Imran Rasheed
Manchester
Summary
I am an experienced security professional with over 18 years of expertise in information systems and security across the Fortune 100. My track record includes providing consultation services in various security areas such as Vendor Management, Enterprise Security, Cyber Security, Payment Systems Security, Data Governance, Business Continuity, and Technology Risk Management. I am familiar with SIEM tools, vulnerability management, risk and threat management solutions, DLP, content filtering systems, EDR, XDR deployment and application monitoring. I have provided technical expertise in leading information security teams, developing security programs, analyzing security incidents, and detecting and mitigating Advanced Persistent Threats. My success stories include delivering numerous Information/Cyber Security & IT GRC projects in Banking, Insurance and Government. Large Enterprises & Conglomerates. Adept at training and educating internal users on relevant cybersecurity procedures and preventative measures. Skilled in developing the goals, strategy, and methodologies of the company’s cyber defence program in alignment with the industry standards.
Overview
18
18
years of professional experience
Work History
Cyber Security Architect
Euronet Solutions Ltd
Manchester (UK)
01.2022 - Current
- It’s a leadership role in one of most critical part of a law enforcement agency to develop and implement digital and manual information security best practices
- Design, implement, and monitor a strategic, comprehensive enterprise risk management program
- Reviewed and assessed Organizational information security posture
- Risk Assessment
- Developed and rolled out IS awareness campaigns throughout the organisation
- Revamped security policies and standards and implemented the ISO 27001, CIS and NIST frameworks
- Restructured SOC with new and existing cybersecurity tools and introduced multi-million vendor management systems/process
- Identified deficiencies within current Information Security activities by conducting comprehensive audit and implemented action plans for swift resolution
- Roll out the Internal and external application VAPT and mitigation activities
- Implemented security operation of selection and deployment of advanced security solutions, including SIEM (Fortisiem, Qradar), WAF, and EDR (Crowdstrike) tools
Information Security Consultant
BARCLAYS BANK
09.2020 - 05.2022
- Qradar
- Tenable IO
- Splunk Administration v, Collaborate with program manager to build and review overall security infrastructure
- Engage with business stakeholders to make sure the right security controls are meet as per ISO27001 , NIST and CIS top 20
- Analysed HLD and LLD applications for detailed implementation plan
- Vetted and reviewed different application end-to-end solutions
- Advise on the CAB from the department prospectus
- Collaborated with app owners to implement robust incident response plans, minimising downtime, and potential data breaches controls
- Conducted thorough reviews of network architecture and configurations, suggesting optimisations and info sec recommendations., Collaborate with program manager to build and review overall security infrastructure
- Engage with business stakeholders to make sure the right security controls are meet as per ISO27001 , NIST and CIS top 20
- Analysed HLD and LLD applications for detailed implementation plan
- Vetted and reviewed different application end-to-end solutions
- Advise on the CAB from the department prospectus
- Collaborated with app owners to implement robust incident response plans, minimising downtime, and potential data breaches controls
- Conducted thorough reviews of network architecture and configurations, suggesting optimisations and info sec recommendations.
Cyber Security Specialist /CISO-SOC
ABN-AMRO
07.2020 - 10.2020
- As a consultant I worked on the SOC refresh project, I was engaged with various projects and conducted a gap analysis to identify areas for improvement in SOC tooling and process and produce PoA&Ms
- I created short-term and long-term plans to address these gaps and submitted my recommendation in the migrating from the existing platform to new technologies
- This included migrating from the existing SIEM (Qradar) to Splunk enterprise
- Using Qualys Tenable IO for Vulnerabilities Assessment on-premises and cloud applications
- Deployment plan for CrowdStrike (Falcon) as a EDR
- Additionally, I reviewed the SOC incident response process and runbooks
- I collaborated with different teams in SOC for malware analysis, threat hunting, and threat intelligence response.
RBS
10.2019 - 07.2020
- Application Security SME
- Act as an SME in information security system for internal stakeholders
- Advise internal teams regarding security measures during the automation process
- Communicated with executives throughout the automation project
- Adding up new services and fine-tuning current service offering around Networks, application security, WAF, DNS, Splunk, Cowdstrike (Falcon)
- Provided consultation on designs & drive secure by design as a fundamental aspect of solution design
- Identified and mitigated security incidents in line with set standards
- Developed and delivered automated metrics to help drive the security strategy.
Information Security Consultant
LFAB
08.2019 - 10.2019
- Created and managed security accreditation packages for systems
- Reviewed Security assessment reports and developed PoA&Ms and risk mitigation plans
- Application Risk Management Project, Budget: £300K
- Implemented OWASP top 10 security risks vulnerabilities through LFAB security infrastructure
- Led the implementation of the security framework throughout the bank in accordance with ISO27001, NIST and CIS top 20 controls
- Managed and developed a team of eight highly expert professionals at LFAB.
