Khwaja Naveed - Resume - Information Security Professional

KHWAJA NAVEED RASHEED CONTACT DETAILS: DIRECT # +92-322-2225995 / +92-333-3558015 Email: [email protected] / [email protected] URL http://www.linkedin.com/in/khwajanaveed/ Tweet: twitter.com/khnaveed H

OBJECTIVE: To Be An Integral Part Of Professional & Result Oriented Team, To Deliver Legendary Service With Dedication, Discipline And Strong Entrepreneurial Qualities, And To Attain The Corporate Objectives Based On Industry Best Practices Along With Personal Growth Within Defined Ethical & Legal Boundary.

SUMMARY OF EXPERIENCE:

Having more than ten years of professional projects based experience comprises of ICT and Information Security. With numerous international leading certifications including CISSP, CISM and PMP, with notable success in managing and architecting a broad range of Corporate IT Audit/Security initiatives & business focused solutions using leading ICT technologies with industry best practices and standards.

 Demonstrating strategic thinking & creativity capacity in implementing innovative ISMS programs that drive awareness, securing and strengthening IT Infrastructure & Organization. Having Solid Grasp on ISO-27001/2.

 Adept at developing Security Management Framework (SMF), ISO 27001 compliant security manuals, Project Management using formal methodologies and tools including OWASP and NIST for INFOSEC.

 Hands-on experience leading all stages of Network Infrastructure efforts, along with conceptual and technical

skills on Penetration Testing and Security Auditing. Disaster Recovery Site Designing; Business Continuity Planning; NCPI Data Center Design. Having firm understanding of BS-25999.

 Outstanding leadership abilities; able to manage and coordinate all phases of project with shining communications/people skills. Utilizing Project Management Framework on job with MS SharePoint, MS-PROJECT 2010.

 In-depth knowledge of Business Intelligence (BI) concepts, practices, procedures, tools & security framework.

CORE COMPETENCIES / SPECIALITIES :

Project Management; Compliance Management; Business Continuity & Disaster Recovery Planning; Virtualization; Risk Mgmt; Infrastructure Security Management; BIA; Penetration Testing; Vulnerability Analysis; Data Integrity/Recovery; Data Warehousing: Business Intelligence (BI) / Data Mining; Vendor Management; IT Delivery & Operations Mgmt.; QA.

SIGNIFICANT COU RSES & CERTIFICATIONS                    

Certified Information Systems Security Professional – CISSP; Certificate Number: 97804 CISM – Certified Information Security Manager. (Passed the Exam on 2nd August ‟07) Achieved ISMS Master Implementer status from IT Governance (UK) (http://www.itgovernance.co.uk) Project Management Training Programme for PMP-PMI (35 Hours) from New Horizon Institute. Comprehensive Project Management Training based on PMBOK v4 and Agile Project Management. SANS Institute: Hacker Techniques, Exploits and Incident Handling. SANS Institute: Wireless Ethical Hacking, Penetration Testing and Defenses. SANS Institute: Virtualization Security and Operations. SANS Institute: ITIL v3 Essentials for Security Management Microsoft SharePoint 2010, Microsoft Project 2010, MS SQL Server 2008 & Office 2010 for Business Intelligence (BI) Kingswell Business Continuity: Business Continuity (BS-25999-1/2) Advanced Fraud Examination Techniques from ACFE – Association of Certified Fraud Examiners. Project + ▪ Network + ▪ Security + ▪ A+ ▪ Server+ ▪ CWNA (Certified Wireless Network Administrator) ▪ CCNA 4.0. Completed 6 months course of Microsoft Certified Systems Engineer (MCSE) – 2003 in Security - CCTC. MS Windows Server 2008 PKI and Certificate Security from SkillSoft Corporation Network Security Secrets and Solutions from SkillSoft Corporation DCU Associate of Network-Critical Physical Infrastructure (NCPI) in Data Center from APC. Certified Basic Fire Fighter as a part of Disaster Recovery Process from Civil Defense Dept. Govt. of Sind. Alcatel‟s Advance IP Telephony Infrastructure Implementation Techniques from Al-Futtaim Technologies. Attained various certificate courses on Corporate Governance, Communication Skills & Mgmt. Techniques. HU

UH

PROFESSIONAL AFFILIATIONS : U

     

    

Member of ISACA – Information Systems Audit and Control Association. Member ID: 197286. Karachi Chapter. Professional Member of ISC2 - Information Systems Security Certification Consortium, Inc. Member ID: 97804 Member of PMI – Project Management Institute. Member ID: 1183177 Member of ACFE – Association of Certified Fraud Examiners. Member ID: 558642 Professional Member of EC-Council – International Council of E-Commerce Consultants Professional Member of ISSA – Information Systems Security Association. Member ID: 3121690 Member of BICSI - Advancing Information Transport Systems, Member Number: 162298 Professional member of IEEE - Institute of Electronics & Electrical Engineers), New Jersey U.S.A. IEEE-Communications Society, Member Number: 80247273 Professional member of NSP – Networks‟ Society of Pakistan (www.nsp.org.pk) Fellowship of SANOG VIII – South Asian Network Operators Group (www.sanog.org) Member of American Management Association, „Amacom‟. U.S.A. U

