Nabeel
Information Systems & Security Audits, Governance, Risk & Compliance Professional
Lahore
Summary of Career
1. Information Technology & Security Governance
2. IT Service Delivery and Support
3. Physical , Logical and environmental security of Data Centers
4. System development and change management
5. Security of information assets (Infrastructure, data and servers etc.)
6. Business continuity and disaster recovery
7. Governance, Risk and Compliance (GRC)
8. System Development Lifecycle Control
9. Management systems auditing, IT Consulting Services, Information Security, ITIL/ITSM Service management, BCM/DRP, ISMS, CMMI PCI/PA DSS, Project Management
10. Management systems auditing, IT Consulting Services, Information Security, ITIL/ITSM Service management, BCM/DRP, ISMS, CMMI PCI/PA DSS, Project Management
Experience as Assisstant Manager IT/IS & Overseas Audit
Bank Alfalah Limited
04 May 2009
04 December 2017
To carried out IT/IS and Security Audits
Experience as Manager IT/IS Audit
MCB Islamic Bank Ltd.
04 December 2017
17 September 2019
Key responsibilities include:
? Review and Approve plan and execution of risk-based IS/IT audit activities on a wide range of audit objects, such as operational IT processes, business applications, Information systems, infrastructure, IT service management lifecycle
? Conduct process audits with thorough coverage of areas reviewed and based on proper evaluation of internal controls, process improvement and policy compliance
? Performing risk assessment exercises in line with implemented industry frameworks
? Identifying subject matter expert in team to assign tasks to draw reasonable assurance of the area being audited.
? Supervising audits in compliance with IT industry standards, internal policies and procedures, IT security framework and best practices to improve internal control systems and enhance operational efficiency.
? Supervise and carry out Call Center Technical and Operational audits
? Supervise and carry out audit of Alternate Delivery Channels (ADC) including Internet and Mobile Banking ATMs, ATMs controllers in line with PCI/PA DSS standards
? Supervising and Perform audits of IT systems, services, components including Data Centers, ERP, Network Infrastructure and Security Appliances
? Performed SQL-injection and PEN/VAT assessment of data-driven IT applications and corporate networks with different industry techniques.
? Performed ethical hacking White-Box technique to perform penetration testing of networks, IT applications and computer systems to identify potential threats.
? Gap assessments and Evaluate internal IT Policies, procedures and processes, Guidelines, Controls in support of Bank, business and technological objectives; and suggest best practical recommendations to management.
? Establishing and maintaining working relationship with IT management and user departments.
? Provide input to support Banks overall IT Strategies, business and technological objectives
Master 22 December 2024
Master in Information Technology (MIT)