Senior Network & Security Engineer
Dynamic Systems Solutions
Total years of experience :20 years, 4 Months
Designed and deployed network and Security Systems for the customer as per the Project design HLD/DLD.
Enhances security team accomplishments and competence by planning the delivery of solutions.
Determines security requirements by evaluating business strategies and requirements, researching information security standards, conducting system security assessments, studying architecture or platforms, identifying integration issues, and preparing cost estimates.
Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices, designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
Verifies security systems by developing and implementing test scripts.
Identifying security gaps; evaluating and implementing enhancements.
Prepares system security reports by collecting, analyzing, and summarizing data and trends.
Design, build, implement, and support enterprise-class security systems.
Align organizational security strategy and infrastructure with overall business and technology strategy.
Identify and communicate current and emerging security threats.
Design security architecture elements to mitigate threats as they emerge.
Plan, researched, and design robust security architectures for any IT project to create solutions that balance business requirements with information and cybersecurity requirements.
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
Review and approve the installation of any new security technology within ARB.
Test security systems to ensure they behave as expected.
Regularly communicate vital information, security needs, and priorities to upper management.
Having excellent confidence in communication and presentation skills.
Administration, Configurations, Maintenance & Troubleshooting of Network Security related issues by managing all GCC security firewalls such as FortiGate, Palo Alto, Juniper ISG & SRX, Infoblox, Cisco ASA, and FireEye integrated with Cisco ISE. Manage changes in the Security devices by change management process.
Manage 60+ Enterprise level Firewalls all around GCC and get logs by log Analyzer consoles for Fortinet with FortiAnalyzer and PaloAlto devices by Palo Alto Panorama.
Research and Analyze network & security architecture, and recommends policies and strategies for designing, planning, and coordinating the infrastructure expansion and upgrades.
Manage and monitor all installed Security devices, like Firewalls, Infoblox, Cisco ISE, FTD, FMC, IPS/IDS, VPN (Pulse Secure), and infrastructure, with a concentration on support by adhering to standards Operation procedures, and SAMA guidelines.
Perform network security design and integration; Diagnose problems and solve issues, often under time constraints. Management & Administration of Access Control lists and Policy filters on High-End Cisco/Juniper Routers & Switches.
Analyze, Develop, and Evaluate new Networks -Design & Architecture for all new projects and ensure the best practices and design Architecture strategies are followed.
Participate and direct efforts with regard to disaster recovery and business continuity relating to the systems infrastructure, and the applications that depend upon this environment.
Provide guidance and on-the-job training for Information Security Analysts and conduct knowledge sharing to facilitate the achievement of team objectives and completion of tasks in an efficient manner that is consistent with security procedures and policy.
Provide inputs and implement policies, systems, and procedures for the assigned team so that all relevant procedural/legislative requirements, are fulfilled while delivering a quality, cost-effective service.
Support the implementation, operation, and maintenance of the Information Security Management Systems in order to guarantee that the security requirement is ensured.
Conduct change management security reviews and infrastructure baseline reviews in order to maintain the integrity of the Saudi Payments’ architecture.
Support Software Development Lifecycle and ensure it complies with security policies.
Supervise the implementation of corrective actions in order to mitigate any potential security risks.
Design and hands-on experience with different information security products in identifying and implementing security controls for the banking sector base on SAMA-adopted standards. Perform periodic Security Audits/access reviews to maintain compliance with audit requirements and to assess the level of compliance with SAMA standards.
Assist with external audits, penetration tests, and vulnerability assessments to facilitate the audit cycles and order to prepare audit reports, and recommend remedial actions.
Prepare required statements and reports on timely and accurate basics to meet the department and organization requirements, policies, and quality standards.
Having excellent confidence in communication and presentation skills.
• Manage a team of people responsible for the development and/or enforcement of corporate and business group information security policies to protect company information assets and intellectual property.
• Develop information security policies and procedures.
• Evaluate and recommend hardware and software to provide the appropriate level of protection for data, software, and hardware.
• Manage the development, deployment, and execution of controls and defenses to ensure the security and risk mitigation of company infrastructure technology, information systems, and digital payment systems.
• Analyze business needs and establish priorities for the protection of critical systems and operational policies.
• Establish and implement appropriate standards and criteria for hardware, software, email and web firewall, access verification and encryption requirements.
• Evaluate potential business impacts from security breaches and provides strategic and tactical guidance to business decision makers.
• Ensure the effectiveness of enterprise scanning from an outside in perspective, ensuring that security services are in place to maintain our enhanced security standards.
