Muneer Hayat Khan
Cyber Security Delivery Manager
Gurgaon,Haryana
Summary
Dynamic and results-oriented Cyber Security Delivery Manager with 12 years of experience in leading and managing cybersecurity projects and teams. Proven track record of delivering robust security solutions, optimizing processes, and mitigating risks. Seeking to leverage expertise in cybersecurity, project management, and team leadership to drive excellence in cyber defense strategies
Overview
12
12
years of professional experience
6
6
years of post-secondary education
5
5
Certifications
Work History
Delivery Manager
Capgemini
Gurgaon, Haryana
2021.Jun - Current
- Have experience in managing Cyber security teams - Network Security (Firewall team), Vulnerability Management, PAM, MFA, GRC, Certificate Management, Endpoint and Email Security
- Maintaining the SLAs as per contract
- Adhere to incident management and change management process to avoid SLA breach
- Adhere to contractual obligations and reviewing them with all the team leads as and when needed
- Maintaining weekly, monthly, and quarterly and CxO reports for client calls
- Maintaining client's internal security posture on monthly basis
- DSTUM with team members to track the open tasks, issues, challenges etc
- Prioritizing and leading security related P1 tickets on Major Incident Management call depending upon business impact
- Maintaining daily health check reports of important tools
- Creating SOWs for project
- Creating resource unit data for billing purpose
- Alignment of resources on mutualized and dedicated account basis
- Daily call with onshore Engagement Manager and Security Manager to be aligned with client's expectations and daily task
- Establish performance goals and priorities
- Actively participate in hiring of new team members, adheres to policies and procedures
- Implemented quality control measures for all deliveries, resulting in fewer errors and increased customer satisfaction
- Established performance metrics to track progress towards goals, allowing for adjustments as needed to ensure success
- Managed relationships with key stakeholders to ensure smooth project deliveries and overall satisfaction
- Conducted regular audits of internal processes to identify inefficiencies or gaps in compliance with established protocols
- Developed a streamlined onboarding process for new hires, decreasing ramp-up time and increasing productivity
- Integrated new technologies and best practices to improve operations delivery management
- Managed resources effectively to avoid unnecessary delivery delays
- Mentored junior staff members in cybersecurity best practices, contributing to their professional development and growth within the organization
- Fostered a culture of continuous improvement through regular employee training on latest cybersecurity trends and best practices
- Collaborated with internal compliance teams to ensure that company policies adhered to relevant data protection regulations
- Implemented multi-factor authentication across systems as part of a layered defense strategy to protect sensitive data from unauthorized access
- Reduced risk exposure with proactive identification and remediation of system vulnerabilities
- Enhanced network security by implementing advanced threat detection and mitigation strategies
- Managed a team of cybersecurity professionals, ensuring efficient allocation of resources and tasks
Sr. Security Lead
Saksoft Limited
Noida, Uttar Pradesh
2020.Jul - 2021.Jun
- Working as an advisory lead for SOC comprises of Vulnerability Management, SIEM and Firewall team
- Helping SIEM team in the use case creation and log source integration
- Regular inspection of health check related to Log Sources and adding new devices for better monitoring coverage through SIEM tool
- Enabling the right logs by having regular calls with different support teams to optimize utilization of memory and monitoring
- Monitoring and ensuring necessary preventive maintenance tasks carried out to improve application service
- Regular inspection of health check related to Log Sources and adding new devices for better monitoring coverage through SIEM tool
- Conduct postmortems, create recommendations from lessons learned, report the identified successful & unsuccessful project elements
- Coordinate with external vendors for hardware issues in data centers, RFQs for fixing the issue from the respective vendor
- Preparation of SOP or playbook
- Generation & formatting of reports for Vulnerability scans performed
- Expertise in different report preparations (Weekly, Bi-weekly, and Monthly based), Deck call presentations to the client and the monthly Roasters for the team
- E2E responsibility for incidents and problem management issues related Security in coordination with other teams
- Assisting VM team in prioritizing the vulnerable assets, mitigating the risk by patching, upgrading, and hardening
- Liaison with different stakeholders handling Linux servers, citrix, VDI, internet facing servers to ensure reported incidents and vulnerabilities are worked on time
- Responsible for the timely completion of work packages under Red Team Exercise carried out by CISCO to fill the gaps
- Sharing status of each work package, vulnerability management report, SIEM alert report with Director of SOC and Project Manager on a weekly call
- Creation of organizational policy document based on ISO standards to uplift the current information security posture of the organization.
