Saif Muhammad Khan

Saif Muhammad Khan

Network Security Engineer
United Arab Emirates • +971-50-2666057

[email protected]

www.linkedin.com/in/saif-khan-10b86b13/

Personal Details:

18th Nov, 1984 ▪ Pakistani ▪ Married
Technically minded and solution-driven professional with comprehensive experience in end-to-end designing and implementation of various technologies related to the network, infrastructure, and systems security. Proven track record in creating and employing technologies, including but not limited to FortiGate Next-Generation Firewalls at Perimeter, Force Point Firewall at Core, Trellix Advance Threat Defense (Sandboxing), Trellix IPS, Trellix Web Security, and Tenable (Nessus Vulnerability Scanning). Dynamic individual with numerous certifications from the global leaders CISCO and Microsoft such as CCNA, CCNP, Sonicwall NSA, Trellix, MCITP, and ISA Server 2004. Possess in-depth knowledge and understanding of targeted attacks, secure network architecture, and network operations management. Critical thinker and problem-solver with ability to devise and employ customised tactical and strategic remediation plans for compromised organisations. Committed to superior services through a positive attitude and leadership within fast-paced environments.

Core Competencies

·  IT Infrastructure
·  Project Management
·  Technical Support
·  IT Security Engineering
·  System Security
·  Continuous Improvement
·  Security Posture Redesigning
·  Cost Reduction & Control
·  Network Security
Technical Proficiencies (Security)

·  Trellix Advance Threat Defence
·  Trellix ePolicy Orchestrator
·  Ubiquiti Unifi Network
·  Fortinet Firewall
·  Forti Access Point
·  Wallix (Privilege Access Manager)
·  Trellix Files and Folder Encryption
·  Trellix Drive Encryption
·  Skyhigh Secure Web Gateway
·  FortiPAM (Privilege Access Manager)

·  Forti Sandbox

·  Imperva Encapsula
·  Forti Analyzer

·  Rapid7 Vulnerability Scanner

·  Darktrace
·  Fortinet Switches

·  Trellix Threat Intelligence Layer

·  CrowdStrike
·  Forti Manager
·  Tenable Vulnerability Scanner
·  Trellix End Point Security
·  Forti Network Detection & Response

·  Forti Monitor (Network Monitoring)
·  Forti ZTNA

·  Solar Wind (Network Monitoring)
·  SonicWALL Firewall
Career Experience

Dana Gas PJSC, Sharjah, UAE                                         Sept 2021 – Present

Senior Security Engineer

Define, develop, and implement new solutions by applying technical expertise and knowledge to secure DG Infrastructure. Plan, deploy, and integrate Cisco DUO platform with all security devices, including Fortinet Firewall for Admin Access, Citrix ADC for VDI, Fortinet SSL VPN, VMware Horizon VDI, and Trellix Network Security Manager. Demonstrate in-depth knowledge and understanding of secure network architecture and executing network operations. Establish a better understanding related to the nature of the malware by conducting static and dynamic malware analysis.

Key Contributions:

·       Ensured effective management of incident response for organisations by employing Crowd strike Prevent and EDR expertise that helped in investigating targeted threats.

·       Formulated tactical remediation plans for compromised organisations to eliminate targeted attacks.

·       Guarantee seamless reporting and analysis of traffic by integrating all Fortinet Firewalls with FortiAnalyzer.

·       Adopted best practices and procedures to assure seamless migration of Perimeter Fortinet Firewall 500D to 601E, VPN Fortinet Firewall from 1000D to 601E, and Brach offices Firewall from 500D to 401E.

·       Deployed Trellix Network Security Manager as an MDR in both active and passive mode for high availability.

Mutex Systems Pvt Ltd (Freelancer), Karachi, Pakistan    Aug 2020 – July 2021

Infrastructure Security Lead

Oversaw and managed all activities related to the implementation of complex infrastructure security. Delivered active functional support to the sales by executing proof of concept at customer premises. Offered expert recommendations and right solution in accordance with customer requirements. Monitored all activities related to the implementation of complex infrastructure security.

Key Clients:

Mutex Systems Pvt Ltd (Pakistan, Karachi)

·       Played a key role pre-sales activity, analysed and assessed RFPs, and created technical response for the RFP.

·       Involved in creating solution demo and designing presentation for customer as well as implemented solution in line with scope within deadlines. Rendered expert advice and consultation on SOC and incident response.

