Summary
Overview
Work History
Education
Skills
Certification
Training
Otherprojectsexperience
Timeline
Generic

Khawaja Abdul Shakoor

New York,NY

Summary

Adept at closing critical loopholes maximizing security options and staying ahead of current risks. Enjoy creative problem solving and getting exposure on multiple projects. I am seeking a position to utilize my knowledge, skills and abilities in the role that offers professional growth while being resourceful, innovate and flexible.

Overview

17
17
years of professional experience
1
1
Certification

Work History

Principal Security Engineer

ASCAP
12.2019 - Current
  • Company Overview: American Society of Composers, Authors and Publishers (ASCAP)
  • As a Sr
  • Security Engineer in American Society of Composers, Authors and Publishers (ASCAP), responsible for ensuring security standards are implemented and maintained on all corporate systems
  • Evaluate business and technology risks, internal controls that mitigate risks and related opportunities for internal control improvement, ensure PCI and GDPR compliance
  • Implementing Forcepoint Data Loss Prevention (DLP) Endpoint, Discovery and Network modules to protect the data going outside the organization and protecting data at rest
  • Managing teams of security analysts and security Engineers onsite and offshore (India), developing SOC capabilities, to include incident response
  • I am working on security tools Cisco AMP, Taegis XDR, Red cloak, Carbon Black, Qualys (Vulnerability management), Cisco Umbrella, Cloud lock and Thycotic Secret Server
  • Followed the NIST guidance for internal controls
  • Working with team on Pen test findings and remediate vulnerabilities
  • Designed and Implemented Microsoft Intune as an MDM solution and applied FDE (full drive Encryption) using AES-256 and secured the keys
  • Migrated and managed the applications SSO from ADFS to Cisco DUO and set up MFA
  • Implemented DUO Beyond implementation on Endpoints to access the application from corporate trusted devices and ensure security posture of device
  • Performed the Azure AD security assessment in environment and remediated the security issues
  • Designed and Implemented the BigFix environment for software deployment, patching, inventory, compliance and Reporting for Windows and JamF for Mac
  • Creating and maintaining the custom scripts using PowerShell to automate the process
  • Working with management to plan, analyze and execute the projects and manage them using project management tool Jira
  • Developing and maintaining Standard Operating Procedures and Working Instructions related to IT Security
  • Implemented CrowdStrike Endpoint protection, Identity protection and Falcon Intelligence
  • Implemented the Azure AD Password protection in Azure AD to block the weak/dictionary passwords that provides security of both cloud and on-premises
  • Preparing the documentation in confluence to support accurate implementation/operation of new capabilities supporting live operating environments
  • Working on data classification in AWS cloud
  • Working with Management for Cybersecurity Strategy and Operational Planning
  • Built up the security team and trained them to deal with security incident and response
  • Works with Infrastructure team to oversee the servers, appliances and AWS cloud security
  • American Society of Composers, Authors and Publishers (ASCAP)

Lead Systems Security Administrator

BCNS Inc.
09.2017 - 11.2019
  • Company Overview: BCNS Inc
  • Is the MSP, has 100+ Clients that deploys new network/servers, manage existing, monitors and troubleshoot the client’s technical issues
  • Deployed Windows Server 2012 R2 / 2016, Active Directory (User, groups, group policies, Folder redirections etc.) DNS and DHCP servers
  • Performed, reviewed, and analyzed system compliance monitoring and reporting
  • Configured the security tools for vulnerability management like Qualys
  • Implemented the MFA solutions in different environment
  • Implemented Endpoint Protector DLP solution of CyberHaven, created policies to prevent data leakage
  • Configured Remote Desktop servers (RDP) with profile disks and local user’s profiles, profile backups, managed per user and per device licenses and troubleshoot the issues on daily basis
  • Designed and Implemented Exchange Servers 2013 /2016 in new environment, migrated and managed in existing environment
  • Configured failover cluster by using DAG and also configured Exchange server in hybrid mode with office365
  • Worked on Azure AD security to make the cloud environment secure
  • Configured and Implemented antimalware solutions, Malewarebytes, Trend Micro and Symantec
  • Also, worked on cloud lock and Cisco StealthWatch
  • Configured and Managed the Office365 and Azure for new organizations with best practices and implemented the cloud security
  • Installed, managed the next generation firewalls Cisco and Untangle
  • Configured Rules, VPN, spam and web filtering
  • Designed the data and systems backup plans for on/offsite locations and implemented using the tools WSB, Syncovery and Symantec backup exec
  • Worked on BCP and DR plans and implemented the sites for disaster recovery
  • Configured and implemented VMware ESXI hypervisors, vSphere, VMs and VCenter
  • BCNS Inc
  • Is the MSP, has 100+ Clients that deploys new network/servers, manage existing, monitors and troubleshoot the client’s technical issues
  • Reduced system downtime by proactively monitoring infrastructure and resolving potential threats before they escalated.

