ABOUT ME

As a Senior Consultant, I leverage my

** ***** ** ********** ** IT

Infrastructure, Data Protection,

Information Security, IT Project

Management, IT Auditing,

Cybersecurity Auditing, and

conducting both external and internal

audits across various departments,

including IT General Controls (ITGC)

Audits, Internal Audits for departments

such as Procurement, Human

Resources, and Information

Technology, Call Center Audits,

Financial and Banking Audits,

Application Audits, and Technical

Support within the accounting and

real estate sectors, I possess a

comprehensive skill set.

My expertise lies in IT auditing,

strategic planning, executing, and

successfully delivering IT projects. I

specialize in the implementation of

Data Protection measures, ISO 27001

Information Security Management

System (ISMS) implementation,

safeguarding IT assets, managing

Infrastructure Security, and

meticulously reviewing access

controls, application controls, as well

as IT general and application controls.

CONTACT

009**-***-******

ad0pc5@r.postjobfree.com

Riyadh, Saudi Arabia

https://sa.linkedin.com/in/muhamma

dshakeelkhilji

MUHAMMAD

SHAKEEL KHILJI

CISA, CISM, COMPTIA SECURITY+, CCNP

SENIOR CONSULTANT – IT RISK & ADVISORY

WORK EXPERIENCE

RSM Saudi Arabia, Senior Consultant – IT Risk & Advisory 11/2021 – Present Riyadh, Saudi Arabia

Achievements/Tasks

Conducting audits across a diverse range of industries, including finance, healthcare, food, government, banking, aviation, leasing, contracting, manufacturing, and Oil & Gas, among others.

Conduct Procurement & HR Department Internal Audit.

Reviewing Information Security Policies, Procedures, Standards, and Guidelines based on ISO 27001 standards for

organizations.

Conducting cybersecurity review and security testing with core focuses on Critical Business Applications, Processes, and IT network Infrastructure.

Develop and write policies and procedures for clients.

Developing a critical understanding of digital security and applying ethical hacking techniques to perform a security audit of systems and networks.

Conducting a risk assessment for IT operations, cybersecurity, and ERP in accordance with both local and international standards and frameworks, such as CIS, ISO, COBIT, NCA (ECC, CSCC, Telework, Social Media, Cloud Services), and more.

Conduct a thorough assessment of security configurations for critical network devices, end-user computing systems, servers, proxies, boundary defense solutions, DLP (Data Loss Prevention), VPN (Virtual Private Network), MFA (Multi-Factor Authentication), antimalware solutions, backup systems, encryption protocols, and payment gateways.

IT Audit - documentation and testing IT General and

Application controls to meet ISO and ITIL framework.

IT GAP Analysis and Recommendation & IT Policy and Procedures – Writing and Implementing for Clients.

Mapping of SAMA CSF framework & NCA ECC Guidelines with organization-wide procedures and policies.

Conduct Application Internal Audit for financial and banking sectors.

Auditing and Gap Assessment on Government Cyber Security Frameworks and Guidelines of KSA including SAMA Cyber Security Framework, NCA ECC, IT Governance, CST, CMA & Tadawul Cybersecurity Control Frameworks.

Perform ITGC testing as part of external audits.

Providing IT Security advice and recommendations for major IT projects.

Development & Implement support for ISO 27001 & Business Continuity Management.

SKILLS

Internal Audits

External Audits

IT Auditing

Cybersecurity Audits

Financial Reporting

Management

Data Privacy

Risk Assessment

The Ability to Work Well Under Pressure

Interpersonal Skills

Routers & Switches

Cisco Technologies

Network Administration

Analytical and problem-solving

System Administration

Data Center

Network Security

Network Design

Wireless Networking

Virtual Private Network (VPN)

Analytical Skills

Project Management

Budgeting

Organization and Time Management

IT Strategy

Windows Server

Active Directory

Microsoft Exchange

Microsoft Products

Application Audit

Team Leadership

Troubleshooting

Problem-Solving

Decision-Making

Enterprise Network Design

Policies & Procedures

Procurement

EDUCATION

Bachelor of Commerce

University of Sindh

Two Years Diploma in Computer

Science

Grace Institute of Technology

CERTIFICATES

Certified Information Security Manager

(CISM)

ISACA

Certified Information Systems Auditor

(CISA)

ISACA

CyberArk certified Trustee

CyberArk

Cisco Certified Network Associate

(CCNA Security)

Cisco Systems Certified

Conduct core Network security audits covering governance, network security controls, capacity, availability, and resilience.

Perform post-implementation review to manage fixes and corrections.

Audit reviews on Data Governance (Saudi NDMO).

IRSAA Business Solutions, IT Manager and IT Auditor 02/2018 – 11/2021 Riyadh, Saudi Arabia

Achievements/Tasks

In the realm of IT Auditing, I engage in the documentation and assessment of IT General and Application controls, aligning them with ISO and ITIL frameworks.

Conducting IT GAP Analyses and Formulating

Recommendations, as well as Crafting and Enforcing IT Policies and Procedures for our clients.

Verify compliance with ISO 27001, CIS, and the guidelines set forth by the National Cybersecurity Agency of Saudi Arabia

(KSA).

Creating and Deploying Network Infrastructure, advanced switching, IP Telephony Solutions, Time Attendance Management Systems, and Point-to-Point Connectivity for IRSAA clients.

Conduct a call center audit of Kafaya.

Formulate project blueprints, develop and execute solutions, and provide monthly reports and guidance for clients under managed services.

Assessment of Business Continuity Management System.

