Bayt.com
Syed Muhammad Taimoor, Senior Information Security Consultant

Syed Muhammad Taimoor

Senior Information Security Consultant

Help AG

Location
Saudi Arabia - Riyadh
Education
Master's degree, Information Technology
Experience
12 years, 6 Months

Share My Profile

Block User


Work Experience

Total years of experience :12 years, 6 Months

Senior Information Security Consultant at Help AG
  • Saudi Arabia - Riyadh
  • My current job since November 2023

I am currently employed as a Resident Consultant (Cybersecurity, GRC). My primary roles and responsibilities include third-party risk management, reviewing cybersecurity documentation, and promoting cybersecurity user awareness.

Senior Cybersecurity Consultant (GRC) at Dimension Data
  • Saudi Arabia - Riyadh
  • April 2022 to November 2023

I have over 10 years of experience as a Senior Cyber Security Consultant (GRC). I have collaborated with national and multinational organizations on various projects, including ISO 27001:2013 certification, SAMA Cyber Security Framework, NCA-ECC Framework, NIST standard assessments, risk assessments, and IT security audits.

Information Security Consultant at Innovative solutions
  • Saudi Arabia - Riyadh
  • April 2016 to April 2022

Currently working in Innovative Solutions as an Information Security Consultant, having 8+ years of experience. I have worked with National and Multinational Organizations on several projects like ISO 27001:2013 certification projects, SAMA Cyber Security Maturity Assessment, Risk Assessments, IT Security Audit, PCIDSS Audits and physical security review.

Executive IT Security at Warid Telecom
  • Pakistan - Lahore
  • March 2014 to April 2016

-> Development of policies and procedures & review of existing policies & procedures according to ISO 27001 standard.
-> Vulnerability Assessment of IT Machines
-> PKI (Public Key Infrastructure) Management
-> Security awareness in the organization

Information Security Officer at USA based Healthcare IT company (MTBC)
  • Pakistan - Rawalpindi
  • December 2011 to March 2014

-> Organization wide Implementation of ISO 27001:2005 Standard
-> Annual Internal Audit of IT infrastructure
-> Vulnerability Assessment of IT Machines
-> Management of GFI End Point Security to enforce Access Control Policies.
-> Review firewall logs of internet usage (web logs)
-> Email logs Analysis(Exchange Server)
-> VPN and FTP logs Analysis
-> Assist compliance department to develop security policies
-> Basic level Application security testing
-> Intermediate level Penetration testing of Internal Network
-> Management of Surveillance system
-> Any duty assigned by management

Education

Master's degree, Information Technology
  • at University Of Arid Agriculture
  • August 2010

Master of Information Technology Principal subjects: Higher level Programming Languages (C#, Java, C++), Networking, Network Security, Operating System, System Administration, Databases, Management

Bachelor's degree, Commerce
  • at Punjab College of Commerce
  • August 2007

Bachelor of Commerce in 2007. Major Subjects were: Financial and advances accounting, Audit, Human Resource, Tax, Economics, Management, Mathematics

High school or equivalent, Pre-engineering
  • at Sirsyed science college
  • August 2005

(HSSC) Higher school secondary certificate in 2005 with major in Pre-Engineering. Major Subjects were: Mathematics, Physics, Chemistry

Diploma, Science
  • at Mannar Public School
  • April 2003

(SSC) Secondary school certificate in 2003. Major subjects were: Mathematics, Physics, Biology, Chemistry

Specialties & Skills

Databases
+Endorse 0
System Administration
+Endorse 0
Windows Network Administration
+Endorse 0
Linux Server
+Endorse 0
Vulnerability Scanning
+Endorse 0
ASP.NET
+Endorse 0
EXCHANGE
+Endorse 0
FIREWALL
+Endorse 0
INFORMATION SECURITY
+Endorse 0
RISK ANALYSIS
+Endorse 0
SECURITY
+Endorse 0
SECURITY POLICIES
+Endorse 0

Languages

English
Expert
Urdu
Expert

Training and Certifications

Certified Information Security Manager (CISM) (Certificate)
Date Attended:
March 2022
Valid Until:
January 2026
Certified Information System Security Professional (CISSP) (Certificate)
Date Attended:
December 2022
Valid Until:
November 2025
Payment card industry professional (PCIP) (Certificate)
Date Attended:
August 2018
Valid Until:
December 2021
Qualified Security Assessor (QSA) (Certificate)
Date Attended:
August 2018
Valid Until:
August 2022
ISO 27001 :2013 Lead Auditor (Certificate)
Date Attended:
April 2016
ISO/IEC 27001:2013 Information Security Management Systems: Lead Implementer (Certificate)
Date Attended:
October 2016

Hobbies

  • Playing Cricket
    Won a University tournament in 2009