• Provide cyber scanning security oversight for Organization's global network, in partnership with Information Technology Infrastructure owners.
• Direct management of a team of experienced cyber scanning security professionals that provides a myriad of solutions and best-in-class service to Organization ensure strong collaboration and partnership with peer organizations across Information Security, IT, and Organization.
• Ensure the compliance of the enterprise security standards in security architecture design and their implementations.
• Participate in technology testing, evaluation and selection of security product and services for Organization.
• Provide daily support on incidents, problems, tasks and complex projects, including interfacing with customers and peer organizations.
• Respond to identified vulnerability threats, and drive continued growth in proactive threat detection and remediation.
• Provide vendor management and partnership building support.
• Deliver strong network governance and compliance across Organization.
• Experience with implementation of IT standards, IT security policies and procedures in ITIL & PMP framework. Implemented IT SOP in Organization.
• Experience in handling IT AMCs, contracts & defining SLA’s and Users KPI’s.
• Provide Effective and efficient IT Service Management by Helping and avoiding the costs and challenges of managing company own IT environments.
• Simplify the IT Infrastructure with improved reliability and less complexity of data center.
• Provide excellent communication and presentation skills.
Manage the provisioning of IT Support on going operation for North region datacenters Active data centers and DR site for both provinces including (Punjab, NWFP). Make sure full Reliability with highest possible efficiency and ensuring a stable service delivery, to all systems uptime 24/7x365 and proactive as well as reactive support.
Manage and administrate the complete IT Systems, communication and network infrastructure of the north region by directing/managing the support team of 20+ members, leads them and assign them task on business needs.
Strong leadership skills for my work entails managing technical staff, assigning and organizing tasks, and overseeing implementation of upgrades.
Manage corporate data centers and teams supporting the enterprise (internal) infrastructure and client facing infrastructure.
Ongoing operational and Maintenance activities including backup, restore, upgrade and change to be performed in a timely manner with minimal business impact.
Overseeing troubleshooting, and provide expert support when required. Ensure that all operating system and servers and software are up-to-date and patched.
Work as required with project related teams to implement it operation, new systems and follow the instructions of HOD. Performing task assigned by the HOD.
Interacting with branches and operation managers to ensure support provisioning to resolve IT related issues and provide solutions in a timely manner.
Oversee regional vendor relationship and coordinate with regional procurement staff for the purchase of hardware and software products.
Overseeing the team member’s performance and expense report in conscientious and timely manner.
Reviewing the status reports of team member’s performance and addressing the concerned issues as appropriate.
Managing the delivery of IT related training which are provided by the bank or any third party services.
Co-managing the responsibilities of the regional Data center that acts as a DR for the primary data center. Provide Support on IBM mainframe AS400, X Series and Blade Servers included high availability configuration of Centralized Server with VMM, Hyper-V.
Managing and assisting where required in the planning and implementation of additions, deletions and major modifications to the existing regional IT datacenter Infrastructure.
Oversee all the help desk activities at the regional level. Ensure the implementation of Banking IT SOP.
Performing research and evaluation where required.
Provide excellent communication and presentation skills.
Administrate the NOC (Network Operation Center) operations of corporate of bank. Make sure full Reliability and 24/7 network up and provide full disaster recover plane.
Ongoing operational and Maintenance activities including backup, restore, upgrade and change to be performed in a timely manner with minimal business impact.
Installation, Configuration, Maintenance and hardware troubleshooting server side in different branded Machines like IBM XEON series Servers, Sun Micro Server like Fire X2100, Fire X4200 Servers, Physically 6 servers working and virtually 13 servers are installed with VMWare.
Work through VMWare ESXi V4.0 / 7.0 Workstation installation and backup and management knowledge.
Access list defining and Implementation for traffic routing from head office to branch offices. Backup router on weekly bases and Make sure high availability of network.
Handling Servers Machines like Domain controller, squid Proxy Server, Mail server, Database Server, Application & File Server. Backup of all Server Machine to secure the data on tapes. Managing Internet Security / Firewall & Care WAN link.
Design new opening bank infrastructure by Installation, configuration and maintenance of Active directory (AD) with company approved structure with help of DNS, DHCP, and WINS on New Dell servers.
Site to Site VPN connectivity between different branches mail routing and Data access.
Manage IT helpdesk Support team to provide user support regarding there problems.
Manage and Plan Budget and Resources and find new needs for IT department.
Network Expansion Layout scheme Design, Installation and Configuration, Trouble Shooting of LAN & Computer Hardware
Purchasing of all sort of hardware like Server Machine, System and Network printers, Router, Switches, Cisco, 3COM.
