TARIQ IQBAL SIDDIQUI
Doha
Summary
Information Security Consultant & Analyst with over 13+ years of professional experience in Cybersecurity, Governance, System Security & Controls, ELV , Vulnerability, Threats, Risk Management, Security Legal & Regulatory Compliance. Implementation of different framework that supports the organization goals through Security Governance principles .Enactment of Information Security Management System (ISMS) at operational , Tactical & Strategical Level. Provision of holistic ISMS instead of SILO based Approach . Business Continuity Planning (BCP), vulnerability assessments, threat detection, Investigation security and contingency plans for an Organization. Design & implement the Information System Risk management Policy - A subset of overall Risk management Policy . ITIL , CMM , NIST , ISO/IEC 27000 series Frameworks in IT & Cyber security to provide structure for managing Risk, Developing enterprise architecture & secure assets.
Overview
14
14
years of professional experience
1
1
Certification
Work History
Information Systems Analyst /Information Security Analyst
Ministry of Interior (MOI)
Doha
2012.11 - 2023.01
- Protect the confidentiality, integrity, and availability of information systems through Balanced Security & methods of application intrusion prevention, ACS, incident Response , Vulnerability Management, threat analysis, & risk mitigation.
- Design , Develop, Create , implement the Security policies, Standards, procedures, Guideline & Baselines.
- Design Information Security Management System (ISMS) through Enterprise Security Architecture (ESA) to provide holistic Security Program.
- A part of team developing the Information System Risk Management policy (ISRM-P).
- Risk analysis, Responses & Countermeasures.
- BCP & BCM guidelines follow the NIST Standards.
- Prepare recommendation strategies that are made available to system owners, system admins or system engineers to remediate identified vulnerabilities.
- A part of Designing different Frame works e.g. Risk Framework, Information Security (IS) Framework & Enterprise Architecture frame work follow NIST-RMF, OCTAVE, FAIR , ISO/IEC 27000 series, NIST SP 800-53, COBIT, TOGAF, SABSA.
- Establish company-wide security best practices and protocols to mitigate risk of data breach.
- Perform Quantitative and Qualitative Risk Assessment to maintain a defined internal and external security posture.
- Implementation of CCTV Systems across all Entities/ facilities in Qatar for remote connectivity with National Command Center (NCC) through Video Management System (Video analytics apart of it).
- Prepare Security Assessment and Authorization (SA&A) packages making sure that the operational and technical security controls comply with NIST SP 800-53 standards.
- Collaborated with upper management to drive strategy and implement new processes.
- Strengthened communication skills through regular interactions with others.
- Assisted with day-to-day operations, working efficiently and productively with all team members.
- Developed strong communication and organizational skills through working on group projects.
Security Systems Engineer
UCIL Universal Cables
Karachi, Sindh
2010.02 - 2012.10
- Actively participated in Design review meetings ensuring operational requirements and security best practices are being implemented.
- Developed, implemented and documented security programs and policies and monitored compliance across departments.
- Provided technical leadership focused on CCTV Systems and ELV system.
- Traveled to client sites to perform onsite testing.
- Translated strategy into solutions and operating models by leading or managing others,
Engineering Intern
Pakistan International Airline
Karachi, Sindh
2008.12 - 2009.01
- Tested prototypes and standard products and wrote reports to document results.
- Perform engineering change processes as necessary to support existing products.
- Perform basic product design modifications
Education
Master in Project Management - Project Management
Isabel University
Spain08.2021
Bachelor of Science - Electronics Engineering
Sir Syed University of Engineering & Technology
Sindh , Pakistan12.2009
Skills
- Developing & Implementing Security Programs
- Defence in Depth layered Approach
- Identify & Mitigate the Risks
- Business Impact Analysis (BIA)
- Data Breach and its Countermeasures
- Plan of Actions & Milestones (POA&M)
- Security Improvements
- Vulnerability Assessment
- Password Management
- Data loss Prevention (DLP)
- Designing Security Controls
- Process Enhancement
- Risk Management Framework
Certification
PMP
Axis Training for IPCCTV Designing
Pelco Cyber Security
HCSP – Hikvision Certified Security Professional
Axis Communications Workshop
CISSP - In Progress
Personal Details
Languages : English, Urdu
Driving License : Qatar, Pakistan
Visa Status : Transferable Qatar visa
NOC : Available.
Timeline
Information Systems Analyst /Information Security Analyst
Ministry of Interior (MOI)
2012.11 - 2023.01
Security Systems Engineer
UCIL Universal Cables
2010.02 - 2012.10
Engineering Intern
Pakistan International Airline
2008.12 - 2009.01
Master in Project Management - Project Management
Isabel University
Bachelor of Science - Electronics Engineering
Sir Syed University of Engineering & Technology
PMP
Axis Training for IPCCTV Designing
Pelco Cyber Security
HCSP – Hikvision Certified Security Professional
Axis Communications Workshop
CISSP - In Progress
Similar Profiles
Dr.Eng. Mohammed Ali S. AlmuhannadiDr.Eng. Mohammed Ali S. Almuhannadi
Telecommunication Project Manager at Qatar Ministry Of Interior MOITelecommunication Project Manager at Qatar Ministry Of Interior MOI
Niptoon SediqiNiptoon Sediqi
Lead Digital Forensic Investigator at Ministry of Interior Affairs (MOI)Lead Digital Forensic Investigator at Ministry of Interior Affairs (MOI)
Mohamed AlameriMohamed Alameri
Police at MOIPolice at MOI