Summary
Overview
Work History
Education
Skills
Certification
Training
Timeline
Generic

Muhammad Waseem Ali

DIRECTOR SOC & CYBER THREAT INTELLIGENCE
Islamabad Capital Territory,IS

Summary

Results-driven IT professional with 18 years' experience in infrastructure, and network engineering. Currently Deputy Director SOC & Cyber Threat Intelligence at NADRA, leading a team for effective threat detection, incident response, and forensic investigations. Expert in cutting-edge technologies.

Information security professional with robust background in securing complex IT environments and enhancing cybersecurity frameworks. Known for driving team collaboration and achieving high-impact results in dynamic settings. Specializes in risk management, threat analysis, and incident response while maintaining adaptability to evolving security needs.

Overview

19
19
years of professional experience
2016
2016
years of post-secondary education
8
8
Certifications

Work History

Information Security Director

Govt Organization
10.2023 - Current
  • Reduced cybersecurity risks by conducting regular audits, vulnerability assessments, and penetration tests.
  • Collaborated closely with senior management to align information security efforts with overall business objectives and goals.
  • Led cross-functional teams in addressing complex security challenges, fostering an environment of collaboration and innovation that drove continuous improvement in information security processes.
  • Developed robust business continuity plans to minimize downtime during security incidents or natural disasters.
  • Enhanced company-wide security by developing and implementing comprehensive information security programs and strategies.
  • Implemented multi-factor authentication solutions to enhance access control measures for critical systems and applications.
  • As the Team Lead of the SOC, I oversee a dynamic unit consisting of CTI specialists, SOC analysts, and a dedicated DFIR team, collectively working together to ensure robust threat detection, efficient incident response, and thorough forensic investigation capabilities.
  • Led SOC operations, overseeing advanced threat detection, incident response, and forensic analysis to enhance the organization's security posture.
  • Led the migration from a limited open-source Elastic SIEM to a scalable, feature-rich solution, integrating over 450 servers, network devices, firewalls, WAF endpoints, and Active Directory.
  • Conducted a comprehensive review of NADRA's infrastructure, identifying critical vulnerabilities in design, connectivity, and firewalls. Led the enhancement and restructuring of the architecture, implementing a Zero Trust Network model to strengthen overall security.
  • Successfully addressed a long-standing incident involving the compromised PTCL network, leading efforts to revamp and redefine its architecture in collaboration with PTCL management.
  • Conducted audits of Network, TND, and Data Warehouse departments, identifying and resolving key cybersecurity gaps to enhance overall security.
  • Successfully implemented a cutting-edge Cyber Threat Intelligence (CTI) platform, improving the ability to detect and respond to emerging threats.
  • Rolled out Kaspersky anti-malware solutions across 13,000 endpoints and servers, significantly strengthening overall security and reducing malware incidents.
  • Developed and executed comprehensive proposals for IT Asset Management and Patch Management, streamlining system maintenance processes and boosting operational efficiency.
  • Coordinated and led incident response efforts, minimizing downtime and mitigating impact through effective management and resolution of security incidents.
  • Enhanced forensic capabilities by overseeing investigations into security breaches and applying advanced techniques to uncover root causes.
  • Deployed and optimized endpoint protection and detection technologies, achieving a measurable increase in threat detection capabilities and reducing false positives.
  • Overhaul of NADRA's verification services, integrating cybersecurity requirements into all third-party contracts. This initiative enhanced client visibility, strengthened data protection, empowered NADRA with audit authority, and introduced data reduction mechanisms to limit shared information.
  • Developed high-performing teams by providing mentorship, guidance, and opportunities for professional growth.
  • Cultivated a positive work environment that fostered employee engagement, increased retention rates, and boosted overall team morale.
  • Managed budgets effectively to ensure optimal use of resources while maintaining financial stability.