Create and maintain comprehensive documentation as it relates to server and network topology, equipment, and configuration(s).

Designed and implemented point-to-point connectivity for 2 branches for IRSSA clients.

Re-design and implementation of network infrastructure and Cisco IP telephony for clients.

Identify, diagnose, and resolve network problems including network connectivity, traffic utilization, etc. using available network tools in a timely fashion.

Design and Implement Sophos Firewall XG135, SG115, SG210 for our Clients.

IRSAA Business Solutions, Network Engineer

01/2017 – 02/2018 Riyadh, Saudi Arabia

Achievements/Tasks

Administrating and maintaining Active Directory and other Microsoft services.

Network Documentation with Visio diagrams, PRTG, Spice works& LAN sweeper.

Made IT service department all operations centralized

Deployed PRTG for centralized monitoring of infrastructure

Planned and deployed QNAP NAS solution with high redundancy and availability

Design, deploy, and Manage all client network Projects

Backup SQL data for servers.

STC Channels, Network Specialist

02/2010 – 01/2017 Khobar, Saudi Arabia

Achievements/Tasks

Ensure that a company’s computer network remains

Functional on an optimal level

Maximized customer operational performance by resolving IT issues

Maintained network performance on a need basis

Troubleshooting network problems, diagnosing and solving hardware/software faults

Installing, configuring, and troubleshooting network and IP Printers

Cisco Certified Network Professional

(CCNP Routing

& Switching)

Cisco Systems Certified

Cisco Certified Network Associate

(CCNA-Routing &

Switching)

Cisco Systems Certified

Big Data Foundations – Level 2

IBM

Hadoop Foundations – Level 1

IBM

Spark – Level 1

IBM

Spark Overview for Scala Analytics

IBM

Data Science Foundations – Level 1

IBM

Big Data Foundations – Level 1

IBM

Fundamentals of Network Security

Alison

Comp TIA Security +

New Horizons Learning Center, Riyadh

PROJECTS

IT Policy and Procedures - Writing and

Implementing

Work as a Project Manager and Policy

Writer for “Multiple clients"

IT Audit - Food industry companies,

Banks, Financial Institutions, Medical

Institutions, and Multiple other clients

Working as IT Audit Consultant.

Methodology of Audit ISO 27001, ITIL,

SAMA, CMA, Tadawul, NCA, and CITC

regulatory framework

Design and Manage IT Service

Work as a Project Manager, designing

and Implementing Manage Service

for IRSAA Clients, “Multiple clients"

IT GAP Analysis and Recommendation

(Part of IT Audit)

Work as a Project Manager and

Completed Assessments and submit

report for IT GAP Analysis to “Multiple

clients"

Network Design and Implementation

Worked as a Project Manager and

designed 28 data centers and

completed advanced switching and

Routing for L&T & Ma'aden Gold Mine

CO

LANGUAGES

Urdu

Native or Bilingual Proficiency

English

Full Professional Proficiency

Al Mutlaq Group, Network Administrator

01/2008 – 02/2010 Khobar, Saudi Arabia

Achievements/Tasks

Installation & Maintains access list & firewall ASA 5500 Series.

Create and Manage Active Directory Server in windows server 2003 & 2000.

Installation and Administration of Cisco 2800 Series Routers.

Planning and create user accounts and policies, rights

Installing, supporting and maintaining pc hardware and software.

Designing and implementation of Leased lines like Modem, and Wireless Broad Band.

Installation of ADSL modems, routers.

Designing and implementation of Wireless LANs.

Troubleshooting system, printers and network problems and diagnosing and solving hardware/software faults.

Manage the resolution of all IT service Related user problems and queries.

Installing, configuring and troubleshooting Local, network and IP Printers.

Metro Garments (Pvt.) Ltd., System Administrator & IT Support Engineer 12/2005 – 06/2007 Kuala Lumpur, Malaysia

Achievements/Tasks

Installation and Administration of Cisco 1700, 2800, and 3800 Series Routers

Installing, supporting, and maintaining pc hardware and software

Designing and implementing of Leased lines like Frame Relay, PPP, and Wireless Broad Band Establishing a Dedicated Frame Relay Connection

and control Traffic Flow

Configuring Cisco Switches with Cisco IOS and Set Commands

Configuring VLANs in Cisco Switches with Inter-VLANs routing with VTP (VLAN Trucking Protocol) Installation of ADSL modems, routers

Designing and implementation of Wireless LANs Manage the resolution of all IT service user problems and queries Sine International (Pvt.) Ltd., Technical Support Engineer 03/2003 – 12/2005 Karachi, Pakistan

Achievements/Tasks

Installation configuration, and tuning integration of MS Windows 2000 Server & Windows 2000 Professional / Windows XP Professional.

Design and implementation of IP addressing scheme.

Planning and creating user accounts policies, and rights.

Installing, configuring, and troubleshooting Local, Network Printers.

Implement Network connectivity and managing clients

Configuring of Switches for Star Topology and LAN Network.

Designed the LAN by a standard structured cabling method using CAT5 cable, panel board, patch panels, hubs & switch.

Installed and Configured Active Directory, DHCP, DNS, Exchange Server, and connection of remote sites with Cisco Routers.

Troubleshooting system, printer, and network problems and diagnosing and solving hardware/software faults.

Finding solutions to problems is it through creating a desktop shortcut or fixing a major fault on the operating system.

Replacing parts as required.

Providing support documentation, including procedural documentation.

Setting up new users.

Testing/evaluating new technology.

Contact this candidate