Ali Malhi

 Ali Malhi |Senior Manager Cybersecurity and Architecture Email:-| Tel:- Summary: A results-driven Senior Manager in Cybersecurity and Architecture with 18years of experience leading teams and providing technical expertise to manage enterprise-level security solutions. Strong background in cybersecurity architecture, vulnerability management, risk assessment, compliance, and incident response. Highly skilled in collaborating with cross-functional teams to develop and implement security strategies, best practices, and policies to mitigate security risks. Excellent communication, leadership, and project management skills. Platform Experience and Core Competency Areas: Experience in designing, implementing, and supporting network and security solutions from technology partners such as Cisco, Citrix, Fortinet, PaloAlto, Meraki, Aruba, Aerohive, Checkpoint, Rapid7, Tenable, Qualys, Akamai, Juniper, Brocade, F5, Microsoft, Zscaler, Solarwinds, Bluecoat, ServiceNow, Cloudflare. Routing, Switching, Firewalls, Load balancers, Application Gateways, Proxies. Enterprise Network Security Architecture and Design (Datacenter, Campus, and Cloud) Cybersecurity Architecture and Design, Endpoint Security, Zero-Trust, CASB, XSOAR, Prisma Access and SIEM. Penetration Testing, Vulnerability Management, Risk Assessment, and Incident Response Firewall Rule Guidance / Review / Approval, Network Segmentation, DMZ Design Network Automation and Scripting, Terraform, Python, Ansible. Professional Experience: Homebridge Financial Services, Iselin NJ Senior Manager Cybersecurity and Architecture July2013-Present Led the design and implementation of complex, mission-critical solutions across multiple security domains relative to Data Protection, IT Risk, Network Security, Security Operations and Identity and Access management to meet organization's business objectives. Corporate datacenter firewall and DMZ redesign – Architected both green field and legacy data center DMZ’s and Cisco firewalls upgraded to NGFW Palo Alto firewalls. This included simplification of the overall design in favor of using advanced firewall capabilities such as URL filtering, SSL decryption, IPS and Malware detection and control including Wildfire integration, Cloud based virtual firewalls, Splunk integration with Palo Alto Networks Cortex XDR, DLP controls, borderless VPN using Global Protect/ADEM, CASB, Prisma Access centralized management using Panorama. Assisted our Security Operations team in the rule review and total rewrite of firewall rules from legacy port-based rules to App-ID based rules. Designed and Deployed Palo Alto VM Firewall Solution to provide security to Azure Cloud assets, deployed IAM solution using Azure AD with MFA including PIM for user access. Defined and communicated technical standards, guidelines, and best practices to ensure the organization's solutions were secure, scalable, and maintainable. Investigation, analysis, documentation, remediation, tracking, and reporting of technology risks and associated controls. Deployed Vulnerability Management Solution Tenable and Qualys to detect and remediate vulnerabilities for end user’s workstations and servers. To Identify Security Incidents on end user’s workstations designed SIEM solution to track security incidents by installing Rapid7 InsightIDR on user workstations and servers. Provide leadership and advice on material remediation activities ensuring appropriate resolution of issues, action plans, breaks, and remedies and support the closure verification process. Lead the efforts to create and manage agile process for controls related assessment, and build automation/self service capabilities for analysis, reporting and reusing of information to address control issues. NY DAILY NEWS LLP, Jersey City NJ Senior Security Architect - Design and implement network security solutions that meet NY Daily needs while adhering to security best practices and regulatory compliance requirements. Analyze and assess existing network security infrastructure to identify areas of improvement and provide recommendations to address any identified security gaps. Conduct network security assessments and penetration tests to identify vulnerabilities and provide recommendations on remediation. Managed endpoint protection solutions, including antivirus, EDR, and application control. Designed a virtual air-gap network to separate our business network from partner company while still allowing business-based applications to receive monitoring data. Product review and selection for APT protection from the endpoint to the edge including Cisco, Palo Alto, Fortinet, etc. Deployed cloud flare to provide DDOS protection, content caching, WAF and SSL / TLS encryption for mission critical websites. Orion Innovations, Red Bank NJ Senior Security Engineer - Designed and implemented network security solutions for