IT Audit detail preparation
Subordinate the Head IT.
Provide excellent communication and presentation skills.
Administrations overall Network of more than 100 nodes in octopus on two different site offices in Dubai.
Redesign company infrastructure by Installation, configuration and maintenance of Active directory (AD) with company approved structure with help of DNS, DHCP, and WINS on New Dell servers. Migrate domain from old server to new server.
Site to Site VPN connectivity both offices for mail routing and Data access.
SSL VPN configuration for remote uses so they can remotely access mail and office data. Access update data for presentations and portfolio.
Manage Active Directory 2003 Services and features for domain on both office and with networks, directory services and managing Domain controllers.
Define policies and security principles for users, groups and computer accounts, Define folder sharing access.
Remotely management of servers with Microsoft Management Console (MMC) and Administration.
Handling Servers Machines like Domain controller, Mail server, Database Server, Application & File Server. Backup of all Server Machine to secure the data on tapes. Managing Internet Security / Firewall & Care WAN link.
Manage IT helpdesk Support team to provide user support regarding there problems.
Manage and Plan Budget and Resources and find new needs for IT department.
Provide Support to project Sites.
Looking after IT activities related to Hardware, Software & Networking
Network Expansion Layout scheme Design, Installation and Configuration, Trouble Shooting of LAN & Computer Hardware
Email configuration, troubleshooting through Microsoft Outlook & Outlook express.
Purchasing of all sort of hardware like Server Machine, System and Network printers, Router, Switches, hubs of Cisco, 3COM.
Subordinate the In-charge IT Director.
Provide excellent communication and presentation skills.
• Develops detailed network specifications and adheres to standards in support of new project scope work.
• Develops and recommends strategies for network growth, security, and enhancements by maximizing functionality of network equipment such as routers, bridges, gateways, switches, concentrators, and hubs.
• Interfaces with vendors and suppliers to ensure adequate delivery and maintenance of equipment and services.
• Performs network analysis and capacity planning and testing for organization's LAN/WAN environment.
• Designs, installs, and tests network topologies to support Internet and other data transport channels.
• Supports installation and maintenance of PC/Server hardware and software.
• Designs, installs and troubleshoots IP based LANs/WANs/MANs and IP- based routing and bridging solutions.
• Performs routine and emergency maintenance of equipment.
• Provides network performance monitoring and analysis.
• Analyzes and evaluates LAN/WAN changes, additions and reconfigurations.
• Contributes to development and administration of network backup and recovery plan to maintain LAN/WAN network systems operation.
• Identifies and corrects faults and provides resolution of complex problem tickets escalated from the help desk.
• Leads network projects by recommending solutions to network strategy and security issues, as well as providing network-engineering solutions/options for the organization.
• Design, installation and commissioning of Local Area Networks (LAN) with hp Procurve manage switches like 2600/2800/3500/4200/5400 series.
• Installation and configuration of wireless Access points and radio ports like hp Procurve.
• Installation and configuration VPN like IPSec and SSL, Access list, firewall polices on Client requirement on juniper and FortiNet firewalls.
• Installation, Configuring, Maintenance & troubleshoot of hp Servers like DL360G5, DL380G4-G5 with Windows 2008 / 2003 /2000 standard & Enterprise edition.
• Handling all IT Operations including like Manage new upcoming Networking Projects BOQ, resources gathering, assign different tasks to subordinates, Clients Support. Take reports on different issues and manage team.
• Network Project Management Planning (PMP) like Survey, Design, and Documentation in Boson NetSim, MS VISIO, MS WORD and MS EXCEL.
• Project Costing, Resource gathering and Team building.
• Supervision of Networking Projects, take decision on different issues.
• Physical Cabling layout designing and installation
• Supervised on physical lying of cable & Duck-ting.
• Cable Testing and troubleshooting.
• Installation, Configuration, Maintenance and hardware troubleshooting in different branded machines like IBM XEON Server, eSeries Servers, IBM Notebooks, IBM Desktop Systems, HP Compaq Proliant servers and Desktop Systems and Notebooks.
• Installation, Configuring, Maintenance & troubleshoot Of Windows 2003 Servers / Windows 2000 Server / Windows XP/ Windows 2000/Window NT /Win98 Based Network, In different Topologies.
• Installation & Configuration of VisNetic Mail server / Exchange Server 2000/2003.
• File / Web / Mail Server Administrator by Win Proxy, M Daemon in WinNT / 2000.
• Management and Installation of Software and Hardware interface including Modems, Network Cards, Multimedia Projects, Scanners, CD-Writers, Backup drives, etc.