Security Escalation and Enterprise Engineer
Algosec Systems
Gurgaon, Haryana
2014.Jul - 2020.Feb
- Configuration of syslog messages on security devices and forwarding logs to Algosec solution and Splunk
- Troubleshooting failed syslog forwarding to Algosec tool using tcpdump
- Learnt Splunk and had hands-on exp on lab and client's environment
- Helped clients to integrate Algosec with Splunk
- Manually added and pushed new rules on firewall as per the change request
- Troubleshoot audit log issue, risk/regulatory/Baseline compliance and assisting clients in achieving expected compliance
- Investigating log files for errors and warnings and collecting artifacts for investigation
- Investigating and simulating the client's issue in the lab machine and took further action based on simulation result
- Monitoring the opening of ticket with R&D in case a bug is suspected
- Updating both R&D and clients about the case status
- Allocating cases to Tier 2 Engineers, assisted them and provided training if required
- Setting up weekly calls with clients to discuss the currents status of the issues, next action plan and other problematic areas
- Monitoring & resolving issues of big and critical APAC, US and EMEA customers with large environment.
NOC Engineer
FCS Software Solutions Ltd
Noida, Uttar Pradesh
2013.Nov - 2014.Jun
- Designed on premise data center for the migration of DuPont to Axalta Coating System project which includes installation of routers, switches and firewalls into the rack, cabling, assigning physical IPs
- 24
- 7 monitoring of global sites using SolarWinds
- Knowledge of routing and switching
- Knowledge of VPN - Site to Site and Remote Access
- Conducted Change Management activities under the supervision of seniors.
System Administrator
TechTree IT Systems P Ltd
New Delhi, New Delhi
2011.Feb - 2013.Oct
- Led the installation and maintenance of IBM System x, HP P-class, C-class Blade Servers, Gen8 Servers, and Workstations to track customer's visit for IRCTC DC
- Monitored the configuration and installation of Windows Server 2003/2008 and VMware ESX3.5i for server virtualization
- Installed Broad Vision Application, Oracle 10g Client, HP RTR, MKS Tool Kit
- Conducted Server Health Administration that includes scanning viruses and routinely checked antivirus (CA E-Trust, McAfee Anti-virus) status
- Checked WSUS (Windows Server Update Services).
Education
MBA - Information Technology
SMU DE
New Delhi 08.2016 - 08.2018
Bachelor of Technology in Computer Science & Engineering - Computer Science
IIMT College On Engineering
Greater Noida 08.2006 - 08.2010
Skills
Network Security Management
Firewall Administration
Information Security Policies
Intrusion Detection Systems
Public Key Infrastructure
Security Information and Event Management
Identity and Access Management
Endpoint Protection Platforms
Phishing Awareness Training
Security Operations Center
Multi-Factor Authentication
Incident Response Planning
Certification
Certified Information Security Manager (CISM)
Skills
Splunk, SolarWinds, Firewall UTM (Check Point and Palo Alto), Trend Micro TippingPoint, PA IPS/IDS, McAfee ePO, TrendMicro EDR, Salesforce, JIRA, BMC Remedy, ServiceNow (Basic), Tenable.io, Rapid7 Nexpose, Insight VM, virustotal, ipvoid, tcpdump
Timeline
Delivery Manager
Capgemini
2021.Jun - Current
Sr. Security Lead
Saksoft Limited
2020.Jul - 2021.Jun
MBA - Information Technology
SMU DE
08.2016 - 08.2018
Security Escalation and Enterprise Engineer
Algosec Systems
2014.Jul - 2020.Feb
NOC Engineer
FCS Software Solutions Ltd
2013.Nov - 2014.Jun
System Administrator
TechTree IT Systems P Ltd
2011.Feb - 2013.Oct
Bachelor of Technology in Computer Science & Engineering - Computer Science
IIMT College On Engineering
08.2006 - 08.2010