Dynamic and results-driven professional with over 8 years of experience in Cyber and Information Security, IT Audit, Risk Management, and Compliance. I have a proven track record in safeguarding information assets and ensuring compliance with industry standards across various sectors, including insurance, banking, fintech, and technology. My expertise spans managing on-premise and cloud infrastructures (AWS, Oracle, Azure) and aligning with international frameworks such as NIST, ISO 27001, and CSA.Key Skills:Cyber and Information SecurityNetwork and Application SecuritySecurity Incident ManagementRisk Assessment and ManagementCompliance (PCIDSS, HIPAA, IEC 62443, GDPR, SOC 2)Quality Management SystemsCloud Security ArchitectureZero Trust ArchitectureSecurity Operations (SIEM systems)Ethical Hacking & Penetration TestingAgile Project ManagementVendor ManagementExpertise in Saudi Arabia:Well-versed in local regulations and cybersecurity standards, including CITC, SAMA CSF, and NCC ECC guidelines.Experienced in aligning with Saudi-specific cybersecurity frameworks and compliance requirements.Energetic and detail-oriented, I excel in managing multiple projects, optimizing processes, and ensuring high-quality outcomes. Open to new opportunities, I seek roles that will allow me to further enhance security measures and practices. Proficient in managing remote teams and collaborating across time zones.#ZeroTrustArchitecture #CloudSecurityArchitecture #ISO27001, #ISO27002, #ISO27017 (Cloud Security), #ISO27018 (PII), #ISO27019, #ISO27035 #ComplianceAndSecurity #SecurityOperations #EthicalHacking #PenTesting #PCIDSS #HIPAA #IEC62443 #GDPR #ISO27031 #SOC2 #ITIL #CAPEX #OPEX #VendorManagement #SAMA #NCA #SIEM
-
Network EngineerPosco E&C (포스코이앤씨) ®Riyadh, Sa
-
Network Engineer & Grc AnalystPosco E&C (포스코이앤씨) ® Oct 2022 - PresentAl-Riyadh Governorate, Saudi Arabia
-
Assistant It ManagerPosco E&C (포스코이앤씨) ® Oct 2016 - Oct 2022Riyadh, Saudi ArabiaAssisted in managing IT operations to ensure reliable performance of systems, networks, and cloud infrastructure, including AWS and Azure, using CSA guidelines and tools like Azure Security Center and Azure Sentinel. Supported the IT Manager in crafting and enforcing IT policies and best practices. Collaborated with departments to identify IT requirements and provide tailored solutions. Oversaw IT projects using Microsoft Project and Jira, ensuring completion within budget and deadlines. Administered network infrastructure, including Cisco firewalls and cloud services. Supervised and mentored IT staff, monitored and optimized system performance with tools like SolarWinds and Nagios, and provided technical support. Conducted regular audits of systems and software to ensure compliance with security standards. Assisted in managing IT budgets and overseeing procurement and deployment of resources. Stayed updated on technological advancements like VMware and Hyper-V to recommend and implement innovative solutions. Supported robust cybersecurity measures with Palo Alto Networks firewalls and Symantec Endpoint Protection, coordinated with external vendors for IT service delivery, and assisted in disaster recovery planning with Veeam and Acronis.
-
Grc ConsultantZlanyk Technologies May 2022 - Sep 2023Conducted remote GRC assessments aligned with NIST and ISO 27001 to advise on regulatory compliance and best practices. Developed and customized the company's GRC application, ensuring alignment with these standards. Conducted remote risk assessments and recommended mitigation strategies, provided remote training and support, and collaborated with cross-functional teams for successful GRC solution deployment, all integrating NIST and ISO 27001 guidelines. Enhanced the GRC application for usability and scalability and contributed to continuous improvement initiatives based on NIST, ISO 27001, client feedback, and industry trends. -
Senior Support AdministratorWt Cybersec Jan 2015 - Nov 2016Islamabad, Islāmābād, Pakistan -
It SpecialistElectronic Pulse Jan 2016 - Oct 2016Riyadh, Saudi ArabiaManaged and optimized network infrastructure, including routers, switches, and firewalls, to enhance client systems' reliability and security. Provided comprehensive support for Windows Server environments, ensuring seamless operation and swift issue resolution. Administered virtualized environments using VMware and Hyper-V, optimizing resource allocation and performance. Delivered efficient end-user support, troubleshooting hardware and software issues to minimize downtime. Conducted rigorous system audits to enforce security protocols, identify vulnerabilities, and implement proactive measures for data protection. Deployed and integrated Microsoft Office 365 applications, ensuring smooth functionality. Collaborated with cross-functional teams on IT projects, ensuring timely completion and adherence to budget. Contributed to the development of IT policies, procedures, and compliance documentation. Supported disaster recovery planning and testing to ensure data integrity and business continuity. Stayed updated on emerging technologies, recommending and implementing innovative solutions to optimize IT infrastructure and operations. -
L2 Support System AdministratorFf Steel Sep 2014 - Jan 2015PakistanProvided advanced technical support and troubleshooting for escalated IT issues, ensuring timely resolution using ServiceNow and Zendesk to minimize downtime and maintain productivity. Managed server infrastructure, including installation, configuration, and monitoring of Windows Server, CentOS, and VMware vSphere. Administered network infrastructure with Cisco routers, switches, Palo Alto Networks firewalls, and VPN solutions like Cisco AnyConnect, ensuring secure connectivity. Implemented Active Directory services, managed user accounts, group policies, and permissions using Microsoft Active Directory. Conducted system updates, patches, and upgrades with WSUS and Linux package managers for stability and security. Monitored system performance with SolarWinds Orion and Nagios, proactively resolving issues. Contributed to IT projects like server migrations, network upgrades, and software deployments within timelines and budget. Provided training to L1 Support and end-users on IT systems and best practices using Confluence. Documented IT procedures and configurations with SharePoint and IT Glue. Participated in on-call rotation and responded to emergencies using Microsoft Teams to support 24/7 operations. -
System AdministratorNational University Of Computer And Emerging Sciences Apr 2013 - Aug 2014Peshawar, Khyber Pakhtunkhwa, PakistanAdministered Active Directory for user management, group policies, and permissions across faculty, staff, and student accounts. Provided technical support for university-wide IT issues, ensuring smooth operations. Maintained Windows Server and Linux systems, performing updates and patches to optimize stability, security, and performance. Supported deployment and maintenance of academic software applications such as Microsoft Office 365 and Adobe Creative Cloud, enriching teaching and research capabilities.
Umer Tayyab Khan Education Details
-
Electrical, Electronics And Communications Engineering
Frequently Asked Questions about Umer Tayyab Khan
What company does Umer Tayyab Khan work for?
Umer Tayyab Khan works for Posco E&c (포스코이앤씨) ®
What is Umer Tayyab Khan's role at the current company?
Umer Tayyab Khan's current role is Network Engineer.
What schools did Umer Tayyab Khan attend?
Umer Tayyab Khan attended National University Of Computer And Emerging Sciences.
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial