Jahfar Sathick Haja Mohaideen

Proactive Senior Cyber Security Engineer adept at predicting and disrupting intrusion attempts. Pioneers novel network security measures to combat emerging threats. Maintains proven track record of utilizing both education and technological solutions to fortify companies against malicious exploitation and data breaches.

• Implemented RSA two-factor Authentication 7.1 SP4 & 8.0 SP2 for Corporate Online Banking Application, UBC Etrade Application for corporate customers
• Worked with IBM vendor to Implement IBM Qradar SIEM solution for the bank SOC Team
• Migrated Dedicated TippingPoint IPS devices to NGFW and Designed and implemented AV solutions
• Received Customer Service Appreciation award in AT&T Network worldwide
• Received the best performer FY-21, FY-22 Award in DXC technology

• Endpoint Security
• Network Security- Firewall Operations and Engineering
• Azure Cloud Migration
• Microsoft 365
• NIPS/NIDS Operations and Engineering
• SOC Event Analysis & SIEM
• IT Security Risk & Compliance
• Vulnerability Assessment
• Project Implementation

• IT- Senior Cyber Security Engineer, Sobha LLC, Dubai, UAE, 04/2023, Current Date
• Senior Cyber Security Engineer, DXC Technology, Malaysia, 01/2020, 03/2023
• Technical Specialist – Network Security, AT&T Network Worldwide (DXC Technology), Malaysia, 11/2015, 12/2020
• SOC Analyst, Dicetek Global IT Solutions, Dubai, 06/2012, 09/2015
• Network Security Engineer, InfinIT Infoserv Pvt Ltd, Chennai, India, 11/2010, 05/2012
• System Security Engineer, Replica InfoTech, Trichy, India, 08/2009, 10/2010

