Khurram Murad Email and Phone Number

• Manage and maintain vulnerability management solution in collaboration with Infrastructure and IT Security department.• Ensure vulnerability scans / penetration tests are run periodically in line with policies and standards across entire scope of IT assets.• Perform automated code reviews as part of security review process, report the findings and explain the same to the development team along with clear recommendations to mitigate the vulnerabilities/risks. • Conduct architecture… Show more • Manage and maintain vulnerability management solution in collaboration with Infrastructure and IT Security department.• Ensure vulnerability scans / penetration tests are run periodically in line with policies and standards across entire scope of IT assets.• Perform automated code reviews as part of security review process, report the findings and explain the same to the development team along with clear recommendations to mitigate the vulnerabilities/risks. • Conduct architecture review from security stand point and recommend improvement as per CS standards.• Perform compliance scans for systems, servers, network devices, firewalls, routers and various technology components as per industry standard benchmarks.• Guide the IT team in mitigating identified vulnerabilities/risks.• Track and report the status of the identified risks on a periodic basis as per the vulnerability management standard.• Automate the vulnerability management process to efficiently perform daily tasks. Show less

• Manage and maintain vulnerability management solution in collaboration with Infrastructure and IT Security department.• Ensure vulnerability scans / penetration tests are run periodically in line with policies and standards across entire scope of IT assets.• Perform automated code reviews as part of security review process, report the findings and explain the same to the development team along with clear recommendations to mitigate the vulnerabilities/risks. • Conduct architecture… Show more • Manage and maintain vulnerability management solution in collaboration with Infrastructure and IT Security department.• Ensure vulnerability scans / penetration tests are run periodically in line with policies and standards across entire scope of IT assets.• Perform automated code reviews as part of security review process, report the findings and explain the same to the development team along with clear recommendations to mitigate the vulnerabilities/risks. • Conduct architecture review from security stand point and recommend improvement as per CS standards.• Perform compliance scans for systems, servers, network devices, firewalls, routers and various technology components as per industry standard benchmarks.• Guide the IT team in mitigating identified vulnerabilities/risks.• Track and report the status of the identified risks on a periodic basis as per the vulnerability management standard.• Automate the vulnerability management process to efficiently perform daily tasks. Show less

• Plan, communicate, coordinate and conduct penetration testing, application testing, and security evaluations at application, system and business level.• Compliance of requirement for mobile and web apps with IT security standards and policies.• Develop Rules of Engagement, scoping documents and reports.• Conduct manual penetration tests and validation of vulnerability scan issues.• Devise plans and scenarios for various types of penetration tests.• Conduct vulnerability… Show more • Plan, communicate, coordinate and conduct penetration testing, application testing, and security evaluations at application, system and business level.• Compliance of requirement for mobile and web apps with IT security standards and policies.• Develop Rules of Engagement, scoping documents and reports.• Conduct manual penetration tests and validation of vulnerability scan issues.• Devise plans and scenarios for various types of penetration tests.• Conduct vulnerability assessments to detect susceptibility to intentional or unintentional intrusion, abuse, or denial of service within systems/networks. Monitor and assess patch compliance.• Document vulnerabilities, relevant exploits, attack capabilities, propagation characteristics and remediations in applicable risk assessment reports.• Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets.• Perform information technology security research to remain current on emerging technology trends.• Select, install, and configure security testing platforms and tools or develop tools and procedures for penetration tests.• Knowledge and understanding in various disciplines such as security engineering, system and network security, authentication and security protocols, cryptography, and application security.• Experience in performing Red team exercises. Show less

• Managed and conducted multiple information security projects. Performed regulatory compliance testing as per the government defined standards and best practices. Performed network security threat analysis, critical telecommunication links assessment, digital forensics for evidence gathering. • Assisted in safeguarding organization’s computer networks and systems. Planned and carried out security measures to monitor and protect sensitive data and systems from infiltration and… Show more • Managed and conducted multiple information security projects. Performed regulatory compliance testing as per the government defined standards and best practices. Performed network security threat analysis, critical telecommunication links assessment, digital forensics for evidence gathering. • Assisted in safeguarding organization’s computer networks and systems. Planned and carried out security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks. Worked as part of a larger IT Security team and report directly to upper management.• Contributed in development of information security plans and policies, implementation of protections, testing for vulnerabilities, monitoring and investigation for security breaches. Show less

• One of the pioneer member of the Broadband Pakistan project team.• Managed Installation, maintenance of DSL internet connection in Rawalpindi Telephone Exchange.• Established a local helpline for smooth operations of Broadband project.• Managed to a cross functional team to make Broadband project a success.