SUMMARY:

• Over 12 years of experience in managing IT projects included Information Security, Risk Assessment, ServiceNow, Incident Management, SharePoint, ITSM Services, Vulnerability, Cyber Security and Compliance
• Expertise in Security Event Monitoring technologies and processes, PKI and Encryption, Data Loss Prevention, EndPoint Security, Anti - Malware, Web Applications Monitoring and Remediation
• Expertise in Agile, SCRUM and Waterfall methodologies
• Developed Security Governance framework for IT Strategy, Policies and Guidelines
• Strong in Risk, Budget, Schedule and Change Management
• Designed and Implemented Solution for Business Continuity and Disaster Recovery projects
• Expertise in Software Development Life Cycle from Requirement Analysis, Design, Development, Testing, UAT, Implementation and Post Production support
• Project Management
• Cyber Security Strategy
• Cloud Computing & Virtualization
• Data Center Consolidation
• Configuration Management
• Risk Assessment
• Release Management
• Vendor Risk Assessment
• Incident Management
• Asset Management
• Business Continuity and Disaster Recovery

PROFESSIONAL EXPERIENCE:

Confidential- Chicago

Project Manager

Responsibilities:

• Responsible to manage end to end projects from Analysis, Planning, Design, Construction, Testing and Implementation
• Developed Risk Management and Governance framework
• Prepared documents for Change Management, Incident, Disaster Recovery and Vendor Management
• Managed Advanced Threat Detection and Web Application projects
• Conducted GAP analysis to implement cloud solution in IS environment
• Implemented cost effective solutions with third-party vendors through requirements, selection and deployment
• Established Change Management process for Infrastructure and Development team to minimize scheduled outage
• Managed full lifecycle Asset Management processes to track critical assets
• Prepared test plan, use cases by using Python scripts and communicated to QA team
• Analyzed Vendor Risk Analysis (VRA) to assure compliance with service level agreements
• Develop Cyber-Security Policies, Directives and Guidelines based on NIST recommendations

Environment: /Tools: SQL, LINUX, Python, Java Scripts, Palo Alto, Fortinet, Cisco ASA, Remedy, ServiceNowQualys, Clarity, SharePoint, KnowB4

Confidential - Chicago

Project Manager - Information Security

Responsibilities:

• Developed Cyber-Security Policies, Directives and Guidelines based on NIST recommendations and SANS 20 Critical Controls
• Met 99% of time & budget constraints by addressing motivation issues and spearheaded documentation for alignment among entities
• Conducted due diligence to uncover variations in control structure included risk assessment for audit, SOX, fraud monitoring and business restructuring
• Produced comprehensive statement to address potential fraud at client firm, coordinating input from 30+ cross-functional resources and process owners
• Analyzed vendor performance to assure compliance with service level agreements
• Setup Security Operation Center (SOC) for monitoring and reacting to security events based on defined terms of and escalation procedures

Environment: /Tools: BCP/DRP, SalesForce, CheckPoint, NetScreen, Rapid 7, ServiceNow

Confidential

Information Security Lead - Risk Management

Responsibilities:

• Produced comprehensive statement to address potential fraud at client firm, coordinating input from 30+ cross-functional resources/process owners
• Managed Data Classification and Leakage, Loss Protection & Prevention projects to keep compliance with regulatory requirements
• Established direction to benchmark best practices, identified Gaps and documented Business Requirements
• Analyzed vendor performance to assure compliance with service level agreements
• Developed and deployed Information Security Incident Management process based on ISO 27001 standard

Environment: /Tools: LINUX, UNIX, Solaris, Windows, PCI DSS Compliance, Tableau, SalesForce

Confidential

Program Manager - IT Security

Responsibilities:

• Worked with Business, IT, internal and stakeholders to meet project scope per agreed base line
• Deployed Distributed Denial of Service Mitigation Capabilities
• Replaced Log Management and Security Information Event Management Solution for High Security Management Solution (Privileged Users)
• Upgraded Symantec End Point Protection (SEP)
• Implemented Data Scrubbing in the Performance and Implementation Test Environments
• Managed and prioritized resources, work package assignments and budget using critical path method (CPM) and earned value (EV)
• Evaluated operational security policies of firewalls, Updated Risk Logs on weekly basis to ensure management awareness of high priority issues
• Prepared documents to measure Key Performance Indicators (KPI’s)

Environment: /Tools: Sybase, SQL, Solaris, Java, Windows, LINUX

Confidential

Project Manager

Responsibilities:

• Delivered Cyber Security services included firewall management, secure remote access, PKI & SSL
• Implemented corporate cyber security policies and guidelines
• Managed cyber security Incident Response Plans (IRP)
• Designed standard documentation for networks and systems configurations
• Developed cloud-based services security services assessment
• Managed multiple vendor partnerships
• Documented Flow Charts & Process Flows for the major activities

Environment: /Tools: ISO 27001, PCI DSS

Confidential

Project Manager - IT Strategy and Compliance

Responsibilities:

• Worked with in-house and off-shore development teams
• Conducted GAP Analysis to identify & recommended alternatives to streamline the service level offering
• Documented business and system use cases along with process scenarios
• Generated Unified Modeling Language (UML) diagrams such as activity, state transition and sequence diagrams to demonstrate critical processes
• Produced functional specifications and conducted weekly meetings with developers to discuss outstanding technical issues and ensured that deadlines were met on time Formulated and implemented various IT related Policies and Procedures based on various international standards and best practices resulting in cost saving
• Prepared shell script files for auto executing certain tasks

Confidential

Project Manager

Responsibilities:

• Drafted BRD, SRS & FRS documents & conducted structured walkthroughs to review/confirm the requirements
• Documented business and system use cases along with process scenarios
• Generated Unified Modeling Language (UML) diagrams such as activity, state transition and sequence diagrams to demonstrate critical processes
• Developed requirements traceability matrix (RTM)
• Remotely provided direction to off shore testing team and ensured that an appropriate level of application quality was maintained

Confidential

Professional Services Consultant

Responsibilities:

• Managed key projects for banks/financial institutions all over Pakistan
• Responsible for the deployment of the self-service banking NCR solutions
• Managing operational team of technical resource to deploy NCR products for financial institutions