Malik Zeeshan Arshad

H.No # 03, Street # 01, Anwar Town,

Rawalpindi Pakistan
Contact: +92 347 5069755
zeeshanmalik2015@gmail.com

CAREER OBJECTIVE
I am Information Security Expert with in-depth practical experience of implementing organization’s information
security policies, procedures and configuration of different security solutions Moreover I have experience of
Endpoint Security, Penetration Testing, Security Operation Center, SIEM QRadar and incident response.

EXPERIENCE
Currently working in Trillium Information Security Systems from 03 years.
Information Security Architect
July 2019 - Present
 Conduct PoC’s of security solutions like SIEM QRadar, Endpoint Antivirus, Nexpose, Metasploit Pro,
Forcepoint DLP, IBM Guardium DAM, KATA, EDR, hybrid cloud security, PAM and MDM solutions.
 Deliver Presentations, Demo's and Training of different security solutions to a Customers.
 Build Technical Proposal, Compliance RFP and RFP response documents of different Security solutions
for the customers.
 Conduct Customers Meeting with sales Team regarding different security solutions.
 Developing, reviewing, and approving the installation requirements of different security solutions.
 Planning, researching, and designing security architectures.
 Give consultancy of different security solutions to customers.
 Act as the single point of contact in a region for all Security solutions related concerns from clients or
other employees.
 Recommend solutions after analyzing the customers’ requirements.
 Build of different Security Solutions.
 Manage Security of Trillium information Security.

Information Security Engineer

Aug 2018 – June 2019
 Do Deployment, configuration and implementation of Security Solutions like SIEM QRadar, Endpoint
Antivirus, Nexpose, Metasploit Pro, Forcepoint DLP, IBM Guardium, KATA, EDR and hybrid cloud security.
 Implement data encryption on the customer’s requirement.
 Implement Patch management.
 Perform Vulnerability assessments of Web applications, network and endpoint devices for the different
customers.
 Perform exploitation and validation of Vulnerabilities using Metaspoloit Pro for the different customers.
 Implement Application and Device controls.
 Deliver trainings of different security solutions to a customers.
 Build Deployment plan documents for different security Solutions.
 Manage policies and controls of different security Solutions at Trillium.
QRadar SIEM Specialist
Jan 2018 – July 2018
 QRadar deployment and integration with various log sources like Firewalls, routers, IDS/IPS, Active
Directory, Microsoft exchange, windows servers, Databases servers, Linux servers,
Databases,Guardium(DAM),DLP Solution, anti-virus products, proxies, operating systems, APT and EDR
solutions and customs web applications etc.
 Tune and troubleshoot QRadar to deliver optimal performance in high volume enterprise customer
environments.
 Creation of technically detailed reports on the status of the SIEM to include metrics on items such as
number of logging sources, log collection rate, and server performance.
 Create and restore QRadar Backup.
 Patching and upgradation of QRadar to latest version.
 Manage SIEM user accounts (create, delete, modify, etc.)
 Create Reference sets and building blocks according to customer requirements.
 Creates and develops correlation and detection rules based on customer requirement.
 Write Regex for extraction of un-parsed fields.
 Install QRadar Extensions on customers’ requirements.
 Documents completed solution installation, and configuration work for the clients.

L1 SOC Analyst
July 2017 – December 2017
 Monitor QRadar offenses, events and alerts generated by AV, firewall, IDS/IPS and routers etc.
 Analyze systems logs, Events and malwares.
 Analyze network traffic to identify malicious activity and potential threats to network resources.
 Custom Rules Creation and rule tuning against false positive events.
 Proactive response to security incidents.
 Handle escalated incidents and track them to closure.
 Perform basic malware analysis, Threat Intelligence and log analysis.
 Develop and maintain SIEM QRadar alerts and use cases for effective monitoring.
 Perform Incident Investigations along with Security Operation and Network Teams.
 Understanding of secure architecture of both system and network side.
 Customized Reporting (Daily, Monthly and Quarterly).

