Abdul Sattar

Diligent Security Professional with more than 9 years’ experience in various domains such as System Administration, Network Security, Virtualization and Vulnerability assessment. Proficient in Linux with bash scripting. Extensive knowledge of hardware, software and networking technologies to provide a powerful combination of analysis, implementation, and support.

Security SME / Security Test Engineer                                      November 2021 to Present 

TATA Consultancy Services 

Internet City Dubai

• Perform intelligence-led security assessments on Internet-facing web applications
• Perform penetration tests across public/private network infrastructure assets
• Perform code aware penetration testing and security assessment of the iOS/Android mobile applications
• Perform intelligence-led security assessments on Internet-facing web applications
• Perform penetration tests across public/private network infrastructure assets
• Perform code aware penetration testing and security assessment of the iOS/Android mobile applications
• Perform security assessment of cloud environments (AWS/Azure/GCP/other) with automated tools, custom scripts, and configuration audits.
• Conducts penetration tests and vulnerability assessments against client infrastructure following a standard testing methodology using automated, ad-hoc, and manual testing techniques.
• Develop penetration testing strategy and test cases for complex enterprise applications
• Develop methodology documents and pre-engagement questionnaires for Penetration Testing and Vulnerability Assessment projects.
• Triage and prioritize application security vulnerabilities. Work with Engineering to schedule mitigations.
• Perform pen testing using various security tools like Burp, Nessus, Acunetix, Web Inspect, Core impact, Nmap, Metasploit, Kali Linux tools etc.
• Find the most efficient way to protect the system, networks, software, data and information systems against any potential attacks.
• Perform complex analysis to understand emerging threats, and continuously demonstrates awareness of current threat posture.
• Proven experience of Mobile platform security, threat models and mitigation techniques.
• Excellent knowledge and understanding of Mobile security testing methodology
• Knowledge of DevSecOps tooling and automation frameworks.
• Work with external vendors to perform penetration tests on network devices, operating systems, databases, and Applications as necessary.
• Triage and prioritize application security vulnerabilities. Work with Engineering to schedule mitigations.
• Implement automated, proactive security measures (e.g., SAST/DAST).
• Collaborate with external-facing security communications team when possible/feasible (e.g., blog posts, security vulnerability disclosures, etc.).
• Track bug bounty spends and MTTM (mean time to mitigation) of security vulnerabilities.
• Develop internal AppSec review processes.
• Develop Secure SDLC process and communicate process to Engineering.
• Conduct vulnerability assessment, pen testing and security checks of various application and network assets. Knowledge of web, network, mobile and network devices.
• Perform the research on cyber security criteria, security systems, and validation procedures.
• To successfully manage meetings with various departments to fix specific vulnerability.
• Perform log analysis to detect and respond to security events.
• Manage and, where possible, automate security controls and reporting (vulnerability management, system hardening, logging and monitoring, system integrity, honeypots, source code reviews).
• Provide support to business stakeholders with security-related inquiries.
• Prepare reports for internal and external clients detailing the security issues, making recommendations and identifying solutions.

Security Engineer                                                                              August 2019 to December 2021

Gerab System Solution 

Office 402 Emaar Squire Burj Khalifa Down Town, Dubai

• Conduct Vulnerability Assessments of Network and Security Devices using various open source and commercial tools.
• Perform penetration testing on Clients infrastructure and vulnerability assessment of database servers.
• Effectively and thoroughly analyzing and testing cloud or web environments and applications continuously to find security flaws and working with other testers and engineers to validate those flaws.
• Port scanning Servers using Nmap and close all unnecessary ports to reduce attack surface.

Experience with Nessus NetCat, NMAP Backtrack, Metasploit, HPing, and similar tools set like OpenVas, Nikto.

• Moderate understanding of Linux scripting and python programing. 
• Researched and analyzed known hacker methodology, system exploits and vulnerabilities to support Red Team Assessment activities.
• Created written reports, detailing assessment findings and recommendations
• Performed host, network, and web application penetration tests.
• Found common web site security issues (XSS, CSRF, session fixation, SQL injection, information leakage, application logic etc.) across various platforms.
• Working independently and within a team environment.
• Responsible for Installation, maintains of IPS/IDS, Firewall, Anti-Virus, Anti-Spam, Antimalware, for maximum network protection.
• Hands-on experience with Windows/Linux/Mac OS environments.
• Installing and maintaining firewalls, establishing, and maintaining company-wide access policies to the internet.
• Analyze current level of monitoring and alerting within cloud-hosted infrastructure and environments and provide a gap analysis on log coverage.