Information Security Internal Auditor
HSBC
04.2017 - 08.2019
- Delivered a broad range of high-quality Information Security consultancy services including strategic planning, security risk assessments, Examined internal IT controls, exposure to risk, and develop remediation strategies
- By coaching and mentoring
- Examined internal IT controls, evaluated design and operational effectiveness, determined exposure to risk, and develop remediation strategies.
Application Design Consultant
Hewlett-Packard
08.2014 - 03.2017
- Created infrastructure design for the expansion of the DWP Universal Credit System
- Successfully migrated infrastructure from legacy network devices to a new cloud network and firewall infrastructure by designing HLD for the new application, legacy application migration strategy, and Disaster recovery DR solution along with capacity planning, risk analysis, and redundancy configuration
- Created LLD for each application, enabling the smooth running of applications and improving scalability
- Installed and configured Junos firewall in paired on the perimeter and down to the LAN
- Provided technical expertise in GTM design and changes, Adding Listeners, Wide IPs, pools, Load balancing methods, and DNS troubleshooting
- Added and managed new/existing applications from client to server trail
- Created VS, VIP, pool, and customise profiles
- Designed and configured F5 GTM, ASM, and LTM on VIPRION Chassis and single Appliances like LTM 10000, GTM 2000
- Upgraded V11 to V11.6, patched and configuration of the F5 boxes from new
- VIPRION and Standalone
- Configured and maintained Forum Sentry and ASM for WAF
- Developed and executed policies for web content and L7 inspection
- Optimised network by creating Partitions and Route Domains (RD).
Cybersecurity Specialist
IBM
08.2016 - 12.2016
- Conducted detailed audit to evaluate vulnerabilities and flaws within the internal systems of an organisation while acting as an internal auditor
- Performed audits and testing of controls in Network Vulnerability Assessments, SOC audits, IS security audits implementation in infrastructure Firewalls, Proxy, WAF
- Delivered various complex projects including completion of PCI-DSS, stock exchange and central bank cybersecurity framework compliance project within time and established standards
- I worked for the Co-op bank migration project to set up a new Web Application Firewall (F5) and Security Information and Event Management system (Qradar)
- I provided technical support for various projects such as Security, SOC, Symantec DLP, etc
- I led the Q1 Labs’ IBM QRadar Security Operations Center (SOC) project at Telenor's IBM QRadar SIEM PoC, where I performed event/flow correlation across all critical systems
- My responsibilities included monitoring and prioritizing events, alerts, and tips for further investigation, as well as gathering evidence of security investigations regarding incidents such as malware, data loss, and network intrusion
- Additionally, I administered the entire process of Privileged Identity Management on CyberArk
- Designed existing QRadar SIEM platforms within big data environment
- Established and implemented policies/procedures and network software and hardware standards
- Investigated network traffic for potential security incidents at QRadar
- Configured Phantom VTAP solutions in VMware environment to monitor traffic.
Network/Firewall Infra Design Consultant
Barclays Bank Plc
01.2012 - 07.2014
- Managed IP network/firewall infrastructure including the deployment of Juniper, Checkpoint, and Cisco switches and routers, meeting the ISO27001 standard
- Oversaw installation and maintenance of large Juniper MX and T-series routers in line with bank’s set standards
- Defined rules, zones, Interfaces and sub interfaces
- IPsec VPNs using the NSM platform
- Minimised all technical issues by troubleshooting during the migration of network
- Deployed many Site-to-Site VPN, in production and DMZ environment
- Configured and administered F5 LTM, profile, PKI certificates, TLS, VIP, Pools, and SSL terminations
- Monitored multi-vendor Firewalls using Skybox, firewall assurance, network assurance, and change management
- Integrated firewalls with skybox
- Managed checkpoint R65/R71, VSX, with provider 1 and Smart dashboard, upgrading checkpoint R71 to R75.40
- Integrated Cisco ISE with Cisco WLC 44xx for BYOD for guest services LAP authentication and authorisation
- Led multiple projects following the merger of Barclays Capital and Barclays Retail, converging both networks into one
- Designed and configured F5 GTM, ASM, and LTM on VIPRION Chassis and single Appliances like LTM 10000, GTM
- Co-ordinated with server & application team for network connectivity in virtualization environment (Citrix, VM platform)
- Planned and organised meeting with third party and suppliers to discuss projects progress and any technical issues
- Spearheaded network engineer team to deliver one of the Barclay’s largest and complex data centre migration project, moving it from the current IBM data centre to the in house and under Barclay’s administration
- Developed and approved a completely new security model in accordance with the bank’s established standards.