• Provide technical support to different companies on contract like DPA, Grooming Company, Padialite Chemicals, etc.
• IP Addressing & Sub netting. Troubleshooting, Maintain, Implementation & Configuration.
• Working on CAT5 & CAT6 cable.
• Full knowledge about all categories of CAT5 & CAT6 Cables.
• Fortinet Firewall solution, VPN connectivity, wireless networking Solutions.
• Citrix Installation, implementation and testing.
Administrations overall Network of more than 250 nodes in DMBA.
Installation, configuration and maintenance of Active directory (AD) with company structure with help of DNS, DHCP, and WINS.
Manage Active Directory 2000/2003 Services and features for domain. A Networks, directory services and managing Domain controllers.
Define policies and security principles for users, groups and computer accounts, Define folder sharing access.
Remotely management of servers with Microsoft Management Console (MMC) and Administration.
Handling Servers Machines like Domain controller, Database server, SMART Server, ACCPAC Server, Application & File Server.
Backup of all Server Machine to secure the data on tapes.
Managing Internet Security / Firewall & Care WAN link.
Manage IT helpdesk Support team to provide user support regarding there problems.
Configure Cisco 2500, 2601Series Routers and 2950, 2960Series switches.
Manage and Plan Budget and Resources and find new needs for IT department.
Provide Support to project Sites.
Looking after IT activities related to Hardware, Software & Networking
Network Expansion Layout scheme Design, Installation and Configuration, Trouble Shooting of LAN & Computer Hardware
Installation of Software ERP software like ACCPAC, SMART, GDMS etc.
Email configuration, troubleshooting through Microsoft Outlook & Outlook express.
Providing support related to all matters related to IT Department.
Purchasing of all sort of hardware like Server Machine, System and Network printers.
Purchasing of Networking Equipment like Router, Switches, hubs of Cisco, 3COM.
Purchase and Implement the Wireless Network. Implement the secure wireless network and with effective handover features like Roaming with LINKSYS devices.
Subordinate the In-charge IT.
Provide excellent communication and presentation skills.
• Installation, Configuration, Maintenance and hardware troubleshooting in different branded
Machines like IBM XEON Server, eSeries Servers, Net Finity 3000 / 3500 series Servers, IBM Notebooks, IBM Desktop Systems, Compaq Proliant servers and Desktop Systems and Notebooks.
• Installation, Configuring, Maintenance & troubleshoot Of Windows 2003 Advance server / Windows 2000 Server / Windows XP/ Windows 2000/Window NT /Win98 Based
Network, In different Topologies.
• Installation & Configuration of Workstations (Troubleshooting / Maintenance).
• File / Web / Mail Server Administrator by Win Proxy, M Daemon in WinNT / 2000.
• Management and Installation of Software and Hardware interface including Modems, Network Cards, Multimedia Projects, Scanners, CD-Writers, Backup drives, etc.
• Network Planning like Survey & Documentation in MS VISIO, Hardware Support.
• Provide technical support to different companies on contract like ICI Pakistan, HBL Pakistan, Shahpur textile, Pak Kuwait Textile, Al-Nasar textile, TEPA, Colby Pakistan, Service Industries, Alfa Laval, General tyres etc.
• IP Addressing & Sub netting. Troubleshooting, Maintain, Implementation & Configuration.
• Working on CAT5 & CAT6 cable.
• Full knowledge about all categories of CAT5 & CAT6 Cables.
• Physical Cabling layout designing and installation
• Supervised on physical lying of cable & Duck-ting.
• Cable Testing and Troubleshooting.
Clear Exam NSE7- SDWAN 6.4
CISA (Certified Information Security Audit) Cleared.
Clear CISM exam on 23 May 2018.
Fortinet Network Security Expert 5 (NSE5) Fortinet ID: FORT005111
Clear the exam C|EH - V9
ITIL®2011 Foundation Certified.
Cobit®5 Foundation Certified
Pass the NSE4-v5.4 Exam. Fortinet ID: FORT005111
CCIE Security Written Exam Passed.
Project Management Professional Course(35PDU's)
Cisco ID : CSCO10281776
Cisco ID : CSCO10281776
BSCS (Bachelor of science in Computer Science) It is four year bachelor of science honor program. I have study 137 credit Hours with 3.02 / 4.0 - CGPA
• CGPA 2.96 / 4.0 • Got 7th position in entry test of university & win 50% scholarship.
MCSE (MICROSOFT CERTIFIED SYSTEM ENGINEER) MCP+I (MICROSOFT CERTIFIED PROFESSIONAL + INTERNET)