Summary
Overview
Work History
Education
Skills
Additional Information
Certification
Timeline
Generic
Sher Zamin Khan

Sher Zamin Khan

Senior Security Architect
Riyadh

Summary

A Highly Driven Security professional with more than 15 years of experience in Cybersecurity, Infrastructure Security and information security with multiple International Certifications, seeking a challenging position in the same Field.

Overview

20
20
years of professional experience
4
4
years of post-secondary education
12
12
Certifications

Work History

Senior Security Architect

Olayan Saudi Holding Company
01.2019 - Current
  • Working as senior security Architect with Olayan group Riyadh responsible for implementation of I.T Security and Cybersecurity measures.
  • Supervised Cybersecurity operation and I.T security operation of more than 20 operating companies under OLAYAN group , build new SOC with Rapid 7 SIEM and SOAR solution.
  • Managed Cybersecurity and solution delivery projects provided support to business and I.T on projects and initiative that require Cybersecurity involvement.
  • Managed and conducted penetration testing and vulnerability scanning according to relevant policies and procedures.
  • Performed quarterly vulnerability assessments and presented results to senior management with remediation plans.
  • Conduct Periodic compliance reviews against regulatory Information Security requirements, Policies, procedures, and standards.

Senior Security Administrator

Olayan Saudi Holding Company
01.2015 - 12.2018
  • Managed Cybersecurity operation and I.T security operation of more than 20 operating companies under OLAYAN group.
  • Performed administration of security devices Palo alto firewalls, Fortinet firewalls, cisco Firewalls, IDS/IPS, SIEM, EDR, carbon black Application control, Forcepoint proxy, LogRhythm SIEM and cloud security office 365 , GCP , Azure.
  • Coordinated with external vendors on several projects including product selection, POC deployments, internal/external compliance scans and remediation.
  • Performed web security testing on internet facing applications and worked with application teams to fix issues and charged with evaluating new security technologies.
  • Collaborate with developers, system/network administrators, and other stakeholders to ensure correct design, development, and implementation of applications and networks.
  • Managed log-rhythm SIEM project deployment and performed integration of Security devices, network devices, windows servers, database servers with log-rhythm SIEM Solution.

Senior Cyber Security Analyst

SABIC
08.2013 - 01.2015
  • Worked as Senior cyber security Analyst in SABIC Global SOC (24/7) operation.
  • Researched and adopted new technologies to add value to existing offerings
    Installed system updates to address vulnerabilities and reduce security issues
  • Investigated SOC intrusion attempts and performed in-depth analysis of exploits, provided effective decision making when to declare security incident.
  • Worked with Dell Secure works (managed SOC) team to integrate all SABIC regions including more than 25 operating companies.
  • Performed Implementation of Splunk SIEM solution and integrated all servers and network devices logs.

Network Security Engineer

University Of Dammam
04.2011 - 07.2013
  • Worked as Network/Information Security Engineer in University of Dammam was responsible for all information/network security activities including planning, designing and implementation of security measures which safeguard access to university I.T infrastructure components and information Assets.
  • Managed network security of university data center and more than 20 colleges.
  • Deployed, upgraded, and maintained several security tools and technologies, including anti-malware, Firewalls, EDR, web proxy and SIEM products.
  • Selected appropriate intrusion detection system solutions for implementation at facilities

I.T Security Officer

National Defense University
03.2009 - 12.2010
  • Worked as Sys Admin/ I.T Security Officer in Well-known Public Sector University managed network security of university campus , Hostels and more than 20 departments.
  • Performed Installation, configuration and troubleshooting of Cisco ASA and open-source Firewalls, Configuration of DMZ Security Zones on Cisco ASA, and configuration of Remote access IPSEC VPN.
  • Coordination with internal and external security agencies with respect to any security incident.

Network Administrator

Ministry Of IT & Telecom
11.2006 - 02.2009
  • Worked as Network Administrator in Ministry of I.T and Telecommunication, performed Installation, configuration, and troubleshooting of DSL routers, CISCO Catalyst switches, CISCO and Juniper hardware firewalls.
  • Performed day-to-day LAN and WAN administration, maintenance, and support
  • Monitored system performance and responded to alerts
  • Implemented network security measures to minimize data loss
  • Analyzed network traffic and performance metrics to optimize system performance

System/Network Administrator

APTECH Computer Education
07.2004 - 11.2006
  • Worked as system/Network Administrator in APTECH, Performed Installation and configuration of windows server 2003 domain controller backup domain controller and child domain in 30 computer Labs each Lab contain 50 computers.
  • Installed, configured and supported local area network (LAN), wide area network (WAN) and Internet system
  • Planned and implemented upgrades to system hardware and software
  • Monitored networks and network devices to resolve technical problems quickly

Education

Bachelor of Science - Information Technology

University of Sindh
Hyderabad Pakistan
01.2000 - 12.2003

Skills

    Cybersecurity operation

Application Security

Incident Response Management

Vulnerability Assessment

Network Security

Compliance Management

Firewall Management

Network Security Management

DDoS Prevention

Intrusion Detection

Risk Assessment

Additional Information

  • Cyber Security Operation, incident response
  • EDR – (Sophos, CrowdStrike, Microsoft MDE)
  • SIEM - Rapid 7 IDR, Splunk, LogRhythm).
  • MDR - Managed security (Dell secure works, Fire eye).
  • SOAR - Security orchestration and automation (Rapid7)
  • VM - Vulnerability Management (Rapid 7 insight VM, Nessus, Microsoft).
  • External Attack surface management - CrowdStrike EASM, Microsoft EASM
  • Application Control (VMware Carbon Black)
  • ISO 27001 Gaps Assessment, NIST, NCA, CCC etc.
  • Next Generation Firewalls (Palo Alto, Fortinet, Cisco)
  • Web Application Firewalls (Fortinet, F5-ASM).
  • Web Security/Proxy (Forcepoint, Fortinet, palo alto, Z scaler).
  • Cloud Security (Microsoft Azure, GCP)
  • Office 365 Security, , Intune , MDE (Microsoft Defender for endpoint)
  • web Application security scanner (Rapid 7 Appsec, Aqunetix)
  • I.T Security policies, procedures, and guidelines.
  • Cloud Security Design Architecture, Security Zoning.
  • Risk Assessment and Gap Analysis.
  • Office 365 email security, azure security center.

Certification

CEH v7 - Certified Ethical Hacker EC-Council

Timeline

Senior Security Architect

Olayan Saudi Holding Company
01.2019 - Current

Senior Security Administrator

Olayan Saudi Holding Company
01.2015 - 12.2018

Senior Cyber Security Analyst

SABIC
08.2013 - 01.2015

Network Security Engineer

University Of Dammam
04.2011 - 07.2013

I.T Security Officer

National Defense University
03.2009 - 12.2010

Network Administrator

Ministry Of IT & Telecom
11.2006 - 02.2009

System/Network Administrator

APTECH Computer Education
07.2004 - 11.2006

Bachelor of Science - Information Technology

University of Sindh
01.2000 - 12.2003

Similar Profiles

CREATE PROFILE
Sher Zamin KhanSenior Security Architect