Hanzala Javed

Experience

• 

  Pakistan International Airlines

  Feb 2019 - Mar 2019

  Intern

  Worked under the supervision of Senior Network Analyst learning Network solutions

• 

  Rewterz

  Nov 2019 - Nov 2022

  - Drive Advanced Cyber Threat Hunting and complex detection queries to eradicate any persistent threat residing within the enterprise.- Manage strategy, monitoring, incident handling and detection analysis.- Coach a team of analysts and incident responders, maintaining high degree of Cyber Security operational awareness against threat actor trends.- Preparation of Weekly/Monthly/Yearly Executive Security Reports.- Execution of SIEM/SOC Gap Assessments and SOC Maturity Assessments for various financial instituitions. Show less - Perform development and testing of Security Content (Event Parsing, Field Extraction, Correlation rules, Reports, Dashboards, and Asset Modelling) on SIEM and SOAR.- Designing and executing playbooks on SOAR for better response time and minimizing the attack surface.- Implementation of use cases and event mapping for better visibility of the attack.- Asset (Log Source) Integrations and Optimizations in SIEM.- Automation of Incident Response Life Cycle through custom SOAR platforms (SIRP/IBM Resilient). Show less

  • Information Security Analyst

    Dec 2021 - Nov 2022

  • Security Engineer

    Mar 2020 - Dec 2021

  • Jr. Information Security Analyst

    Nov 2019 - Feb 2020
• 

  Couchbase

  Dec 2024 - now

  Information Security Engineer - InfoSec and GRC

  - Oversee the execution of the Information Security Management System (ISMS) audit process, including planning, conducting, and reporting on annual and ad-hoc audits.- Collaborate with both internal stakeholders and external auditors to ensure smooth and frictionless audits.- Conduct annual risk assessments and maintain the information security risk register, providing strategic insights to the GRC team.-Participate in the management of security incidents, including root cause analysis, corrective actions, and final report reviews.-Plan, design, execute, report, and communicate phishing campaigns to improve organizational resilience.-Review and document information security standards, controls, processes, internal and external audit outcomes for continuous improvement of Couchbase Compliance program. Show less