomm. and Networks

Pakistan

Skills

Governance
Expert
Governance
Expert
Compliance
Expert
Compliance
Expert
Information Security Management
Expert
Information Security Management
Expert
Vulnerability Management
Expert
Vulnerability Management
Expert
Risk Management
Expert
Risk Management
Expert
CUSTOMER RELATIONS
Expert
CUSTOMER RELATIONS
Expert
DISASTER RECOVERY PLANNING
Expert
DISASTER RECOVERY PLANNING
Expert
INFORMATION SECURITY
Expert
INFORMATION SECURITY
Expert
MANAGEMENT
Expert
MANAGEMENT
Expert
POLICY ANALYSIS
Expert
POLICY ANALYSIS
Expert
PROCESS ENGINEERING
Expert
PROCESS ENGINEERING
Expert
REPORTS
Expert
REPORTS
Expert
RISK ASSESSMENT
Expert
RISK ASSESSMENT
Expert
RISK MANAGEMENT
Expert
RISK MANAGEMENT
Expert
ACCOUNTANCY
Expert
ACCOUNTANCY
Expert
Information Security Management
Expert
Information Security Management
Expert
Vulnerability Management
Expert
Vulnerability Management
Expert
IT Audit
Expert
IT Audit
Expert
Risk Management
Expert
Risk Management
Expert
ISO 27001
Expert
ISO 27001
Expert

Languages

English

Expert

Urdu

Native Speaker

Training and Certifications

Certifications
ISC2 Certified in Cybersecurity (CC)
Oct 2022
Certified Ethical Hacker (CEH) [v6] (02/2011 - 01/2015)
Feb 2011
ITIL v3 Foundation Certified (12/2011 - 11/2014)
Dec 2011
ITIL Intermediate (Operational Support & Analysis)
Apr 2012
Information Security Foundation based on ISO/IEC
May 2012
EC-Council Certified Security Analyst (ECSA)
Aug 2012 - Jul 2015
CISSP
Aug 2017 - Jul 2023

Recommendations

Syed Waqas Zafar

Jan 2015

Jan 2015

Senior Information Security AnalystColleague

I’ve had the privilege of working with Adnan for little more than 3 months now and in that time I have known Adnan to be a well-grounded and down to earth business partner and colleague. He is a calculated risk taker, pragmatic leader and realist who seem to grasp ideas holistically whilst still taking note to the more acute details. I found this to be incredibly valuable in working with him, as it allows him (and for those who work with him) the ability to explore and understand nearly all possible perspectives to an idea and its numerous applications. He is a hard worker and value creator in the truest sense. I certainly recommend him as he can be an asset to any organization.

Hobbies and interests

DIY Tech Projects
Traveling
Photography