·       Attended project kick-off meeting with customer to establish better understanding related to requirement and suggested optimum design and best approach for solution implementation. Delivered exceptional services by offering L2/L3 remote and onsite support on various security products of customers.

·       Leveraged technical expertise while reviewing security architecture and executing design exercising for customer, also provided comprehensive review reports.

·       Planned and organised training and knowledge transfer session for peers and customer. Initiated and timely completed upgrades and migration activities during the client downtime window.

·       Designed and built an internal LAB for testing and evaluation of product, also devised inclusive plans that helped in attaining infrastructure Security project objectives.

·       Administered and controlled assigned staff and prepared work schedules that aided in increasing productivity and timely completing work.

NEXUS Corporation (Karachi)

·       Focused on unifying security management across endpoints, networks, and data by configuring and implementing Trellix ePolicy Orchestrator.

·       Imported all Active Directory User on Trellix ePolicy Orchestrator by creating connectivity ePO using LDAP.

·       Guaranteed secure network access to user by deploying Trellix ATD, TIE/DXL.

·       Shared load on ePO Server by installing Agent Handler on 3 Sites, resulting in smooth Deployment of Trellix Packages, implementation of policies, and completion of anti-virus update.

·       Researched, identified, and examined targeted attacks and prevented threats by configuring Virtual Image on Trellix ATD for Sandboxing.

Fast University (Karachi)

·       Configured and implemented FortiAnalyzer to optimise security operations, identify and eliminate risks, and complete visibility of the entire attack surface. Retrieved all logs from FortiGate by configuring FrotiAnalyzer.

·       Added 10 FortiGate remote office device to ForitAnalyzer.

M&P Muller & Phipps (Karachi)

·       Protected Windows, Mac OS, iOS, and Android devices from viruses by setting up a Kaspersky Cloud Plus instance.

·       Minimised attack entry point by discovering vulnerabilities through configuration of patch management.

·       Created security profile for threat protection, network protection, mail protection, and web protection.

·       Blocked all USB by enabling device control and activated web control for various department to control browsing.

Pakistan Oxygen (Karachi)

·       Deployed Trellix SIEM to provide strong security insights, quick incident response, and seamless log management.

·       Guaranteed IT infrastructure security by integrating security devices and Windows Servers to Trellix SIEM.

·       Designed and introduced a dashboard for each device for any threat or incident visibility.

Dana Gas PJSC, Sharjah                                              May 2015 – July 2020

Security Engineer

Planned and deployed Trellix for system security, including Trellix ePO Server, Host Data Loss Prevention, Virus Scan, Host Intrusion Prevention System, and Drive Encryption. Defined and executed a policy for removable storage media in line with organisation requirement for preventing host data loss, including whitelisting USB/CD/DVD for executive users and blocking access for users outside of the LAN and normal users. Assured provision of detailed reporting by setting up and integrating Trellix IPS in In Line with ePO and CSR (Content Security Report). Installed Server Farm Core Trellix 1035 Next Generation Firewall and Trellix IPS in Inline mode at head office.

Key Contributions:

·       Successfully migrated Sharjah head office perimeter Sonicwall Firewall to Fortigate 500D.

·       Maintained system security by keeping an IPSec VPN between all branches with Fortigate Perimeter Firewall.

·       Facilitated users by providing secure network access through implementation of Trellix ATD, and TIE/DXL.

·       Prevented file or data being copied on to USB by introducing a policy for removable storage protection.

·       Leveraged technical expertise while installing Trellix Drive Encryption on all workstation to prevent loss of data.

·       Deployed Tenable Vulnerability Manger for vulnerability assessment, port scanning, and PCI Scanning as well as implemented Trellix Web Gateway 7.6.

·       Ensured seamless branch interconnectivity VPN by installing a Perimeter Fortigate Firewall 1000D in data centre.

Hei Tech International LLC, (Abu Dhabi)                        May 2013 – May 2015

Network & Security Engineer

Identified existing issues and protected systems from cyber threats, including bugs, malware, and hacking attempts. Administered Windows 2003 Advance Server, including execution of user’s security policy and management of active directory. Allowed hosts access various domain resources in the Windows system by creating additional Domain Controller on Windows Server 2008. Applied an end point encryption policy for PCs to encrypt the hard drive for (Patrol and Laptops). Implemented engine desktop central distribution server for seven branches to deploy patches on the desktop.