Support Engineer (Network & Security)                                       July 2017 to August 2019

Gerab System Solution 

Office 402 Emaar Squire Burj Khalifa Down Town, Dubai

• Installation and setup of routers and switches and assisted with problem identification and resolution.
• Install, configure and maintain FortiGate and Sophos firewalls.
• Configure and manage LDAP User management with FortiGate.
• Configure Sophos and FortiGate firewall to authenticate users based on user identity, user group, session and PC-User Authentication.
• Configure IPSEC and SSL VPN with Palo-alto, Cisco ASA, Fortinet, Sophos and Router.
• Troubleshoot firewall issues using CLI and GUI.
• Responsible of Configuring FortiGate Firewalls, FortiClient S/W & High Availability-HA.
• Configuration of Cisco Meraki Devices, MX76 Firewall, MS120 Switches and MR33.
• Installing and configuring of Cisco & non-Cisco equipment's in IT architecture of an organization.
• Troubleshooting and maintaining the existing network system.
• Installation and setup of routers and switches and assisted with problem identification and resolution.
• Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering).
• Stacking and Racking of Cisco Switches and Routers.
• Installation, Configuration of CISCO Routers i.e. 26xx, 28 xx, 3650, 72 xx.
• Configuration of CISCO Wireless Access Points (AP).
• Configuring different Routing Protocols (RIP, IGRP, EIGRP OSPF and BGP).
• Configuring, Deployment and troubleshooting various networking devices like Access Points, Router 1800 HP 5400 and Switch Cisco 2960 HP 2930 and Access Points Aruba 305.207 and IP Phone.
• Monitoring & Reporting the Airwave Monitoring solution.

Associate Engineer                                                                           Feb 2015 to Jan 2017

Etisalat     

Dubai, UAE

• Management of VLANs, IP setup, VPN solutions, ACLs and MAC filtering as per 
• Install maintain and troubleshoot routers and modems and other networking devices.
• Works with infrastructure managers on plaining and implementing network upgrades and security. 
• Configuration of 4G and 3G on Cisco CGR 1120 and 1921 routers.
• Enable routing on Routers like OSPF, EIGRP, and BGP apply ACL PPP, VPN.
• Monitor and test network performance and provide network performance statistics and reports.
• Provide Level-1/2 support and troubleshooting to resolve issues.
• Deep understanding of networking protocols (e.g., IPSEC, BGP, OSPF, 802.11, QoS)
• Configuring and installing various network devices and services (e.g., routers, switches, firewalls, VPN).
• Managing and maintaining SonicWALL 4500 logs and reporting to senior level.
• Performance Monitoring, Alerting and Reporting of Network Devices, Servers and Firewalls.
• Monitoring Real-time Network Traffic indicating top talkers, top protocol and top end points.
• Monitor User activity through Solarwinds Log and Event Manager.
• Speaking with customers via email and phone for initial requirement capture.
• Remote support of on-site engineers and end users/customers during installation.
• Maintain Network performance on need basis.

IT Support Engineer                                                                  December 2012 to Jan 2015   

JACKY'S Group of Companies                                                           

Al Garhoud Dubai. UAE

• To provide system support to more than 200 users in branches and Outlets.
• Troubleshooting computers & problems (hardware & software) pertaining to Performance Tuning, Network Administration, Application Conflicts and System Bugs.
• Maintaining & troubleshooting office computers and notebooks.
• Attending users enquires and their complaints & providing quick resolution to the same.
• Provide preventive and corrective maintenance to onsite equipment covering hardware, operating systems and applications.
• Report any hardware faults highlighted by team members or users.
• Graphical and Scripted Installation of ESXi 5.0 server. 
• Administration of VMware Infrastructure using venter Server 5.5 through vSphere client.
• Creating Virtual Machines & Installing VMware Tools into VMs.
• Managing templates and creating of VM clones
• Administering & maintaining software & assembling computers & installing operating systems.
• Administrating & Maintaining Citrix on Citrix 4.5, hosting application on dumb terminals using Citrix, clearing user’s previous sessions and troubleshooting issues related to it. Installing, configuring & Troubleshooting of Wyse system Thin Client
• Ensuring maximum server uptime, taking all users backup on a SonicWALL CDP.
• Planning & designing servers for back up & recovery of database information through sonic wall CDP enterprise.
• Managing and maintaining SonicWALL 4500 and TZ 200 firewall.
• Monitoring and analyzing alarms in TZ 200 and 4500 series firewall. 
• Administrating & Maintaining Citrix Servers
• Configuring and managing TCP/IP address, Troubleshooting TCP/IP addressing.
• Designing and Configuring Active Directory, creating user accounts in active directory, adding computers and groups in active directory, Implementing and maintaining group policy.
• To Maintain, troubleshoot & Management of windows 2003 server.
• Planning a structured cabling for the network.
• Troubleshooting in Orion Live & Orion Retail.Security SME / Security Test Engineer                                      November 2021 to Present 

