Irfan Shaikh
Information Security
Abu Dhabi
Summary of Career
1. Work on multiple projects simultaneously, set priorities and meet deadlines
2. Develop processes and implement tools and techniques to perform ongoing security assessments of the environment
3. Vulnerability Management program involves creating option profile, record and authentication scanning.
4. Conducting schedule and on-demand scan as per the environment critical application and servers
5. Ensuring the scan completion and generating the results based on different threshold.
6. Classifying the vulnerabilities based on Patches or Configuration changes
7. Segregation of critical vulnerabilities based on severity and other parameters
8. Deploying, managing and monitoring the antivirus application for servers & clients in environment.
9. Carrying out analysis & risk assessment on threats in organization and efficiently handling virus outbreaks.
10. Creating customize policies and set exception / exclusion as per client requirement with defined process.
Experience as Filed Engineer
Spectrum Solutions
01 June 2007
22 December 2007
Installing, repairing and troubleshooting Windows operation system.
Attending all types of technical support & troubleshooting the system problems.
Managing hardware, software & networking related requirement and setup for the clients.
Approaching companies for AMC (Annual Maintenance Contract), buying and selling of the computers and peripherals
Troubleshoot the problems regarding Printers and Scanners and other devices.
Experience as System Administrator
HCS and T&M Consulting
24 December 2007
27 July 2011
Windows System Administrator
Maintaining Windows 2003, 2008 & IBM HS-20 and HS-22 blade servers located at Data Center.
Install setup and administer Servers and Workstations on LAN with Windows 2003 & 2008 OS.
Managing Active Directory, DHCP, DNS services to implement a functional intranet.
Installing and Maintaining Symantec Endpoint Protection 12 on all our servers at data center & 32 servers at different NAP locations.
Installation of Windows Security and Other Patches with the help of WSUS.
Daily backup of production servers located at Data Center using ntbackup tool.
Installation of software’s & applications as per the users request on servers. Configure file, users & group permissions to the users as per request.
Creation & Maintenance of users, groups in Active directory for all CBI branches. Give the rights & permission to the users, groups.
Responsible for coordinating with Vendor & Application team for the successful operation of application.
Experience as Senior Security Engineer
Atos IT Global
20 September 2012
23 December 2016
Vulnerability Assessment (Qualys Guard):
Responsible for Qualys Guard and redesigning Vulnerability Management program which involves scanning, classifying, remediating and mitigating vulnerabilities.
Responsible for scheduling authenticated and non-authenticated vulnerability scans on serves.
Handling on-demand and ad-hoc scan request from application owner to verify if the vulnerability is patched or not.
Ensuring the scan completion and generating the results based on different parameter.
Classifying the vulnerabilities based on Patches or Configurational issues.
Segregation based on Severity and other parameters.
Preparing the report based on different parameters such as newly detected, old, resolved and pending.
Co-coordinating with different application owner and teams in order to communicate the risk and steps to resolve the same.
Presenting Vulnerability status reports on open and fixed vulnerabilities.
Anti- Virus Management (Symantec):
Installing, Managing and monitoring Symantec Endpoint Protection 11. x|12.x for servers & clients in environment.
Tracking the compliance of the environment and troubleshooting the related issues.
Carrying out analysis & risk assessment on threats in organization and efficiently handling virus outbreaks.
Creating customize policies and set exception as per client requirement.
Establish and monitor key risk indicators and implement corrective action plans to mitigate risks.
Coordinating with Symantec Technical Support for the SEP & Virus-related issues in environment via Telephone & email.
Played a significant role in SEP migration from SEP 11 to SEP 12.1
Data Security (Credant\DDP|E):
Managing and maintaining management console
Installing and troubleshooting encryption software on client systems.
Creating daily and Weekly dashboard report of encryption status in environment.
Creating encryption policy and set exception as per client requirement.
Providing L2 support to end user to resolve issues as per different scenarios.
Additional Task:
Coordination work with different teams for Domain registration and domain transfer.
Issuing and renewing CA\ Symantec VeriSign and DigiCert Certificate to users as per requirement
Keeping track of Certificate expiry date and notifying the same to associated users.
Experience as Consultant
Capgemini. India Pvt Ltd
29 December 2016
10 April 2019
Vulnerability Assessment (Qualys Guard / Nessus):
Responsible for Qualys Guard Vulnerability Management program involves authentication and non-authentication scanning.
Conducting schedule and on-demand scan as per the environment critical application and servers.
Keeping track record of vulnerabilities based on new, pending and resolved parameters.
Carrying out on-demand and ad-hoc scan request from application owner to ensure if the vulnerability is patched.
Ensuring the scan completion and generating the results based on different threshold.
Classifying the vulnerabilities based on Patches or Configuration changes.
Segregation of critical vulnerabilities based on severity and other parameters.
Malware Analysis (SEPM / Malwarebytes / SCEP):
Deploying, managing and monitoring the antivirus application for servers & clients in environment.
Carrying out analysis & risk assessment on threats in organization and efficiently handling virus outbreaks.
Creating customize policies and set exception / exclusion as per client requirement with defined process.
Establish and monitor key risk indicators and implement corrective action plans to mitigate risks.
Coordinating with vendor technical Support for the Virus-related issues in environment.
Achieving compliance rate as per the defined SLA for all the antivirus application.
Ensuring Daily health check-up and audit with regarding signature and definitions.
Preparing and presenting bi-weekly report to the client with regards to highlights and lowlights.
Played a significant role in SEP migration from SEP 11 to SEP 12.1
Data Security (Credant\DDP|E):
Working through DDPE management console for daily compliance as per the defined SLA.
Installing and troubleshooting encryption / decryption client’s data as per requirement.
Creating daily and weekly dashboard report of encryption status in environment.
Creating encryption policy and set exception for devices as per client requirement.
Acting as Level 2 support to end user to resolve issues as per different scenarios.
Experience as Consultant
Atos IT Global
19 April 2019
18 July 2019
Leading a team of 8 members for multiple projects.
Closely working with team on vulnerability management.
Preparing bi-weekly vulnerability report and presenting the same to client.
Keeping track of new, pending and resolved vulnerabilities.
Coordinating with different teams and application owner for patching.
Conducting client meeting and team meeting periodically for antivirus and other tools.
Rostering the shifts and Knowledge transfer session for new joiners.
Managing Incident, Change and Problem requests.
Handling Priority tickets and bridge call for Major incidents.
Bachelor 01 October 2007
Graduate in CommerceMatric 23 August 2018
MBA/PG Diploma in Business Mgmt in Information Technology