Salar Humayun Taimuri

Experience

• 

  Civil Aviation Authority

  Dec 2011 - Jan 2012

  Internee
• 

  TPS - Cards & Payments Expert

  Aug 2013 - Dec 2014

  Associate Network Engineer

  Responsible for diagnosing & resolving hardware, software & end users problems. Configuration of Email clients like MS Outlook (Exchange).Working within a TCP/IP network environment, including DHCP, DNS and Ethernet Crimping and Punching to Cables. Configuring and managing backup procedures. Responsible for supporting: Windows XP/Windows 7/Windows 8/Office 2003/2007 and 2010.Installation of printers on desktop, laptops. Remotely manage clients having issues.Updating of inventory and report to supervisor.Working with Enterprise 2003/2008, Active Directory management, Group Policies Management, DNS, DHCP. Testing & Deployment of New Technologies over virtual labs and send feedback to seniors. Assemble laptops and desktops machines. Monitoring of servers and servers replication through VERITAS REPLICATOR. Installation & configuration of Virtual PC, through VM WARE and Hyper V. Operating and Management of Data Center. Installation through Symantec Ghost. Troubleshooting user login problems. Administering File Server (Software and Quotas). Deploying OS through WDS. Show less

• 

  Zensoft Pvt Ltd. Ghulam Faruque Group of Companies,

  Jan 2015 - Jul 2017

  IT Operations
• 

  KPMG

  Jul 2017 - Feb 2020

  Senior Associate

   Perform External and Internal Vulnerability assessment of critical servers/network devices/Applications. Risk assessment customers include well known financial organizations.• The risk assessments are performed to measure compliance against SBP published regulations on Prevention against cyber-attacks.• The reporting includes key findings and mitigation advice. The risk assessment help customers prepare to anticipate, withstand, detect and respond cyber-attacks.• My work also include performing generic risk assessments focused on assets that consist of technology, people and processes. Perform bench marking of the critical infrastructure, operating system, network devices, ESXi, Hyper-V, SAN and web application. Perform vulnerability assessment of web banking (treasury smart, bank smart), core banking (IRIS, Phoenix), RTGS and other web applications. Perform different engagement on circular given by State Bank of Pakistan (STP). Perform Data leakage activity for a big capital market from the perspective of data theft. Conduct projects related to presence of confidential or unauthorized information present over internet. Perform gap analysis of different security products and their integration and centralize management which includes (SIEM, DLP, NAC, and Endpoint Solution). Respond to different clients as incident res-ponder. Coordinate with IR and prepare the report with respect to investigation. Perform mobile application pen-testing for banking and different sectors and help them to mitigate the remedies. Perform forensic of systems, networks and mobile application as per the nature and need. Conduct test-of-controls, manage audit working papers, and prepare audit findings. Perform ISAE 3402 assurance engagements for capital investment group. Show less

• 

  Pakistan Stock Exchange - PSX

  Feb 2020 - Dec 2020

  Assistant Manager TISO

  Lead a team of Security analysts in monitoring.Initiate tests and perform risk assessments to ensure adequate security protocols are in place.Formulate and document security measures, emergency procedures, and incident response.

• 

  Confidential

  Dec 2020 - Dec 2023

  Incident Response, Playbooks, SOAR, Tabletop Exercises, Penetration Testing, Red Teaming, Cyber Resiliency, Digital Forensic, Simulated Phishing,

  • Deputy Director

    Aug 2022 - Dec 2023

  • Assistant Director

    Dec 2020 - Aug 2022
• 

  Risk Associates Bahrain

  Dec 2023 - now

  Cyber Security Consultant

  CBB Regulations, VA&PT, Red Team, SOC, O365 Defender, Purview, Threat Intelligence