TATA Consultancy Services 

Internet City Dubai

• Perform intelligence-led security assessments on Internet-facing web applications
• Perform penetration tests across public/private network infrastructure assets
• Perform code aware penetration testing and security assessment of the iOS/Android mobile applications
• Perform intelligence-led security assessments on Internet-facing web applications
• Perform penetration tests across public/private network infrastructure assets
• Perform code aware penetration testing and security assessment of the iOS/Android mobile applications
• Perform security assessment of cloud environments (AWS/Azure/GCP/other) with automated tools, custom scripts, and configuration audits.
• Conducts penetration tests and vulnerability assessments against client infrastructure following a standard testing methodology using automated, ad-hoc, and manual testing techniques.
• Develop penetration testing strategy and test cases for complex enterprise applications
• Develop methodology documents and pre-engagement questionnaires for Penetration Testing and Vulnerability Assessment projects.
• Triage and prioritize application security vulnerabilities. Work with Engineering to schedule mitigations.
• Perform pen testing using various security tools like Burp, Nessus, Acunetix, Web Inspect, Core impact, Nmap, Metasploit, Kali Linux tools etc.
• Find the most efficient way to protect the system, networks, software, data and information systems against any potential attacks.
• Perform complex analysis to understand emerging threats, and continuously demonstrates awareness of current threat posture.
• Proven experience of Mobile platform security, threat models and mitigation techniques.
• Excellent knowledge and understanding of Mobile security testing methodology
• Knowledge of DevSecOps tooling and automation frameworks.
• Work with external vendors to perform penetration tests on network devices, operating systems, databases, and Applications as necessary.
• Triage and prioritize application security vulnerabilities. Work with Engineering to schedule mitigations.
• Implement automated, proactive security measures (e.g., SAST/DAST).
• Collaborate with external-facing security communications team when possible/feasible (e.g., blog posts, security vulnerability disclosures, etc.).
• Track bug bounty spends and MTTM (mean time to mitigation) of security vulnerabilities.
• Develop internal AppSec review processes.
• Develop Secure SDLC process and communicate process to Engineering.
• Conduct vulnerability assessment, pen testing and security checks of various application and network assets. Knowledge of web, network, mobile and network devices.
• Perform the research on cyber security criteria, security systems, and validation procedures.
• To successfully manage meetings with various departments to fix specific vulnerability.
• Perform log analysis to detect and respond to security events.
• Manage and, where possible, automate security controls and reporting (vulnerability management, system hardening, logging and monitoring, system integrity, honeypots, source code reviews).
• Provide support to business stakeholders with security-related inquiries.
• Prepare reports for internal and external clients detailing the security issues, making recommendations and identifying solutions.

Security Engineer                                                                              August 2019 to December 2021

Gerab System Solution 

Office 402 Emaar Squire Burj Khalifa Down Town, Dubai

• Conduct Vulnerability Assessments of Network and Security Devices using various open source and commercial tools.
• Perform penetration testing on Clients infrastructure and vulnerability assessment of database servers.
• Effectively and thoroughly analyzing and testing cloud or web environments and applications continuously to find security flaws and working with other testers and engineers to validate those flaws.
• Port scanning Servers using Nmap and close all unnecessary ports to reduce attack surface.

Experience with Nessus NetCat, NMAP Backtrack, Metasploit, HPing, and similar tools set like OpenVas, Nikto.

• Moderate understanding of Linux scripting and python programing. 
• Researched and analyzed known hacker methodology, system exploits and vulnerabilities to support Red Team Assessment activities.
• Created written reports, detailing assessment findings and recommendations
• Performed host, network, and web application penetration tests.
• Found common web site security issues (XSS, CSRF, session fixation, SQL injection, information leakage, application logic etc.) across various platforms.
• Working independently and within a team environment.
• Responsible for Installation, maintains of IPS/IDS, Firewall, Anti-Virus, Anti-Spam, Antimalware, for maximum network protection.
• Hands-on experience with Windows/Linux/Mac OS environments.
• Installing and maintaining firewalls, establishing, and maintaining company-wide access policies to the internet.
• Analyze current level of monitoring and alerting within cloud-hosted infrastructure and environments and provide a gap analysis on log coverage.