Sr. Systems Administrator

NORTH STAR PHARMACEUTICAL GROUP
12.2015 - 07.2017
  • As System Administrator for a company with a group of 10 Pharmacies, integrated all the Pharmacies under one roof and manage all those servers connected by VPN
  • Implemented and Managed Active directory 2008/2012 on all the locations and administered GPO and all directory objects
  • Performed Security Health Check of Windows servers and applied the HIPAA compliance, performed timely Patch management as per the Schedule
  • Implemented the DHCP, DNS, IIS, FTP, File and Print servers
  • Worked on Exchange server 2010, managed mailboxes, backups, mail flow and all email responsibility
  • Worked on Barracuda Web Security Services to manage all the domains and securities ensuring security standards are implemented and maintained on all corporate systems
  • Worked on SonicWALL and Cisco ASA firewalls for VPN, NAT and Rules to block/allow traffic
  • Implemented the NAS storages for backups of servers and critical data
  • Worked in designing, deploying virtual networks and upgrading systems, including hardware, software, networks, databases, servers and peripheral equipment
  • Implemented all the servers in virtualized environment using ESXI as a hypervisor, performed VM migrations and also worked on VDI (Persistent, non-persistent) machines deployment

Systems Administrator

CSD HEAD OFFICE (MINISTRY OF DEFENSE)
04.2009 - 10.2015
  • Worked physically in Data center on Servers Dell Power Edge 2900, 2950, R420 and IBM and HP Machines
  • Managed 100+ local and remote servers with team
  • Configured RAID 1 and 5 for data redundancy to prevent data loss in case of disaster
  • Configured and maintained an infrastructure of Windows 2003/2008/2011 SBS/2012, Domain Controller, DNS, DHCP and File Servers
  • Worked on Exchange Server 2007/2010/2013 installation, configuration, deployment, migration and troubleshooting including DAG for Exchange 2013
  • Planned the disaster recovery and managed and implemented backup solutions accordingly
  • Trained operations personnel to be responsible for daily backup/restore functions
  • Implemented a corporate Windows Server Update Service v.3 environment, including all architecture, configuration and best practice documentation
  • Implemented Database Servers including SQL Server and Oracle
  • The Users used those applications from Remote Locations
  • Implemented Virtual Environment using ESXI servers, VCenter and Hyper-V
  • Implemented backup Techniques using different tools Windows Server Backup, Symantec Backup procedures and Sync backup

Network Engineer

JSCOMPUTEK
03.2008 - 10.2009
  • Company Overview: JSCOMPUTEK is the MSP provides IT services to customers in Kansas and Missouri
  • Responsible for the management, upgrades and stability of servers and workstations in US locations
  • Implemented a corporate Active Directory Environment, including all architecture, configuration and best practice documentation
  • Designed, implemented and deployed a new data backup solution for all corporate servers
  • Provided application support for Exchange 2003 and Exchange 2007, Desk and various other business applications
  • Built and implemented a corporate Microsoft Direct Access platform
  • Redundancy, security, networking and GPO/Membership were properly accessed and properly implemented
  • Responsible for the management, upgrades and stability of servers in remote locations
  • JSCOMPUTEK is the MSP provides IT services to customers in Kansas and Missouri

Education

Bachelor of Science - Computer Science

MIU
01.2005

Skills

  • Vulnerability assessment
  • Identity and Access management
  • Security compliance auditing
  • Penetration testing skills
  • Operating system hardening
  • Cloud security proficiency
  • Incident response management
  • Data loss prevention techniques
  • Mobile device security
  • Security policy development
  • Two-factor authentication implementation
  • Patch management
  • Incident response

Certification

  • Certified Information Systems Security Professional (CISSP)
  • Project Management Professional (PMP)
  • Microsoft Certified Professional [MCP]
  • Microsoft Certified System Administrator [MCSA]
  • Microsoft Certified Solutions Associate Office 365 [MCSA]
  • Microsoft Specialist (Implementing Azure infrastructure solutions) [MS]

Training

  • Cisco Certified Network Associate [CCNA]
  • Cisco Certified Network Professional (Wireless and VOIP) [CCNP]
  • Microsoft SCCM (System Center Configuration Manager)

Otherprojectsexperience

  • Designed and developed websites using WordPress, HTML, ASP and PHP for backend code and MS Access and MySQL as a Databases for dynamic websites.
  • Inventory Control System for AMSONA COMPUTERS using Visual Basic 6

Timeline

Principal Security Engineer

ASCAP
12.2019 - Current

Lead Systems Security Administrator

BCNS Inc.
09.2017 - 11.2019

Sr. Systems Administrator

NORTH STAR PHARMACEUTICAL GROUP
12.2015 - 07.2017

Systems Administrator

CSD HEAD OFFICE (MINISTRY OF DEFENSE)
04.2009 - 10.2015

Network Engineer

JSCOMPUTEK
03.2008 - 10.2009
  • Certified Information Systems Security Professional (CISSP)
  • Project Management Professional (PMP)
  • Microsoft Certified Professional [MCP]
  • Microsoft Certified System Administrator [MCSA]
  • Microsoft Certified Solutions Associate Office 365 [MCSA]
  • Microsoft Specialist (Implementing Azure infrastructure solutions) [MS]

Bachelor of Science - Computer Science

MIU

Similar Profiles

  • Hitendra sahay

    Hitendra sahayHitendra sahay

    Director of Data Engineering at ASCAPDirector of Data Engineering at ASCAP

    View Profile
  • ONTARIO D. HAYNES

    ONTARIO D. HAYNESONTARIO D. HAYNES

    Senior Licensing Manager at AscapSenior Licensing Manager at Ascap

    View Profile
  • Dakesha Pope

    Dakesha PopeDakesha Pope

    Senior Licensing Manager at ASCAP - American Society Of Composers, Authors AndSenior Licensing Manager at ASCAP - American Society Of Composers, Authors And

    View Profile
Khawaja Abdul Shakoor