clients in various industries, including healthcare, finance, and manufacturing, resulting in improved security posture. Work with technology teams to walkthrough, gather control design requirements facilitate discussions and bring to closure control issues. Configured and maintained routers, switches, firewalls, and other network devices. Deployed Bluecoat Proxy for URL Filtering, Site Caching, SSL Intercept and Bandwidth management for mission critical websites for clients. Developed and maintained security policies, standards, and guidelines to ensure that the NIST CSF framework is applied consistently across the company Communicate risk and other control findings with key stakeholders, develop recommendations and provide accurate metrics and management reports on a timely basis. AT&T, Piscataway NJ Senior Security Consultant - Overall, recommended aligning business processes with COBIT 5, CGEIT, CISM, CAP, ITILv3, ISO27000 series, PMI to migrate to goal state of SELM and vulnerability management programs to IS team that included Asst Director and CISO. Created Procedure Response documents for i) Incident Response, ii) VirusScan, iii) Vulnerability Management and iv) Alerts of threats and software patches. Evaluated and offered revisions to vulnerability and application scanning program via Rapid 7 Nexpose (strategy, governance, threat intelligence, incident response, continuous improvement). Deployed Cisco ASA Firepower and FMC to manager AT&T Customer Firewalls to secure LAN / WAN. Consult with Application Development and Technical Operations as required on security designs of applications, questions about vulnerabilities, and remediation approaches. Scan for security compliance and analyze results especially paying attention to current lists of accounts having access to; ‘WITH GRANT’, ‘WITH ADMIN’, and ‘CREATE’ privileges. Problem resolution of security operations and incidents, including 24x7 on-call support. Act as liaison for audit and other regulatory requests and assist in the resolution of security-related control issues. Document, communicate, implement, and coordinate, within business group, information security policies, standards, procedures, processes, programs, initiatives, and new or enhanced information security technologies and methodologies. Ora-Tech Systems / MIT, Karachi Pakistan Senior Information Security Engineer 2004 - 2007 Leverage NIST, ISO, and CSCO frameworks in the development, testing and implementation of security plans, products and control techniques Review business justification for and approve/deny all requests for non-emergency privileged or administrative access (i.e. Identity Access Management; Active Directory and IBM Tivoli Access Manager, etc.) including, but not limited to permanent administrator rights, desktop admin rights, direct change access to mainframe production data, unfiltered internet access, etc. Perform risk based, technical assessments of applications, using both dynamic (DAST) and static (SAST) analysis, penetration testing, produce security assessment reports, open tickets in work tracking systems, and meet with development teams as required to remediate risks. Security infrastructure. Continually monitor, assess, and improve network security, test, and implement new security technologies. Deployed Fortinet Manager and Fortinet Analyzer to centrally manage, monitor and analyze security logs of FortiGate Firewalls. Education: M.S, Information Technology | Preston Institute of Management and Science - Karachi Pakistan, Year2003 B.S, Information Technology | Preston Institute of Management and Science - Karachi Pakistan, Year2002 Skills: Security Architecture and Design Risk Assessment and Management Threat Analysis and Modeling MITRE framework. Regulatory Compliance (PCI DSS, NIST) Incident Response and Disaster Recovery Endpoint Security (Cortex XDR, Insight IDR Agent, Microsoft Defender, patchmypc). Network security (firewalls, VPNs, IDS/IPS) Security Awareness Training Cloud Security (Azure) Team Leadership and Management Palo Strata, Panorama, Cortex XDR, Prisma, CASB, SAAS Security, APP ID and User ID , SSL Decryption , Cortex Data Lake , XSOAR , ADEM. Wireshark, TCP DUMP, Solarwinds, OpenNMS, Splunk, Thousand Eyes Tenable Nessus, Qualys, NMAP, Advance IP Scanner Terraform, Phyton, Power Shell and Ansible. Certifications: Microsoft Certified Azure Architect Expert PaloAlto Certified Network Security Engineer (PCNSE) Cisco CCNP Routing and Switching, Cisco CCNP Security, Cisco CCDA, Cisco CCIE Routing and Switching Written. Blue Coat BCCPP/BCCPA, Fortinet Certified Network Security Professional (FCNSP) Checkpoint Certified Security Professional (CCSP) Brocade Certified Network Engineer (BCNE) Certified SonicWall Security Professional (CSSP) Aerohive Certified Wireless Professional (ACWP) BIGIP F5-LTM Certified References: Available Upon Request.