Sufyan Jafri

Experience

• 

  GCS Pvt. Limited

  Jun 2016 - Nov 2016

  Network Support Engineer-Internee

  Provide support regarding CCTV camera installation and monitor the CCTV network throughout the Karachi.

• 

  Faysal Bank Limited

  Oct 2019 - Apr 2021

  Compliance Officer

  Working as a compliance Officer, my role is to comply regulatory requirements through out the bank and mitigate the risk through various standards and act

• 

  A. F. Ferguson & Co. (a member firm of the PwC network)

  Apr 2021 - Oct 2022

  Associate

  Worked and coordinate with teams on various engagements, involved in correspondence with clients, reviewing, and issuance of draft reports to clients. Conducted external and internal IT Audits for ITGeneral Controls testing and developed Risk registers to provide reasonable assurance in domains of access management, change management, backup management, System acquisition, Asset management, and governance.Developed an Application integration diagram for the Banks to understand the holistic connectivity of the applications around the bank.Involved in several IS risk assessment engagements for financial institutions covering information assets classification, identification of threats related to information assets and risks related to them, testing of controls for risk and impact assessment, mapping of risks as per risk matrix, and suggestingrecommendations.Performed gap assessments and reviews to evaluate compliance against regulatory requirements and standards related to information security such as ISO 27001, SECP, and ETGRM Framework for Financial Institutions.Engaged in the development and reviewing activities of Policies and Procedures on information security and information technology for various financial institutions in line with different industry standards and best practices.Holistically indulge and provide support in various tasks regarding VAPT, network security audits, and reviewing security benchmark documents on the basis of the CIS benchmark. Liaising and developing good working relationships with clients to deliver engagement expectations. Discussion of audit findings with clients and finalization of reports for management review/ final reporting to Boardcomitee. Show less

• 

  Blackstone Cyber Security

  Aug 2023 - now

  Cyber Security Consultant

  Client Engagement: Build and maintain relationships with prospective and existing clients to understand their cybersecurity needs, challenges, and goals.Product Knowledge: Develop a deep understanding of the cybersecurity products and services offered by the company. Stay updated on industry trends, threats, and emerging technologiesSolution Tailoring: Assess clients' cybersecurity requirements and provide tailored solutions that address their specific needs and vulnerabilities.Lead Generation: Proactively identify potential clients through research, networking, attending industry events, and leveraging leads provided by marketing teams.Pipeline Management: Maintain an organized sales pipeline, tracking leads, opportunities, and follow-ups to ensure timely progression of deals.Relationship Building: Foster long-term relationships with clients by providing excellent post-sales support, addressing concerns, and ensuring ongoing satisfaction.Market Insights: Gather and provide feedback from clients about their security challenges, competitive landscape, and emerging trends, which can contribute to refining the company's offerings.Metrics and Reporting: Keep accurate records of sales activities, forecasts, and performance metrics. Present regular reports to management to track progress and identify areas for improvement.Continuous Learning: Stay updated on the latest developments in cybersecurity, regulations, compliance requirements, and threat landscapes to effectively communicate these insights to clients. Show less