• SobhA Realty, Dubai, UAE, Senior Cyber Security Engineer, 04/2023, Till now, Proficient in conducting comprehensive risk assessments, identifying vulnerabilities, and developing risk management strategies to mitigate cyber risks effectively and minimize organizational risks., Ensured adherence to security compliance requirements by conducting regular audits and assessments., Evaluated and monitored operational process effectiveness and compliance with standards and requirements., Conducted risk gap analysis to identify vulnerabilities in critical applications and provided the recommendations for remediation of identified risks, Developed templates, checklists, and trackers to ensure effective implementation of Information Security policies and procedures., Monitor and evaluate the effectiveness of existing controls and recommend enhancements or new controls as necessary., Maintained up-to-date knowledge of email security protocols and industry trends, Implemented OnDmarc solution to validate the email security protocols such as SPF, DKIM, DMARC, Monitor the security events and troubleshoot high-severity issues related to Cyber Security, Implemented the DLP solution with existing systems, including email servers, file servers, and endpoints, Collaborate with internal stakeholders to identify and classify sensitive data and configured the DLP policies and rules within the Forcepoint DLP solution to protect sensitive data, Implemented Security policies, procedures, and training programs that ensure maximum protection against phishing attacks, malware infections, and other cyber threats., Implemented Cyber Security control assessment on Sobha Onprem and cloud environment including the Databases and critical applications. Conduct vulnerability scans and penetration tests on the company's IT systems, including servers, databases, and critical applications., Monitor the Sophos cloud security events, policy configuration and troubleshooting., Implement the WAF, DDOS and CDN implementation to secure inbound and outbound traffic on cloud environments., Investigated potential or actual security violations or incidents to identify issues and areas that require new security measures or policy changes., Performed Cyber Security risk assessment on critical application cloud, Saas an On-premises, Provided security devices capacity and sizing, utilization, and availability to ensure all production devices performed at optimum state and availability targets are achieved., Performing risk assessment and working closely for the ISO 27001:2022 Information security, cybersecurity and privacy protection — Information security management system
• DXC Technology, Malaysia, Senior Cyber Security Engineer, 01/2020, 04/2023, Implementation, Administration, and troubleshooting of various Network Security devices (firewalls, proxy, IPS) and SIEM Products (Qradar), Engineering and Operation tasks on Palo Alto IPS, Fortigate IPS, and Tipping point NIPS/NIDS devices, Configuration and Fine-tuning the Firewall access rules and NIPS/NIDS Filters and signatures validation, Knowledge in implementation of IPsec & SSL VPN Concepts, Worked as L3 SOC analyst to provide relevant and timely analysis and recommendations to customers based on L1/L2 SOC security events findings, Worked as SME to assist Network/Endpoint security technical aspects, Present ORG Deck, SLA and weekly reports to clients and provide the service improvement plan, Perform investigations relating to suspected breaches of information security policies and standards or security compromises, Perform Vulnerability Assessment of all the bank assets every months to close vulnerability issues, Implement and troubleshoot Network IPS-related, Firewall high-priority issues based on Service Manager Incidents., Implementation, Administration, and troubleshooting of various Next-generation firewalls, Perform Day to day operations based on IM tickets (Incident/Request/change tickets), Update IOCs on Next-generation firewall and Endpoint Security devices based on CTAC - Security Advisories, Implementing Endpoint Security with Symantec Endpoint Protection, Trend Micro Office scan, McAfee ePO & ENS in SME/ Enterprise Clients, Designed and Implement the project Symantec Endpoint Protection, Mcafee ePolicy Orchestrator (EPO, VSE & ENS), DLP solution as per corporate policy compliance., Troubleshooting issues related to SEP, Mcafee ePO, Mcafee ENS, McAfee VSE, McAfee Agent, and McAfee Policy Auditor., Experience in the high level of support to Security Operations and Support teams for all McAfee products that make up the Mcafee ePO, ENS, VSE, and endpoint security toolset, Upgrade and patch McAfee security platform products to the latest versions, Successfully implemented the projects to perform Security devices Implementation and Migration within the project’s estimated time period.
• AT&T Network Worldwide, Malaysia, Senior Network Security Engineer, 11/2015, 12/2020, Worked as an SME to design, and troubleshoot high-severity issues related to the firewall and NIPS/NIDS, Installation, configuration, upgrade and perform Operation tasks on client’s Network Infrastructure which includes Fortinet Firewall, Cisco ASA Firewall, Checkpoint Firewall, Juniper SSG, SRX firewall devices, Tipping point NIPS/NIDS, Mcafee NIPS, IBM ISS and Mcafee EPO and ENS., Design and Implement Firewall rules and NIPS/NIDS policies., Knowledge in implementation of IPsec & SSL VPN Concepts, Troubleshooting Network IPS-related issues based on Service Manager Incidents., Implemented IPS/IDS device and performed update TOS version upgrade., Monitored live systems to discover real-time threats., Investigate potential or actual security violations or incidents to identify issues and areas that require new security measures or policy changes., Worked on Problem management tickets, root cause analysis and Service improvement plans.
