Faique Akhtar

• As a BU Manager/Security Architect, I am responsible for planning, designing, managing various security solution’s implementation projects in large and medium enterprises.
• Help our customers understand the risks in their On-premises and cloud infrastructure (Azure, AWS) and recommend them the strategy and best suitable solution.
• Provide product demonstration and perform proof of concept (POC) for technologies such as Data Loss Prevention, Data Classification, CASB, SASE, Zero Trust, CWPP, CSPM, Endpoint Protection, EDR and Web Proxy.
• Develop use cases/security policies for regulated data handling aligned to customer’s business and compliance requirement and map them to Data classification and Data Loss Prevention tools.
• Prepare Bill of Material and technical proposal based on the RFP or client’s requirement.
• Escalation point of contact for any technical or service delivery related issues.
• Deliver Security Awareness and Best Practice Training to enterprise customers.
• Provide support to sales team through out the sales cycle from technical perspective.
• Assess new security solutions and introduce them to our company’s product portfolio by liaising with key stakeholders and assessing market trends.
• Conduct training sessions for sales team
• Manage a technical team and ensure that the project milestones are on track and quality of delivery is maintained.
• Build relationship and trust with the customers as their Security Advisor.

Key Technical Skills:
Data Loss Prevention, Data Classification, Cloud Security, SaaS/PaaS/IaaS Security (AWS, Azure), Container Security, Cloud Access Security Broker (CASB), Zero Trust Network Architecture (ZTNA), Secure Access Service Edge (SASE), Cloud Workload Protection (CWPP), Cloud Security Posture management (CSPM), Endpoint Protection, EDR, Database Security, Intrusion Prevention System (IPS), Cloud Web Security / Proxy, Firewall, Web Application Firewall, Network Access Control, Security Gap Assessment, Security Design Review and Recommendation, Security Incident Management, Threat and Vulnerability Management. IPsec VPN, SSL VPN.

• As Sr. Security Engineer, I was involved in both Presales and Post sales activities which includes Design, Implement, Manage, Troubleshoot and various technologies of Endpoint and Network Security.
• An Escalation point for security issues and implementation strategy.
• Deliver technical, Security Awareness Training and presentation to our clients.
• Point of contact for new Security infrastructure setup projects (Endpoint, Network security & secure connectivity between sites/servers) for new branch offices, data centers and sharing the project timelines, challenges, risk involve along with action plan.
• Help customers enhance their overall security posture of infrastructure through design and implementation of various security solutions.
• Managing the team tasks and Client’s relation.

• As a Sr. Security Engineer, I have been involved in designing, implementing, managing and troubleshooting the Network Security and Endpoint Security technologies.
• Identify, investigate and resolve all IT security issues.
• Proactively provide plans to detect and mitigate security incidents to minimize operational impact.
• Analyze the emerging threats and take appropriate steps to mitigate them.
• Evaluate IT security products when required.
• Administer and Implement Network IPS, Host Based IPS, Web Proxy, Email Security, Firewall, DLP, Sandboxing Solution (APT), Network Threat Behavior Analysis systems.
• Configure and Administer Firewalls: Fortigate
• Configure and Administer Vulnerability Manager, SIEM, ePO 4.5/4.6/5.0/5.1/5.3, Anti-Virus, Site Advisor and Endpoint Encryption, McAfee Management for Optimized Virtual Environments (MOVE) and McAfee Security for Microsoft Exchange Server (MSME).
• Use a combination of Antivirus, personal firewall, host-based intrusion detection and data loss prevention (DLP) for Desktop protection.
• Identify gaps in existing architecture setup and recommend strategies using a combination of industry-standard security best practices, software controls and other necessary changes to promote a higher level of information security practices.
• Integration of Vulnerability management solutions with SIEM and integration of IPS with ePO and MVM.
• Implement and manage Websense Web Security Gateway (V10000 & V5000), Email Security Gateway, DLP and Triton Server in Transparent/Explicit mode.
• Perform health checkup for our client’s security solutions time to time and apply patches and best practices.
• Implementing countermeasures for DOS and DDOS attacks.
• Provide technical expertise through technical and product presentations, product demonstrations, Pilot implementations and beta program administration.

• Configuring Site-to-Site VPN between multiple SonicWALL, Fortigate and other firewalls like Cisco Pix/ASA, Netscreen, WatchGuard and Checkpoint, VPN Clients for remote users, including L2TP and PPTP clients.
• Implementing SonicWALL SSL VPN technology for secure access.
• Implementing and managing McAfee (Intrusheild and M series) Intrusion Prevention, Intrusion Detection Systems (IDS/IPS) and Data Loss Prevention (DLP).
• Configuring and troubleshooting Content Filtering, Application Firewall and Email Security solution.
• Configuring and troubleshooting routing and switching issues.
• Implementing and managing High Availability, WAN Load Balancing & Failover.
• Implementing VOIP and Video Conferencing over the VPN/non-VPN using H.323 and SIP protocols.
• Implementing Wireless networks using Wi-Fi Sec/WEP/WPA and configuring VAPs, and Radio Mode standards like 802.11a/b/g/n.
• Investigating information security logging and violation reports and determining risks along with the appropriate actions.
• Analyzing basic customer security requirements and making recommendations for improvement.
• Real time log monitoring, Investigation, Analysis and Reporting Security Events from various devices such as Firewalls, IDS, IPS and Windows Servers.