Haaris Mohammad
Senior Security Analyst
Delhi
Summary of Career
Experience as Senior Security Engineer
Safe Security
22 January 2018
22 January 2019
* Vulnerability assessment and Penetration Testing of websites of Banks and conglomerates of India as per OWASP Standards.
* Network Security Assessment with Nessus and Nmap
* Providing support to developer teams with Vulnerability patch assistance
* Project Delivery and Management for a team of 10 engineers
Experience as Application Security Analyst
Tata Consultancy Services
23 January 2019
20 May 2022
* Web Application vulnerability assessment and penetration testing
* Mobile Application vulnerability assessment and penetration testing
* Helping customers mitigate web application security risks
* Conducting Checkmarx Code review and secure SDLC enforcement
* Taking part in Red Team Phishing Exercises
Experience as Security Advisory Consultant
IBM GLOBAL SERVICES INDIA PVT LTD
23 May 2022
To date
* Driving, Managing and closing Application Pentesting programs
* Actively Pentesting Websites and APIs
* Enabling Devsecops
* Conducting and consulting prisma cloud source code review scans
* Enabling Threat Modelling early in the SDLC to promote a shift-left culture
* Following up and consulting to help fix and close SAST, DAST and Pentest issues
Experience as Operations Control Service Desk Analyst
Version 1
07 September 2015
04 April 2016
Acting as a centrally coordinated point for managing various class of incidents and events. Monitoring and observing the IT infrastructure and carrying out routine operational activities in conjunction with reporting on the performance and status of technology components.
Experience as System and Application Test and Security Engineer
KBC Bank Ireland
11 July 2016
01 December 2017
Job duty incorporates arranging and executing security efforts to secure PC-Server-Database frameworks, systems and information. Expected to stay up-to-date knowledge, including hackers' techniques, keeping in mind the end goal to predict and prevent security breaches. Analyzing available data and advising changes to higher ups. Sharing unique findings with the FINTECH group and other banks in a joint effort to fight cyber crime.
Another project included Application integration and test engineer. Managing infrastructure for deployment of new applications while supporting a global internal network.
* Packaging SCCM applications
* Manual Testing of Windows applications
* Infrastructure Build
* Server Build
* Active Directory Migration support
Master 18 December 2015
M.Eng. in Information and Network Security from University of Limerick, Limerick, Ireland Modules Include: Cryptography & Security, Cryptographic Mathematics, Multimedia Communications, Software Engineering, Data Forensics, Bio-metrics, Communication & Security Protocols, Network & Host Security, Web-based Application Design and Thesis- Comparison of Active and Passive Network Tomography Techniques (Supervisor: Dr.Eoin O’Connell)Bachelor 01 July 2013
B.Eng. in Computer Science and Engineering from All Saints’ College of Technology, Bhopal, India Modules Include: Object Oriented Programming, Database Management System, Data Analysis & Algorithms, Web Technology, Analog and Digital circuits, Distributed Computing, Computer Graphics, Operating Systems, Computer Networks, C , C++, Java, Data Structures, Laboratory Experience and Major Project- TPO (training and placement office) management tool using Java and .Net for my college.