• Dicetek Global IT Solutions, Dubai, SOC Analyst, 06/2012, 09/2015, Working in SOC Team, Managing the overall (Global) security of Union National Bank., Implementation, Administration, and troubleshooting of various Network Security devices (firewalls, proxy, IPS) and SIEM Products (Qradar), Participated and closely worked in achieving PCI-DSS and ISO 27001 certification for the Bank, Checking and monitoring the health and the events triggering in IPS. Handling technical issues that cannot be solved at the customer end., Taking necessary action if any vulnerable traffic is captured and intimating customer about the vulnerable traffic to take action., Updating signatures whenever new signature updates are released and monitoring the traffic., Signature Fine-tuning, Creating Responses, Database Management, Software Upgrade, Troubleshooting IDS / IPS component-related issues, Perform investigations relating to suspected breaches of information security policies and standards or security compromises, Monitor and review the systems on an on-going basis, for the compliance with the bank information Security Policies, procedures and standards and initiate corrective actions in the event of any violations., Perform Vulnerability Assessment of all the bank assets on every monthsd close vulnerability issues, Coordination of external penetration testing activities. Coordination of end point security & File integrity software Implementation and other specific security tools across bank infrastructure., Monitoring compliance issues using IBM Qradar SIEM tool & Create Security incidents based on Categories (Ex: Malicious code, Unauthorized Access, Unauthorized Modification, Cyber-attack), Management of VPN connectivity & Dual Factor RSA Authentication Manager (8.0 SP4) upgradation, implementation, configuration, testing & monitoring., Implement the Compliance & configuration Manager & run the compliance scan based on standard policies., Reviewing VPN authentication (Cisco ASA & Citrix) logs daily & Weekly basics, Implemented the Symantec endpoint protection manager (12.1 ru2) for 2400 clients, Cisco proxy server, and Ironkey secure USB server., Implemented the Symantec Data Loss Prevention Version 12.0 & Configure the policies based on PCI-DSS requirements, perform Endpoint Scan, and a Network Discovery scan every month. Real-time monitoring of customer data leakages in all layers (Endpoint, Web & SMTP), Reviewing User Access, Roles, and Responsibilities Matrix by creating a new group with policies for all the branches to monitor the risk activity., Business Continuity and Disaster Recovery planning, modification & testing for new and existing projects of the Bank, Conducted security awareness training covering Compliance (ISO 27001, PCI DSS) & UNB Standards and policies, Secure high-privilege passwords in Manual Envelope procedures & PAR system., Secured all assets high privilege passwords in the PAR system or secure passwords in an envelope & configured jump servers for ITD users.
• InfinIT Infoserv Pvt Ltd, Chennai, India, Network Security Engineer, 11/2010, 05/2012, Implementation, Administration, and troubleshooting of various Network Security (firewalls, proxy, IPS) and SIEM Product., Monitoring security devices from the monitoring tool HP ArcSight and resolving the issues., Creating channels in the ArcSight tool and monitoring the events from all kinds of devices., Implemented / Deployed ArcSight ESM Box for our customer’s environment., Installing ArcSight connectors, creating rules, queries, and active channels, and analyzing the events from the devices/servers., Juniper SSG5,SSG20,SSG140,SRX,Sonicwall NSA240,NSA2400,Watch guard & Fortigate Firewall, Trend Micro (Antivirus, Firewall, Anti-spam, and antispyware) Office scan for a file server, Client systems & servers, and Scan mail for an exchange server, Backup System Symantec Backup Exec 12.5D(VERITAS) and Acronis True Image server 9.1 for file backup, Disaster Recovery for Windows servers and clients using DAT/DLT tape drives and NAS (Network Attached Storage)., Configure indoor /outdoor Wireless Networking and network Printers & windows Servers, Configure Cisco Router for VPN, CISCO catalyst, Dlink, and Linksys switches, Maintaining Endpoint Security with Centralized Antivirus Symantec Endpoint Protection, Trend Micro, McAfee EPO(4.5,4.6 ) in SME Clients, Implemented DLINK Switches (more than 200 points which includes patch panel termination, network socket termination, and testing)., Implementing, Maintaining, and Troubleshooting System hardware, Software, Network related issues., Upgrading the software and hardware components in the Desktops and Laptops.
• Replica InfoTech, Trichy, India, System Security Administrator, 08/2009, 10/2010, Implementation, Administration, and troubleshooting of various Network Security Products., Implement endpoint protections (Symantec Endpoint Protection, Mcafee EPO, Trend micro office scan), Implemented FortiGate NGFW for site-to-site / Client to site VPN security, Implemented indoor/outdoor Wireless devices & configured the security policies, Implemented Apache Server, Firewalls rules & Squid server (Internet access via LAN), Installation of client systems like e.g. Windows 95/98, Windows for Workgroups, DOS 6.X, Microsoft Office 95/97, Norton Antivirus, Netscape, etc., Implementation of Local Area Networks running under different protocols e.g. TCP/IP, NetBEUI etc. Installation/ testing of UTP LAN cabling, LAN Ethernet cards, SCSI I/O controller cards, etc., Implementation of Hard Drives, Zip Drives, CD-ROMs, and Recorders. Memory Upgrade and Installation. PCI sound cards, modems, video cards, AGP video cards, PCMCIA cards, cable DSL routers, 10/100 hubs, Switches, Adequate knowledge of Security Access Control systems and PABX systems. Finger Scanner and CCTV installation and configuration., Remote & Onsite support and maintenance of PCs and peripherals on different platforms e.g. Windows NT/95, 98., Troubleshooting Hardware, Software, and printer-related problems and various antivirus products at more than 1000+ user’s environments.

• Passport Number: Z6777620
• Date of Birth: 01/22/88
• Gender: Male
• Nationality: Indian

• Mr. Sarjil Durvesh, Lead- cyber security architect, Abu Dhabi Commercial Bank, sarjil.durvesh@adcb.com
• Mr. Syed Omer Mukthar, IT Systems Manager, Abu Dhabi Commercial Bank, syed.omer@adcb.com