Hakim Khan

Experience

• 

  Serco

  Mar 2014 - Sept 2015

  Desktop Engineer

  • Responded to service requests, adhering to defined SLAs and providing exceptional customer service. Conducted regular patch management to ensure systems were up to date and secure.• Maintained accurate documentation of support activities, troubleshooting steps, and resolutions.

• 

  Sendd.co

  Sept 2015 - Feb 2016

  System Administrator

  • Acted as a SPOC and successfully managed IT and security for 6 locations in Mumbai. Ensured seamless coordination and efficient management across all sites. Oversaw the information security framework, taking responsibility for maintaining the risk register and implementing necessary controls to mitigate risks.• Administered and maintained a resilient IT infrastructure, prioritizing high availability and security.

• 

  JR TECHNOLOGIES

  Feb 2016 - Aug 2019

  Information Technology Team Lead

  • Led a 24x7 rotation shift team of 8+ professionals, overseeing budgeting, KRA, KPI, team and performance management, documentation, SOPs, and induction & training.• Designed and implemented secure network architecture, integrating various security solutions.• Managed incidents, conducted root cause analysis, and implemented mitigation plans to minimize risks.• Coordinated with external auditors, conducted audits, and ensured compliance with ITGC, third-party risk assessments, and ISO 27001 standards.• Implemented and maintained ISO 27001 standards, continually evaluating and enhancing guidelines and policies.• Managed IT infrastructure, team, and vendor relationships, overseeing end-to-end procurement processes Show less

• 

  Fable Fintech

  Aug 2019 - Oct 2023

  Information Security Risk Manager

  • Developed and executed strategic plans to elevate the organization's overall security posture. Oversaw a team of 5+ members in the security and IT infrastructure department, ensuring effective utilization of resources.• Advised stakeholders on security matters, aligning security goals with business objectives. Coordinated cross-functional teams to implement initiatives and address challenges. Ensured compliance with industry regulations and delivered strategic insights to drive security improvements.• Implemented comprehensive security frameworks, policies, and procedures, incorporating industry best practices. Ensured contractual, regulatory, and business requirements were met, fostering a secure environment.• Conducted risk assessments for 12+ business functions, identifying potential threats and vulnerabilities. Implemented risk management strategies to protect critical information assets and reduce organizational risks.• Maintained compliance with ISO 27001, PCI, GDPR, and Data Localization, RBI, and NIST standards. Conducted audits to assess adherence and implemented necessary remediation actions.• Developed and delivered security awareness programs, ensuring employees were knowledgeable about best practices. Monitored compliance metrics to proactively mitigate enterprise risks.• Assisted in the development and implementation of Business Continuity Plans (BCP), Business Impact Analyses (BIA), and Disaster Recovery (DR) plans. Ensured compliance and conducted successful drills.• Developed incident response plans and effectively managed containment, eradication, and recovery phases.• Managed vulnerability assessments, penetration testing, and security remediation projects. Established security configuration baselines and conducted ongoing reporting to maintain a secure infrastructure.• Prepared and presented regular reports to executive management, providing insights into information security initiatives and key metrics (KRI, KPI, and MRM). Show less

• 

  Deutsche Bank

  Oct 2023 - now

  Assistant Vice President NFRM