Support Engineer (Network & Security)                                       July 2017 to August 2019

Gerab System Solution 

Office 402 Emaar Squire Burj Khalifa Down Town, Dubai

• Installation and setup of routers and switches and assisted with problem identification and resolution.
• Install, configure and maintain FortiGate and Sophos firewalls.
• Configure and manage LDAP User management with FortiGate.
• Configure Sophos and FortiGate firewall to authenticate users based on user identity, user group, session and PC-User Authentication.
• Configure IPSEC and SSL VPN with Palo-alto, Cisco ASA, Fortinet, Sophos and Router.
• Troubleshoot firewall issues using CLI and GUI.
• Responsible of Configuring FortiGate Firewalls, FortiClient S/W & High Availability-HA.
• Configuration of Cisco Meraki Devices, MX76 Firewall, MS120 Switches and MR33.
• Installing and configuring of Cisco & non-Cisco equipment's in IT architecture of an organization.
• Troubleshooting and maintaining the existing network system.
• Installation and setup of routers and switches and assisted with problem identification and resolution.
• Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering).
• Stacking and Racking of Cisco Switches and Routers.
• Installation, Configuration of CISCO Routers i.e. 26xx, 28 xx, 3650, 72 xx.
• Configuration of CISCO Wireless Access Points (AP).
• Configuring different Routing Protocols (RIP, IGRP, EIGRP OSPF and BGP).
• Configuring, Deployment and troubleshooting various networking devices like Access Points, Router 1800 HP 5400 and Switch Cisco 2960 HP 2930 and Access Points Aruba 305.207 and IP Phone.
• Monitoring & Reporting the Airwave Monitoring solution.

Associate Engineer                                                                           Feb 2015 to Jan 2017

Etisalat     

Dubai, UAE

• Management of VLANs, IP setup, VPN solutions, ACLs and MAC filtering as per 
• Install maintain and troubleshoot routers and modems and other networking devices.
• Works with infrastructure managers on plaining and implementing network upgrades and security. 
• Configuration of 4G and 3G on Cisco CGR 1120 and 1921 routers.
• Enable routing on Routers like OSPF, EIGRP, and BGP apply ACL PPP, VPN.
• Monitor and test network performance and provide network performance statistics and reports.
• Provide Level-1/2 support and troubleshooting to resolve issues.
• Deep understanding of networking protocols (e.g., IPSEC, BGP, OSPF, 802.11, QoS)
• Configuring and installing various network devices and services (e.g., routers, switches, firewalls, VPN).
• Managing and maintaining SonicWALL 4500 logs and reporting to senior level.
• Performance Monitoring, Alerting and Reporting of Network Devices, Servers and Firewalls.
• Monitoring Real-time Network Traffic indicating top talkers, top protocol and top end points.
• Monitor User activity through Solarwinds Log and Event Manager.
• Speaking with customers via email and phone for initial requirement capture.
• Remote support of on-site engineers and end users/customers during installation.
• Maintain Network performance on need basis.

IT Support Engineer                                                                  December 2012 to Jan 2015   

JACKY'S Group of Companies                                                           

Al Garhoud Dubai. UAE

• To provide system support to more than 200 users in branches and Outlets.
• Troubleshooting computers & problems (hardware & software) pertaining to Performance Tuning, Network Administration, Application Conflicts and System Bugs.
• Maintaining & troubleshooting office computers and notebooks.
• Attending users enquires and their complaints & providing quick resolution to the same.
• Provide preventive and corrective maintenance to onsite equipment covering hardware, operating systems and applications.
• Report any hardware faults highlighted by team members or users.
• Graphical and Scripted Installation of ESXi 5.0 server. 
• Administration of VMware Infrastructure using venter Server 5.5 through vSphere client.
• Creating Virtual Machines & Installing VMware Tools into VMs.
• Managing templates and creating of VM clones
• Administering & maintaining software & assembling computers & installing operating systems.
• Administrating & Maintaining Citrix on Citrix 4.5, hosting application on dumb terminals using Citrix, clearing user’s previous sessions and troubleshooting issues related to it. Installing, configuring & Troubleshooting of Wyse system Thin Client
• Ensuring maximum server uptime, taking all users backup on a SonicWALL CDP.
• Planning & designing servers for back up & recovery of database information through sonic wall CDP enterprise.
• Managing and maintaining SonicWALL 4500 and TZ 200 firewall.
• Monitoring and analyzing alarms in TZ 200 and 4500 series firewall. 
• Administrating & Maintaining Citrix Servers
• Configuring and managing TCP/IP address, Troubleshooting TCP/IP addressing.
• Designing and Configuring Active Directory, creating user accounts in active directory, adding computers and groups in active directory, Implementing and maintaining group policy.
• To Maintain, troubleshoot & Management of windows 2003 server.
• Planning a structured cabling for the network.
• Troubleshooting in Orion Live & Orion Retail.