Infrastructure Specialist

NADRA
01.2018 - 09.2023
  • Led data center solutions for core applications, implemented server hardening with CIS benchmarks, and optimized load balancing with HAProxy and Nginx. Deployed IBM VSAN with VMware for a 400 server private cloud, enhancing security, performance, and scalability.
  • Planning, designing and implementation of data center solution for NADRA core business application enhancing system reliability and performance.
  • Conducted server hardening and implemented CIS benchmarks, significantly improving security across Windows and Linux platforms.
  • Configured and deployed load balancers (HAProxy) and web servers (Nginx), optimizing application performance and ensuring high availability.
  • Deployed IBM VSAN and integrated it with VMware, successfully managing a private cloud infrastructure with over 400 servers.
  • Oversaw the design and execution of virtualization and cloud computing strategies, ensuring efficient resource utilization and scalability.
  • Managed enterprise and mid-range storage consolidation, using IBM SVC to streamline data storage and improve access speed.
  • Directed the planning and implementation of backup solutions, including NetBackup, to ensure data integrity and recovery readiness.
  • Led the configuration and maintenance of high-availability systems, ensuring minimal downtime and continuous operations.
  • Spearheaded infrastructure upgrades and right-sizing initiatives, optimizing performance and reducing costs associated with IT operations.
  • Coordinated with cross-functional teams to align infrastructure projects with organizational goals and technological advancements.
  • Supported IT operations for corporate headquarters and nationwide locations.
  • Restructured old application processes to improve performance and integrity.
  • Analyzed and maintained system and application performance.

Domain Specialist

NADRA
01.2010 - 10.2018
  • Upgraded NADRA's domain infrastructure and centralized Active Directory. Implemented Kaspersky Email Security Gateway for 13,000 clients. Led email migration from Exchange 2003 to 2013. Managed ISO 27001 audits, developed security policies, and enhanced risk management and compliance.
  • Upgraded NADRA's domain infrastructure and centralized Active Directory, streamlining user management and authentication processes.
  • Implemented Kaspersky Email Security Gateway, effectively managing antivirus deployment for over 13,000 clients to enhance email security.
  • Led the successful migration of email systems from Exchange 2003 to 2010, and subsequently to Exchange Server 2013, improving communication efficiency.
  • Managed ISO 27001 audits, ensuring compliance with industry standards and regulations.
  • Developed and enforced security policies, risk management strategies, and compliance measures to safeguard IT infrastructure.
  • Centralized NADRA's network with updated security protocols, enhancing overall network security and performance.
  • Coordinated with IT and security teams to implement group policy management, optimizing system administration and security.
  • Spearheaded the deployment and management of web proxy solutions, securing internet traffic and protecting against online threats.
  • Oversee the migration and upgrade of email systems, ensuring seamless transitions and minimal disruption to services.

Senior Network Engineer

NADRA
01.2006 - 10.2010
  • Managed network switches for optimal data flow and connectivity. Configured IDS/IPS rules on Juniper devices to enhance security. Provided technical support, resolved network and system issues, monitored performance, and implemented security measures to ensure network reliability and safety.
  • Managed network switches, ensuring efficient data flow, connectivity, and network performance.
  • Configured and optimized IDS/IPS rules on Juniper devices to bolster network security and prevent unauthorized access.
  • Provided technical support, diagnosing and resolving complex network and system-related issues to minimize downtime.
  • Monitored network performance and implemented improvements to enhance reliability and speed.
  • Conducted regular network assessments and updates to ensure optimal operation and security.
  • Coordinated with vendors and internal teams to address hardware and software issues effectively.
  • Documented network configurations and changes, maintaining accurate records for troubleshooting and compliance.
  • Implemented network security measures and best practices to safeguard against potential threats and vulnerabilities.

Education

Information Technology

Allama Iqbal Open University
Islamabad, Pakistan
05.2001 - 10.2011

Bachelors - Information Technology

Allama Iqbal Open University
Islamabad, Pakistan
03-2005

Skills

Domain Services

undefined

Certification

CISM, 01/24/25, ISACA

Training

  • CCNA
  • Next generation Enterprise Services Management
  • MCSE 2003
  • Linux Administration
  • 50357A: implement Forefront Threat Management Gateway 2010
  • 10135: Microsoft Exchange server 2010
  • 10533A: Deploying, Configuring and Administering Lync server 2010
  • 6331: Microsoft System center Virtual Machine Manager 2008 R2
  • 50028D: Installing and Configuring System Center Operations Manager 2007 R2
  • 10174A: Administering and Configuring Microsoft Share Point 2010
  • 6451B: Planning, Deploying and Managing Microsoft System Center Configuration Manager 2007
  • Implementing Net screen Intrusion detection and Prevention Products (IDP)
  • Symantec protection Suite

Timeline

Information Security Director

Govt Organization
10.2023 - Current

Infrastructure Specialist

NADRA
01.2018 - 09.2023

Domain Specialist

NADRA
01.2010 - 10.2018

Senior Network Engineer

NADRA
01.2006 - 10.2010

Information Technology

Allama Iqbal Open University
05.2001 - 10.2011

Bachelors - Information Technology

Allama Iqbal Open University
Muhammad Waseem AliDIRECTOR SOC & CYBER THREAT INTELLIGENCE