Bilal Goolam-Mahomed

• Senior Vulnerability Management Analyst for work that needs to be performed within the Global Computer
Incident Response Team.
• Analysed security vulnerabilities and malware to assess risk. (SOC Analyst)
• Respond to alerts identified by the SOC.
• Knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR, CCPA).
• Review output from Rapid7, 0365 Security & Compliance, Microsoft Cloud App Security (MCAS), MS Defender
XDR endpoint protection, Patch Management across EMEA, APAC and US and software distribution.
• Verified vulnerability remediation and compliance through network and host-based vulnerability scanning.
Ivanti Security Controls.
• Fix detected vulnerabilities to maintain a high-security standard (Patch Management / Remediation) Ivanti
Security Controls & Ivanti Neurons.
• Ivanti Admin role managing system configurations, reporting, customizations, and integrations to support IT
services delivery and collaborate with various stakeholders Quarterly to understand requirements and ensure
that the Ivanti platform meets Hartree Partners needs effectively.
• Managed remote access solutions using Ivanti Pulse Secure, ensuring secure VPN connections for remote
employees.
• Provided troubleshooting and support for Pulse Secure VPN users, resolving connectivity and authentication
issues.
• Configured and maintained Pulse Secure VPN policies to align with company security protocols.
• Assisted in upgrading Pulse Secure infrastructure, ensuring compliance with industry standards and improving
security posture.
• Provides risk reports on existing vulnerabilities / malicious code and their potential impact to Hartrees
environment.
• Participated in the development of new services to be added to the Vulnerability Management portfolio.
• Guide and assist with the remediation of vulnerability findings.
• Respond to alerts identified by the SOC.
• IT Service Management Collaborated with teams/departments to implement IT security process, e.g. service
desk and reporting of security incidents, resulting in less security incidents and false positives
• Managed incident management optimizing ticket resolution, system updates to enhance user satisfaction and
system stability.
• Work with Security leadership to present information and influence change.
• Participate in risk management, collaborative discussions, decision-making, and develop templates and
materials to help with self-service risk management actions.
• Research security enhancements and make recommendations to management.
• Administer endpoint protection system (AV).
• Administer email security system (mail filter through MS365 Defender).
• Investigate security breaches and other cybersecurity incidents (SIEM).
• Document security breaches and assess the damage they cause (Incident Response).
• Help colleagues install security software and understand information security management.

Reduced critical vulnerabilities by 43% across EMEA, APAC, and US using Rapid7 InsightVM and
•
Tenable.io.
Conducted SOC investigations on 25+ monthly incidents with Microsoft Defender XDR and MCAS,
improving MTTD by 35%.
Automated patching using Ivanti Security Controls, enhancing SLA compliance and reducing
manual workloads.
Led quarterly compliance reviews aligned to ISO 27001 and NIST frameworks; improved audit
outcomes by 25%.
Administered Microsoft 365 Defender, Endpoint AV, and SIEM logging for real-time threat
hunting.
Collaborated with risk, infra, and legal teams to produce threat reports, drive remediation, and
shape security policy.
Configured and supported secure VPN access with Ivanti Pulse Secure, cutting user lockout
issues by 60%.

Retrenched due to Covid-19
• Supported Senior Vulnerability Management Analyst in G-CIRT tasks.
•
• Analyzed security vulnerabilities, malware, and harmful code to assess risk to bank infrastructure.
•
• Utilized SCCM for endpoint protection, patch management, software distribution, and Microsoft Intune.
•
• Reviewed outputs from BeyondTrust Retina CS (Vulnerability Scanner).
•
• Prepared risk reports on vulnerabilities and malicious code impact on Standard Bank.
•
• Generated reports for Beyond SaaS, RoA, GTO, PBB, and Stanlib.
•
• Produced Monthly and Weekly Vulnerability Summary Reports for ISOs.
•
• Verified vulnerability remediation and compliance through network and host-based scans.
•
• Reported non-compliance and deviations to stakeholders (e.g., CIB Wintel Servers).
•
• Reviewed External Perimeter Website Ratings.
•
• Generated performance metrics and reports for strategic and tactical security control decisions.
•
• Contributed to development of new services in the Vulnerability Management portfolio.
•
• Guided and assisted in vulnerability remediation efforts.
•
• Responded to alerts identified by the SOC.
•
• Tested and identified network and system vulnerabilities.
•
• Participated in the change management process.
•
• Ensured protection of data and infrastructure through proper security controls.
•
• Responded to system and network security breaches.
•
• Analyzed results from mobile code, malicious code, and anti-virus software.
•
• Communicated network security issues to peers and management.
•
• Troubleshot security and network problems.