U

U

U

U

U

U

U

U

U

U

U

U

U

U

U

U

HU

UH

U

HU

UH

U

COMMUNICATION & PROJECT MANAGEMENT SKILLS: Proficient in communication skills management, analytical, interpersonal skills. Self-motivated and can manage a professional team. Participated in various courses, events, and meetings on Portfolio & Project Management. In addition, completed various courses conducted by American Management Association, „AMACOM‟ U.S.A. KHWAJA NAVEED RESUME – CONTACT# +92-322-2225995 - EMAIL: [email protected]

Page I

PROFESSIONAL CA REER TRACK : December 2005 to Date

SSGC – Sui Southern Gas Company

Head office, Karachi

(www.ssgc.com.pk)

Manager, Information Security

U

U

Recruited to establish and manage enterprise-wide Information-Security (ISMS) program of SSGC (Gas Utility Services Co.). Directly reporting to CIO, overseeing companywide efforts to identify and evaluate security of all information systems and maintenance of Security Infrastructure across all units and delivery channels. Designed ISO -27001 compliant InfoSec Manual. Effective in implementing security processes & procedures and involved in BCM based on BS-25999. Managing in-depth compliance management and audits, involved in penetration testing. Facilitating INFOSEC awareness training programme for overall Human Resources. Evaluating numerous options for upgrades and recommends alternatives for implementation. Vendor Management for Scope of Work & SLA is also a key responsibility. Key Contributions:  Supervising IT-security team for security analysis, audits and event management of all critical systems, using data mining techniques for vulnerabilities assessments, and recommending appropriate solutions.  Created and maintaining Information Security Manuals governing corporate security, email and Internet usage, access control, and incident response.  Managing Risk Assessment, Vulnerability Assessment, Penetration Testing and Security Audit.  Ensuring adherence of Standard Operating Procedures to stipulated guidelines.  Superintending NCPI Data Center operations improvements along with Infrastructure Operations Manager.  Project Manager of customer focused Alcatel‟s complete voice solution for „Contact Center‟ project.  Managing multiple data warehouses and using multiple BI tools for heterogeneous enterprise systems.  Project Coordinator for Business Intelligence (BI) solution based on Oracle Enterprise Business Intelligence.  Received recognition in print media as Project Coordinator for BI based project „Flood Relief Programme 2010‟.  Integration and implementation of Tier-2 Network Infrastructure (wired and wireless) along with layered security. U

SIEMENS Gulf (Scientechnic)

Oct 2004 to Dec 2005

Head office, Dubai - U.A.E

(www.scientechnic.com) U

U

Project Manager, Infrastructure & Security Program Manager for Information Systems & Network Security team of Siemens, lower Gulf Region. Primarily managing Infrastructure Projects (Wired & Wireless), focusing Networks and Systems Infrastructure design with layered security, for various multinational companies across Arab Emirates. Key Contributions: U

   

Project Manager of various Infrastructure security projects based on Siemens, Cisco & Enterasys Solutions. Designed DRP - NCPI Data Centers & deployed 3-tier network & security infrastructure for Government projects. Involved in IT Security and Auditing of various multinational organizations in Dubai – UAE. Penetration Testing and Vulnerability Assessments of various government Infrastructure setups.

Sep 2001 to Oct 2004

SUPERNET – TELECARD Ltd.

U

Network Engineer, Engineering Ops.

Head office, Karachi

(www.super.net.pk) U

U

More than 3 years‟ experience as a Network Engineer in Supernet–Telecard Ltd., coordinating and expediting multiple MAN/WAN country-wide projects. Key Contributions:  Network & Security Management of Corporate Wireless links (Satellite, Broadband, and Narrowband).  Coordinating in RF Planning for Wireless Connectivity of multiple projects.  Project Coordinator for Implementation & Management of MAN/WAN Infrastructure and Security project of leading banks in Pakistan.  Provided innovative ideas and solutions for optimization of network and security with intelligent utilization of available resources to Supernet‟s Network Operations Center (NOC). U

Nov 2003 to Aug 2004

SHELL Pakistan Ltd. U

Resident Network Engineer, IT-Networks

Head office, Karachi

(www.shell.com.pk) U

U

Served as Resident Network Engineer in Shell Pakistan Limited – Head office, for 9 months on a project from Supernet Ltd. to Administrate, Monitor and Troubleshoot Nationwide Shell‟s MAN/WAN links with security. Played a key role in maintaining SLA for highest service level and efficiency of MAN/WAN links.

ACADEMIC HORIZONS : B.E (Telecommunications), 2001  

Hamdard University

Main Campus Karachi, Pakistan

Bachelors Of Engineering in Telecommunications Engineering (1998-2001) Dissertation titled, “Wireless Data Integrity and Encryption with WPA”, 2001

BCS Hons. (2001-2004)

American World University

Bachelors of Computer Science with Majors in IT – three years degree Degree attested By States Department Washington D.C (U.S.A), UAE Embassy (U.S) and UAE Immigration & Foreign Affairs Dept.

TECHNICAL QUALIFICATION: DNT 0B

TEC – Institute (NEW HORIZON, Master Franchise)

Washington DC, USA

Karachi - Pakistan

Accomplished One-Year Advance Diploma in Networking Technologies (DNT)

DCS

Petroman Training Institute – Ministry of Petroleum

Karachi – Pakistan

Having one-year Diploma (DCS) in Computer Software Applications and Development KHWAJA NAVEED RESUME – CONTACT# +92-322-2225995 - EMAIL: [email protected]

Page II