Network Designer
Ericsson UK
01.2009 - 01.2012
Manager
UK MBNL
London
01.2006 - 01.2009
- T-Mobile, Orange & H3G) IP/ETHERNET PROJECT, IP-MPLS (Service Delivery) Team, Awarded 2nd employee of the year
Education
MSc - Mobile Computing and Communication
University of Greenwich
03.2008
BCS -
British Computer Society
Certified Ethical Hacker Certified Information Security Auditor (CISA) Prince 2 ISO 27K Lead Implementer CCIE Security Written Juniper Networks Certified Internet Associate Check Point Certified Security Administrator Crowd strike EDR administration Palo Alto Networks Accredited Configuration Engineer- PAN-ACE F5 Certified Big IP Administrator (101, 201) Fortinet Certified Network Security Administrator AWS Certified Solutions Architect – Associate Microsoft AZ-900 -
Skills
- AREAS OF EXPERTISE & TECHNICAL SKILLS
- IT Governance, Risk Management
- Cyber Security,Network Security
- Application Security
- Full Life Cycle Management
- BudgetManagement
- Stakeholder Communication
- Process Improvements
- Information Security Awareness
- Data Migration
- GDRP Compliance, PCI DSS Compliance
- Data center technologies
- Firewall deployment and Management
- Cloud security, DDOS, EDS
- NOC operation and management
- Troubleshooting, & Upgrading
- SOC operation and management
- Security Tools:
- NMAP, Nessus, Wireshark, John The ripper, Nagios, Cacti, NET Stumbler, MetaSploit, Firewall management Analyzer tools (Algosec), Network and Security Auditing tools, Juniper NSM, Juniper STRM, Check Point Smart Event Manager, Check Point Smart Domain Manager
- Check Point Smart Dashboard, Check Point Smart Tracker, Check Point Smart Monitor, Cisco ASDM IBM Qradar, HP Arcsight
- Security / Firewalls Technology:
- IPSec, VPNs, Cryptography, Key Management, AAA Model (RADIUS, TACACS), Cisco Authentication Proxy, Access Lists, IOS Firewall, 8021x, IOS Security Features, DMZ setups, CBAC, DoS and common threats, prevention, Checkpoint / Nokia VPN-1/Firewall-1 NGX (R65/70), R75X (10, 2030, 40) SPLAT Firewalls, Cisco PIX / ASA Firewall, Juniper SSG/SRX, Crossbeam X-series, F5 LTM, GTM, ASM, Cisco GSS, Bluecoat Proxy, Websense URL filtering, Routers and IPS and Load balancers, Forum Century (Layer 7 inspection )LLD, HLD
- App Security:
- LDAP injection, SQL injection, XSS injection , AJAX Spider, Dynamic SSL cert, Forced browsing, Cookie not HttpOnly flag, Private IP disclosure
- Hardware:
- Cisco platforms; SDN ,Switches Bridges, Hubs: Cisco Catalyst, Extreme Switches, Brocade ADX 1K, 4K, Switches, HP Procurved switches, HP NNM
- Ensured successful implementation through development and execution of a comprehensive framework for the governance of Enterprise IT and risk/resource optimisation process
Affiliations
British Computer Society (BCS) Professional member
Accomplishments
- Security compliance, audit and assessment
- Internal and external compliance against best practices ISO27001 Security compliance, audit and assessment
- Internal and external compliance against best practices
- Assessment against ISO27K, ISO31K, PCI-DSS, PSR, NZISM, SWIFT (CSP), NIST, SANS, CIS, OWASP, SOC2
- Risk Management :
- Create policies, procedure, guidelines and standards Risk and control framework development
- Risk assessment
- Cyber maturity assessments
- Third part risk assessments
- Business Continuity/ Disaster Recovery:
- BCP/DRP Plan development and enablement
- BIA and RA creation
- BIA/DRC maturity assessment
- Cyber Security:
- SOC, SIEM (QRadar), IBM IDPS (XGS), Riverbed Steel Central Application performance monitoring (APM) Packet Analyser, NetShark, Web Analyser, NetProfiler, HP Arc sight, OWASP, and ISO27001
References
REFERENCES Available Upon Request
Timeline
Cyber Security Architect
Euronet Solutions Ltd
01.2022 - Current
Information Security Consultant
BARCLAYS BANK
09.2020 - 05.2022
Cyber Security Specialist /CISO-SOC
ABN-AMRO
07.2020 - 10.2020
RBS
10.2019 - 07.2020
Information Security Consultant
LFAB
08.2019 - 10.2019
Information Security Internal Auditor
HSBC
04.2017 - 08.2019
Cybersecurity Specialist
IBM
08.2016 - 12.2016
Application Design Consultant
Hewlett-Packard
08.2014 - 03.2017
Network/Firewall Infra Design Consultant
Barclays Bank Plc
01.2012 - 07.2014
Network Designer
Ericsson UK
01.2009 - 01.2012
Manager
UK MBNL
01.2006 - 01.2009
MSc - Mobile Computing and Communication
University of Greenwich
BCS -
British Computer Society