• Provided support to the Senior Vulnerability Management Analyst for work that needs to be performed within
the Global Computer Incident Response Team.
• Performed analysis on all security vulnerabilities, malware, and harmful code to determine the risk to the banks
infrastructure. (SOC Analyst)
• SCCM endpoint protection, patch management and software distribution and Microsoft Intune.
• Review output from Beyond Trust Retina CS (Vulnerability Scanner)
• Provides risk reports on existing vulnerabilities / malicious code and their potential impact to the Standard Bank
environment.
• Reports included Beyond SaaS for RoA, GTO, PBB and Stanlib.
• Monthly and Weekly Vulnerability Summary Reports for ISOs.
• Verified vulnerability remediation and compliance through network and host-based vulnerability scanning.
• Reported on non-compliance and deviations to appropriate stakeholders. (E.g.) CIB Wintel Servers.
• Review External Perimeter Website Ratings.
• Provided performance metrics and reports that provide information to business and technical leaders to assist
with strategic and tactical decisions to improve / revise Information Security controls. (E.g.) External Perimeter
Website Ratings.
• Participated in the development of new services to be added to the Vulnerability Management portfolio.
• Guide and assist with the remediation of vulnerability findings.
• Respond to alerts identified by the SOC.
• Testing and identifying network and system vulnerabilities
• Participating in the change management process.
• Ensuring that the organizations data and infrastructure are protected by enabling the appropriate security
controls.
• Responding to all system and/or network security breaches.
• Ability to read and use the results of mobile code, malicious code, and anti-virus software.
• Ability to communicate network security issues to peers and management.
• Troubleshooting security and network problems.
• Level 2 support and Level 3 Support at MTN & Dimension Data.
• Full exposure on end-to-end IAM domain
• Monitor identity and access management, including monitoring for abuse of permissions by authorised system
users.
• Generate user access using PowerShell, Linux & LDAP Apache for MTN
• Configuring SSO on Azure at Dimension Data.
• Provide management feedback.
• Provide L2 support on Remedy ITSM (bmcsoftware) monitor the service ticket or identity management platform
for new requests. Provide L2 support on OID IAM Architecture & provide L2 support for Aveksa, Azure &
Sailpoint.
• Assess all requests to identify any risk and policy violations and approve or reject accordingly.
• Prepare Incident Reports for Senior Resources and help facilitate project delivery.

Supported enterprise Vulnerability Management for Standard Banks GCIRT; managed reports
•
•
for 1000+ endpoints.
Analyzed malware/host anomalies using Retina CS and provided remediation plans for Windows
& Linux assets.
Delivered BeyondTrust SaaS risk summaries for RoA, PBB, and CIB business units.
Managed SCCM and Intune deployments; implemented patch rollouts reducing exposure
windows by 40%.
Configured IAM integrations (Aveksa, SailPoint, OID, Azure AD SSO) and executed user access
reviews.
Generated PowerShell and LDAP scripts to automate access provisioning at MTN.

• Sorting out of general maintenance issues at clients regarding repair and diagnoses of various faults.
• CAT5 data cabling, cable pin outs & patching, computer hardware, USB & parallel, LANs, TCP/IP, configuration
of access points and troubleshooting network connections
• Maintaining workstations with general hardware and software needs. Working with day to day problems
encountered by the clients with Windows (XP, Windows 7, Windows 8 and Widows 10)
• SQL Data bases and enquiring data bases.
• Installation of servers with Windows 2012 Server. Managing Domains with Active Directory
• Setting up of POP n Exchange mailboxes on PCs. Setup and install of Voip
• Problem solving for Enatis. Installation of Cctv DVR with remote access

Managed AD domains, Exchange mailboxes, and network infrastructure for SMB clients.
•
•
• Installed and configured Windows 2012 Servers, VoIP, CCTV with remote access, and SQL
database queries.
Diagnosed network faults (LAN/WAN), implemented cabling, and managed workstation rollouts.

System 5
Take up position at YSFComputers
• Out bound technician resolving general maintenance issues at clients including repair and diagnoses of various faults.
• CAT5 data cabling, cable pin outs and patching, computer hardware, USB and parallel, LANs, TCP/IP, configuration of access points and troubleshooting network connections.
• Provided recommendations to clients with regards to Server administration, Network Architecture and design etc.