Information Security Support Engineer

March 2017 – June 2017
 Give Level 02 & Level 03 technical support of different security solutions e.g SIEM QRadar , Endpoint
Security, Forcepoint DLP ,Nexpose and metasploit Pro.
 Act as the initial point of contact for all Security solution related concerns from clients or other
employees.
 Respond to customer inquiries and assist in troubleshooting and resolving their challenges.
 Attend in-person meetings with clients to analyze, troubleshoot and diagnose the security Problems.
 Troubleshoot the customer's security issues remotely or by onsite visit.
 Complete detailed reports listing requests to technical assistance, steps taken to resolve them, and the
specific dates/individuals involved.
Technical Certifications:
 IBM Security QRadar SIEM V7.2.6 certified Associate Analyst
 IBM QRadar SIEM Foundation
 Nexpose Certified Administrator – Rapid7
 Kaspersky Threat Management and Defense Certified (APT & EDR).
 Kaspersky Threat Intelligence
 Certified Forcepoint DLP Security Pre-Sales Engineer.
 Certified Forcepoint DLP Services Professional.
 Kaspersky Lab Certified Consultant
 Kaspersky Lab Certified Professional
 Kaspersky Lab Certified Associate
 Kaspersky Lab Certified Engineer Level 1
 Kaspersky Lab Certified Engineer Level 2
 Kaspersky Lab Certified Sales Engineer
 Kaspersky Lab Certified System management
 Kaspersky Mobile Device Management certified.

Security Solutions Expertise:

Complete knowledge and command on following security products:
 IBM SIEM QRadar.
 Forcepoint DLP solution.
 Rapid 7 Metasploit Pro.
 Rapid 7 Nexpose vulnerability Scanner.
 Rapid 7 AppSpider - DAST Solution.
 Positive Technology Application inspector – SAST Solution
 Kaspersky Anti Targeted Attack – APT Solution
 Endpoint Detection and Response – Kaspersky EDR
 IBM Guardium DAM.
 Kaspersky Endpoint Security for workstations and file servers.
 Kaspersky Email Security Solution.
 Kaspersky security for virtualization.
 File Integrity Monitoring
 Kaspersky security for storages solution.
 Mobile devices management (MDM) solution - Kaspersky.
 Kaspersky Embedded Security - POS & ATM solution.
 Rapid 7 InsightVM vulnerability Scanner.
 Continent Firewall

Skills & Abilities

 Good pre sales and Post sales capabilities.

 Good Communication and Presentations skills.
 Capable to analyze, understand and recommend Security solutions to complex problems.
 Ability to prioritize and handle multiple tasks in a high- pressure environment.
 Knowledge and understanding of network devices, multiple operating systems, and secure
architectures
  Ability to manage Security Operation Center (SOC) services.
 Capability to have quick enablement on new security solutions.
 Vulnerability scanning and management.
 Incident Analysis.
 Knowledge of Network security.
 Basic level Penetration testing.
 Analyze Security System Logs, Security Tools, and Data
 Understanding of Security principals: Confidentiality, Integrity and Availability
 Train Organizations on Security Solutions.
 Good analytical skills.

Major Projects:
 Deploy and configure SIEM QRadar at Trillium.
 Deploy and configure SIEM QRadar at Askari Bank.
 Deploy and manage QRadar at Trillium information security systems.
 Deploy Kaspersky Security for Virtualization-GHQ Pakistan.
 Deploy Kaspersky Endpoint Security for Select- NLC Pakistan.
 Deploy Kaspersky Endpoint Security for Advanced- Bank Of Punjab.
 Deploy Kaspersky Security for Storages- SNGPL.
 Deploy and manage Forcepoint DLP at Trillium.
 Kaspersky Anti Targeted Attacks-APT solution POC at Bank of Punjab.
 Forcepoint endpoint DLP PoC at MCB Bank.
 Deploy Forcepoint DLP at MCB bank.
 Vulnerability assessment and patch management of MCB bank.
 Vulnerability assessment and patch management of Allama Iqbal University.
 Nexpose and Metasploit deployment at first microfinance Bank.
 Deliver Training of Kaspersky Endpoint Security for Select at CSD Headquarters.
 Deliver Training of Kaspersky Endpoint Security for Advanced at Allama Iqbal University.
 Deliver training of Nexpose to a customers at trillium information security.
 Deliver training of Nexpose & Metasploit to a Mobilink Microfinance Bank.
 Kaspersky Endpoint Security Deployment advanced and EDR deployment at Pakistan Airforce.
 Metasploit Pro Training to Aga Khan University.
 Deploy EDR on Pakistan Airforce.
 Conduct PoC Rapid7 App Spider at Telenor.
 L1 SOC services to Faysal Bank.
 Forcepoint DLP PoC at Fauji Tower PVT Ltd.
 SIEM QRadar PoC at NRSP Bank.

Qualification:

Degree Passing Year Institution

BS (Computer Science) Jan 2013 – Jan 2017 Comsats university Islamabad
FSC(PRE-ENGINEERING) 2010 - 2012 Govt Gordon College Rawalpindi
Matriculation 2008 - 2010 F.G Technical High School Rawalpindi