Key Contributions:

·       Chaired meetings with client to obtain feedback upon project progress and their satisfaction level.

·       Demonstrated efficiency and professionalism while dealing with network related implementations. Delivered active functional support in evaluating LAN/WANs to identify network performance problems.

·       Created and employed a policy for host data loss prevention that allowed access to USB/CD/DVD for executive users and blocked access for outside of the LAN users.

·       Adopted best practices and procedures to guarantee effective management of firewall implementation to perform basic security operations on the network.

·       Completed preventive maintenance for all desktops of 24 branches across UAE except Dubai over desktop central.

·       Transferred all Active Directory Users on Trellix ePolicy Orchestrator by linking ePolicy Orchestrator with LDAP.

Additional Experience

Al Rostamani Communication LLC (Abu Dhabi)             May 2011 till May 2013

Network & Security Engineer,

·       Configure McAfee ePolicy Orchestrator.

·       Establish connectivity ePO with LDAP to import all Active Directory User on McAfee ePolicy Orchestrator.

·       Push Agent, Virus Scan and DLP on all Client Machine through MacAfee ePolicy Orchestrator.

·       Create a Policy for DLP to block USB access for all Users except Managers.

·       McAfee ePolicy Orchestrator (ePO) administrator. Responsibilities include the install and setup of servers, storage and required infrastructure.

·       Upgrade McAfee ePO from 4.5 to 4.6 Patch 4.

·       Upgrade Device Control from 9.1 to 9.2.

·       Upgrade Virus Scan from 8.7 to 8.8.

·       Manage and provide support for McAfee Antivirus and DLP (Device Control).

·       Review and understand vulnerabilities and new threats (virus, worms, malware, exploits, attacks, etc.) a they are released, and work closely with vulnerability management, Patch Management, Firewall and Event Correlation products to ensure the environment is protected against new and existing threats. Updating security policies, procedures, and standards on a periodic basis. Create custom reports and presentations to management.

·       National Emergency Crisis and Disaster Management (NCEMA) (Abu Dhabi)

·       Abu Dhabi Police Head Quarter (Abu Dhabi)

·       Abu Dhabi Marine Authority-OPCO (Abu Dhabi)

·       Abu Dhabi Tawteen Council (Abu Dhabi)

·       ZADCO (Abu Dhabi)

·       Abu Dhabi Judicial Department (Abu Dhabi)

·       United Co Mitsubishi (Mina Abu Dhabi)

·       Kelvin Catering & Services (Abu Dhabi)

·       Telectron Services (Abu Dhabi)

·       AL Hussam (Abu Dhabi)

·       Al Dhabi (Abu Dhabi)

Assistant Manager, IT, United Capital Securities Pvt Ltd.

Network & System Administrator, Expotek Consultancy

Users & Customer Support Engineer (Internship), Cybernet (Pvt) Ltd.

Education

Bachelors in Computer Sciences (BS – 4 years 2007), Hamdard University, Pakistan, Karachi

Professional Certifications

·      Fortinet NSE 7 (uLJi8eyQbv) SEP 2022 |Fortinet NSE 4 (DTJAB0PGK2) | SonicWALL Network Security Administrator | NSA 101 2012

·      Trellix End Point Encryption 2015 | Trellix Host Data Loss Protection 2015 | Trellix Data Loss Protection 2015 | Trellix Email Gateway 2012 | Trellix Vulnerability Manager 2015 | Trellix Network Security Platform 2012 | Trellix Data Protection Technical Professional 2015 | Trellix Network Defense Technical Professional 2012 | Trellix Risk & Compliance Technical Professional 2014 | Trellix System Security Technical Professional 2015

·      Cisco Certified Network Professional 2012 | CISCO ID CSCO11924583 | Cisco Certified Network Associate CCNA – 2011 | MCITP ID 7540918

·      Microsoft Certified Information Technology Specialist MCITP – 2010 | Microsoft Certified Windows Server 2008 Enterprise Administrator – 2010 | Microsoft Certified Windows Server 2008 Application Infrastructure Configuration – 2010 | Microsoft Certified Windows 7 | Microsoft Certified Windows Server 2008 Active Directory Configuration – 2010 | Microsoft Certified Infrastructure Specialist MCTS – 2010