Zohair Masood

I am in charge of designing cybersecurity solutions, and these solutions are sized by customer needs. Additionally, I am in charge of conducting technical PoCs or PoVs of cyber security products, and before doing so, I limit the scope. We proceed with the execution of the planned solution after PoC or PoV is finished. I do exercises to analyze the gaps in the solutions that have been implemented. After those gaps have been found, I provide remediations as recommendations or proposals to fill those gaps. I am responsible to monitor and manage the cyber security solutions once the solutions are deployed.

Rewterz                                                                                                                             July 2017 to June 2023 -Present

Senior Information Security Consultant

Job Description:

Conduct a Demo of cyber security solutions. Conduct PoC/PoV of cyber security solutions.

Lock the scope before Proof of Concept/ Proof of Value.

Design Solutions as per the given requirements from clients. Help the Presales team in preparing technical proposals.

Provide recommendations to fulfill the gaps found during the assessment. Capable to Administer and manage cyber security solutions.

Implementation of Cyber Security Solutions as per the given requirements and expectations of the client. 

Perform gap assessments as per the best practices in existing deployed cyber security solutions

Deploy cyber security solutions as per the decided deployment model. Client Management and liaison of principal of Cyber SecuritySolutions.

Perform threat management, and threat modeling, identify threat vectors, and develop use cases for security monitoring. Help clients in the creation of RFPs by telling them the technical requirements they can use for an RFP.

Accomplishments, Hands-on, and Understanding of multiple Security Solutions:

Multiple distributed and all-in-one AIO deployments of SIEM solutions such as QRadar, RSA Netwitness, Fortisiem, Splunk, etc. Multiple deployments of FireEyeNX Network security solution.

Multiple deployments of FireEye EX Email Security Solution.

Multiple deployments of FireEye HX EDR Endpoint Detection and ResponseSolution. Multiple deployments of FireEye CMS Central Management Solution.

Have deployed Microsoft EDR solution along with the creation of policies and administered the solution as per the requirement.

Have carried out PoC/PoVof FireEye AX Sandboxing Solution. Have hands-on on FireEye PX Packet CaptureSolution.

Have deployed Carbon Black EDR Endpoint Detection and Response Solution.

Have an understanding and hands-on AttackIQBAS Breach and Attack Simulation Solution. Have deployed Arbor DDOS solution along with the administration of the solution.

Have an understanding and hands-on File integrity Monitoring Solutions like Tripwire and WAZUH. Have carried out sizing, deployment, and managing activities around Trendmicro EDR, Network SecuritySolutions, Web Proxy, and Email Security Solutions.

Have deployed Crowdstrike EDR Endpoint detection and response solution.

Have carried out sizing, deployment, and managing activities around Privileged access management solutions such as Thycotics and Beyond Trust.

Have deployed and configured Crowdstrike Threat Intelligence ReconX and BluelivThreat intelligence. Have hands-on DLP Data loss prevention solution.

Have carried out sizing, deployment, and managing activities around DarkTrace NetworkDetection and EndpointAI Security.

Have carried out sizing, deployment, and managing activities around DLP Solutions such as Forcepoint. Capable to design, deploy and manage all the above solutions mentioned in the section "Technologies" in the format of Virtual Machine and Bare-Metal (as FireEye AX can only be deployed in bare-metal form).

Have deployed Symantec BluecoatProxy solution in different deployment models, as per the need of the client. Capable to manage rules according to Mitre Att&ck Framework.

Have carried out sizing, deployment, and managing activities around MDM solutions such as IBM Maas360 and Blackberry.

Capable to manage and create Yara rules considering the Threat Landscape of the organization.

Have carried out deployments of Tenable SC along with the creation of policies and reports with multiple distributed scanners.

Have deployed Fortinet IPS solution in different deployment models, as per the need of the client along with the administration of Fortinet IPS.

Have deployed Nessus Professional along with the creation of policies.

Have a good understanding of NIST Cybersecurity Framework, ISO 27001 and ISO 27002, SOC2, NERC-CIP, HIPAA, GDPR, and FISMA.

Rewterz                                                                                                                                                     October - 2021

Information Security Consultant

Rewterz                                                                                                                                                      March - 2019

Information Security Engineer

Rewterz                                                                                                                                                      August- 2017

Security Engineer

Bachelors in Computer Science BS -CS