Farhan Khan
Abu Dhabi
Summary
Seasoned Cybersecurity Consultant with 9+ years of experience in Network Security, Cloud Security and Data Privacy. Proven expertise in security monitoring, risk assessment, and the implementation of robust security frameworks. Skilled in advising BFSI clients, enhancing cybersecurity strategies, and ensuring compliance with RBI, SEBI, IRDAI, CERT-IN, and NCIIPC standards. Adept at threat analysis, security design, and cross-functional collaboration to mitigate risks and safeguard business objectives.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Sr. Associate
PricewaterhouseCoopers (PwC)
Mumbai
03.2023 - 07.2024
- Designed and implemented advanced cybersecurity services for cloud environments: Developed and deployed comprehensive cybersecurity solutions for cloud platforms, including Azure and AWS, to enhance security posture. Leveraged best practices in cloud-native security to address vulnerabilities, ensure data protection, and improve threat management.
- Audited and reviewed network architecture for BFSI environments: Performed in-depth assessments of network infrastructures for Banking, Financial Services, and Insurance (BFSI) clients. Ensured adherence to industry best practices, regulatory requirements, and robust architectural design principles to mitigate risks and enhance system reliability.
- Delivered strategic IT and cybersecurity advisory: Provided tailored IT and cybersecurity consultation to clients, focusing on maximizing operational efficiency and achieving compliance with regulatory frameworks such as GDPR, PCI DSS, and ISO27001. Assisted clients in building resilient cybersecurity strategies aligned with business objectives.
- Created and deployed robust security policies and frameworks for banking clients: Designed and implemented security frameworks that aligned with regulatory mandates and industry standards, such as NIST Cybersecurity Framework and COBIT. Ensured secure data handling, threat mitigation, and incident response readiness for banking operations.
- Conducted security solution reviews and recommended product enhancements: Evaluated existing security solutions and architectures for potential gaps and inefficiencies. Proposed enhancements to optimize performance, scalability, and threat detection capabilities, leading to improved overall security management.
Sr. Security Analyst
Doyen Infosolutions Pvt Ltd
Mumbai
09.2015 - 02.2023
- Provided critical administration support for Next-Generation Firewalls (NGFWs): Delivered expert-level support for NGFW configurations, monitoring, and management to enhance network security. Resolved complex IPsec (Internet Protocol Security) and SSL (Secure Sockets Layer) VPN-related issues, ensuring uninterrupted secure connectivity across the organization’s networks.
- Designed and implemented Security Information and Event Management (SIEM) architecture: Conceptualized and deployed a robust McAfee SIEM framework tailored to organizational requirements. Configured advanced use cases to detect and respond to security threats proactively, integrating diverse log sources such as firewalls, servers, applications, and endpoints to ensure comprehensive visibility and threat detection. Successfully implemented LogRhythm SIEM for a large-scale IT network, optimizing threat monitoring and incident response with enhanced analytics and reporting capabilities.
- Led the centralized deployment of Network Access Control (NAC): Spearheaded the deployment of Network Access Control (NAC) solutions, employing both agent-based and agent-less approaches. Streamlined user authentication and endpoint compliance checks, enhancing overall network security and reducing unauthorized access risks.
- Conducted product demonstrations and proof-of-concept (POC) pitches: Delivered engaging and technically detailed demonstrations for cybersecurity products to prospective clients. Successfully executed POC implementations, showcasing the value and effectiveness of proposed solutions, resulting in client acquisition and project conversions.
- Implemented Network Monitoring Systems (NMS) for enhanced efficiency: Deployed advanced NMS tools to ensure real-time monitoring and management of network performance and security. These implementations improved incident response times, minimized downtime, and optimized resource utilization across diverse IT environments.
Education
Bachelor of Engineering - Electronics & Telecommunications
Mumbai University
01-2014
Skills
- Cloud Security: AWS, Azure Security Baselines
- Network Security: Firewall/WAF, DDOS, IPS, NGFW
- Data Security & Privacy: Compliance Frameworks, Security Policies
- Endpoint Protection: EDR, EPP
- Security Monitoring: SIEM (McAfee SIEM architecture and use-case configuration), QRADAR
- Tools & Technologies: NAC (Agent-based & Agent-less), NMS, IPsec & SSL
Certification
- CCNA
- EC-CEH (Certified Ethical Hacker)
- Fortinet NSE3
Accomplishments
- Successfully enhanced security frameworks for multiple BFSI clients, ensuring zero critical vulnerabilities post-implementation.
- Reduced incident response time by30% through optimized SIEM configurations and log integration.
- Delivered cybersecurity solutions that met and exceeded compliance requirements for high-profile clients.
Industry Domain Expertise
- Banking & Financial Services (BFSI): Compliance with RBI, SEBI, IRDAI standards
- Strategic Technology Advisory: Cybersecurity and IT strategy development
PASSPORT / NATIONALITY / VISA
YES / Indian
Visit Visa | 23th February, 2025
Timeline
Sr. Associate
PricewaterhouseCoopers (PwC)
03.2023 - 07.2024
Sr. Security Analyst
Doyen Infosolutions Pvt Ltd
09.2015 - 02.2023
Bachelor of Engineering - Electronics & Telecommunications
Mumbai University