Fasiuddin Khaja
Associate Director – Cybersecurity & Infrastructure
Hyderabad
Summary
Experienced in securing complex infrastructures within the financial services sector, remote access specialist and cyber security professional. Expertise in designing and implementing scalable, compliant remote access frameworks, enforcing multi-factor authentication, and managing identity and access governance in accordance with financial regulatory standards. Trusted Subject Matter Expert (SME) with excellence in risk assessments, policy development, and incident response. Proven ability to align cybersecurity strategies with business objectives, making me a valuable asset to any organization.
Overview
21
21
years of professional experience
3
3
Languages
Work History
Associate Director
UBS AG
01.2018 - Current
- Designed and implemented secure enterprise remote access solutions using Ivanti Secure Access VPN and Citrix NetScaler (ADC) for SSL VPN, ICA proxy, and load balancing, ensuring encrypted, scalable connectivity
- Integrated Citrix StoreFront with NetScaler and ICA for secure, seamless delivery of virtual applications, supporting high availability and user access control
- Served as the Subject Matter Expert (SME) for remote access security, providing technical leadership in architecture design, solution optimization, and policy enforcement
- Implemented SAML, PKI, and multi-factor authentication via Active Directory and RADIUS, enabling Location-Aware Access Control (LAAC) and jurisdictional access policies across user groups
- Conducted risk reviews, vulnerability assessments, and penetration testing on remote access platforms, driving continuous security improvements and compliance alignment
- Led complex migrations and vendor integrations, aligning Ivanti VPN and Citrix technologies with enterprise IAM and regulatory requirements
Manager-Infra Ops Specialist
Cognizant
01.2007 - 01.2018
- Architected and secured enterprise remote access VPN solutions using Check Point, Pulse Secure, and Citrix NetScaler, enabling encrypted, policy-compliant connectivity across user groups and vendors
- Designed and deployed advanced endpoint security frameworks, including Personal Firewalls, Network Access Control (NAC), and threat prevention systems to defend against malware and lateral movement
- Developed and enforced cybersecurity policies, risk mitigation frameworks, and incident response procedures to elevate security maturity and align with regulatory requirements
- Provided strategic guidance on vulnerability management, penetration testing, and remediation planning to proactively reduce security risks across infrastructure
- Integrated enterprise authentication technologies (RSA SecurID, PKI Smart Cards, Active Directory, RADIUS) to strengthen Identity and Access Management (IAM) across hybrid environments
- Conducted proactive security assessments and real-time SIEM monitoring, ensuring timely detection, analysis, and containment of cyber threats using industry best practices
System Engineer
UBS AG
01.2007 - 01.2009
- Architected and deployed secure remote access frameworks across global business units using Check Point, Nortel Contivity, and SSL VPN technologies (Connectra, Citrix NetScaler), enabling resilient and scalable connectivity
- Designed and integrated multi-factor authentication (MFA) systems including RSA SecurID, Smart Card, and LDAP with VPN and firewall infrastructure to enforce strong identity and access management
- Led enterprise-level upgrades and lifecycle management of VPN appliances and firewall systems, applying critical patches, hotfixes, and IOS updates to ensure compliance and threat resilience
- Evaluated, selected, and implemented third-party access solutions, designing secure access paths, segmentation controls, and authentication policies for vendor and partner connectivity
- Implemented and configured advanced security platforms, including Check Point firewalls and IBM ISS SiteProtector, to fortify perimeter defenses and enhance incident visibility
- Collaborated with cross-functional teams and stakeholders, contributing to security architecture planning, project prioritization, and strategic alignment with organizational security objectives
Senior Network Engineer
Satyam
01.2004 - 01.2007
- Designed and architected enterprise-grade firewall infrastructure using Check Point across distributed environments, enhancing perimeter defense and traffic segmentation
- Established and enforced network security policies leveraging Cisco ASA, PIX, ACLs, and router configurations to mitigate unauthorized access and enforce compliance
- Deployed and optimized critical security appliances (Check Point, Cisco ASA/PIX, ISA Server), aligning with enterprise protection strategies and threat mitigation goals
- Engineered Cisco Network Access Control (NAC) to enforce endpoint security compliance and strengthen network posture against internal threats
- Architected and managed VPN solutions for secure Remote Access and Site-to-Site connectivity, ensuring encrypted, policy-driven communication between sites and users
- Led secure network rollouts for Offshore Development Centers (ODCs) and contributed to Business Continuity Planning (BCP) by designing resilient, secure connectivity frameworks
Education
Bachelor of Technology - Computer Science
Kakatiya University
Skills
Security Architecture & Infrastructure
Personal Information
- Date of Birth: 09/21/81
- Gender: Male
- Marital Status: Married
- Nationality : Indian
- Visa : B1/B2 (Valid U.S. Business/Tourist Visa)
ITSM Tools & Agile Frameworks
- ServiceNow: Incident, Request, and Change Management
- Jira: Hands-on experience in Agile delivery using Epics, Stories, and Sprints
- ITIL v3 Processes: Configuration, Release, and Change Management
- Agile Methodologies: Scrum and Kanban experience across security project lifecycles
Timeline
Associate Director
UBS AG
01.2018 - Current
Manager-Infra Ops Specialist
Cognizant
01.2007 - 01.2018
System Engineer
UBS AG
01.2007 - 01.2009
Senior Network Engineer
Satyam
01.2004 - 01.2007
Bachelor of Technology - Computer Science
Kakatiya University