ABOUT ME
As a Senior Consultant, I leverage my
Infrastructure, Data Protection,
Information Security, IT Project
Management, IT Auditing,
Cybersecurity Auditing, and
conducting both external and internal
audits across various departments,
including IT General Controls (ITGC)
Audits, Internal Audits for departments
such as Procurement, Human
Resources, and Information
Technology, Call Center Audits,
Financial and Banking Audits,
Application Audits, and Technical
Support within the accounting and
real estate sectors, I possess a
comprehensive skill set.
My expertise lies in IT auditing,
strategic planning, executing, and
successfully delivering IT projects. I
specialize in the implementation of
Data Protection measures, ISO 27001
Information Security Management
System (ISMS) implementation,
safeguarding IT assets, managing
Infrastructure Security, and
meticulously reviewing access
controls, application controls, as well
as IT general and application controls.
CONTACT
ad0pc5@r.postjobfree.com
Riyadh, Saudi Arabia
https://sa.linkedin.com/in/muhamma
dshakeelkhilji
MUHAMMAD
SHAKEEL KHILJI
CISA, CISM, COMPTIA SECURITY+, CCNP
SENIOR CONSULTANT – IT RISK & ADVISORY
WORK EXPERIENCE
RSM Saudi Arabia, Senior Consultant – IT Risk & Advisory 11/2021 – Present Riyadh, Saudi Arabia
Achievements/Tasks
Conducting audits across a diverse range of industries, including finance, healthcare, food, government, banking, aviation, leasing, contracting, manufacturing, and Oil & Gas, among others.
Conduct Procurement & HR Department Internal Audit.
Reviewing Information Security Policies, Procedures, Standards, and Guidelines based on ISO 27001 standards for
organizations.
Conducting cybersecurity review and security testing with core focuses on Critical Business Applications, Processes, and IT network Infrastructure.
Develop and write policies and procedures for clients.
Developing a critical understanding of digital security and applying ethical hacking techniques to perform a security audit of systems and networks.
Conducting a risk assessment for IT operations, cybersecurity, and ERP in accordance with both local and international standards and frameworks, such as CIS, ISO, COBIT, NCA (ECC, CSCC, Telework, Social Media, Cloud Services), and more.
Conduct a thorough assessment of security configurations for critical network devices, end-user computing systems, servers, proxies, boundary defense solutions, DLP (Data Loss Prevention), VPN (Virtual Private Network), MFA (Multi-Factor Authentication), antimalware solutions, backup systems, encryption protocols, and payment gateways.
IT Audit - documentation and testing IT General and
Application controls to meet ISO and ITIL framework.
IT GAP Analysis and Recommendation & IT Policy and Procedures – Writing and Implementing for Clients.
Mapping of SAMA CSF framework & NCA ECC Guidelines with organization-wide procedures and policies.
Conduct Application Internal Audit for financial and banking sectors.
Auditing and Gap Assessment on Government Cyber Security Frameworks and Guidelines of KSA including SAMA Cyber Security Framework, NCA ECC, IT Governance, CST, CMA & Tadawul Cybersecurity Control Frameworks.
Perform ITGC testing as part of external audits.
Providing IT Security advice and recommendations for major IT projects.
Development & Implement support for ISO 27001 & Business Continuity Management.
SKILLS
Internal Audits
External Audits
IT Auditing
Cybersecurity Audits
Financial Reporting
Management
Data Privacy
Risk Assessment
The Ability to Work Well Under Pressure
Interpersonal Skills
Routers & Switches
Cisco Technologies
Network Administration
Analytical and problem-solving
System Administration
Data Center
Network Security
Network Design
Wireless Networking
Virtual Private Network (VPN)
Analytical Skills
Project Management
Budgeting
Organization and Time Management
IT Strategy
Windows Server
Active Directory
Microsoft Exchange
Microsoft Products
Application Audit
Team Leadership
Troubleshooting
Problem-Solving
Decision-Making
Enterprise Network Design
Policies & Procedures
Procurement
EDUCATION
Bachelor of Commerce
University of Sindh
Two Years Diploma in Computer
Science
Grace Institute of Technology
CERTIFICATES
Certified Information Security Manager
(CISM)
ISACA
Certified Information Systems Auditor
(CISA)
ISACA
CyberArk certified Trustee
CyberArk
Cisco Certified Network Associate
(CCNA Security)
Cisco Systems Certified
Conduct core Network security audits covering governance, network security controls, capacity, availability, and resilience.
Perform post-implementation review to manage fixes and corrections.
Audit reviews on Data Governance (Saudi NDMO).
IRSAA Business Solutions, IT Manager and IT Auditor 02/2018 – 11/2021 Riyadh, Saudi Arabia
Achievements/Tasks
In the realm of IT Auditing, I engage in the documentation and assessment of IT General and Application controls, aligning them with ISO and ITIL frameworks.
Conducting IT GAP Analyses and Formulating
Recommendations, as well as Crafting and Enforcing IT Policies and Procedures for our clients.
Verify compliance with ISO 27001, CIS, and the guidelines set forth by the National Cybersecurity Agency of Saudi Arabia
(KSA).
Creating and Deploying Network Infrastructure, advanced switching, IP Telephony Solutions, Time Attendance Management Systems, and Point-to-Point Connectivity for IRSAA clients.
Conduct a call center audit of Kafaya.
Formulate project blueprints, develop and execute solutions, and provide monthly reports and guidance for clients under managed services.
Assessment of Business Continuity Management System.
Create and maintain comprehensive documentation as it relates to server and network topology, equipment, and configuration(s).
Designed and implemented point-to-point connectivity for 2 branches for IRSSA clients.
Re-design and implementation of network infrastructure and Cisco IP telephony for clients.
Identify, diagnose, and resolve network problems including network connectivity, traffic utilization, etc. using available network tools in a timely fashion.
Design and Implement Sophos Firewall XG135, SG115, SG210 for our Clients.
IRSAA Business Solutions, Network Engineer
01/2017 – 02/2018 Riyadh, Saudi Arabia
Achievements/Tasks
Administrating and maintaining Active Directory and other Microsoft services.
Network Documentation with Visio diagrams, PRTG, Spice works& LAN sweeper.
Made IT service department all operations centralized
Deployed PRTG for centralized monitoring of infrastructure
Planned and deployed QNAP NAS solution with high redundancy and availability
Design, deploy, and Manage all client network Projects
Backup SQL data for servers.
STC Channels, Network Specialist
02/2010 – 01/2017 Khobar, Saudi Arabia
Achievements/Tasks
Ensure that a company’s computer network remains
Functional on an optimal level
Maximized customer operational performance by resolving IT issues
Maintained network performance on a need basis
Troubleshooting network problems, diagnosing and solving hardware/software faults
Installing, configuring, and troubleshooting network and IP Printers
Cisco Certified Network Professional
(CCNP Routing
& Switching)
Cisco Systems Certified
Cisco Certified Network Associate
(CCNA-Routing &
Switching)
Cisco Systems Certified
Big Data Foundations – Level 2
IBM
Hadoop Foundations – Level 1
IBM
Spark – Level 1
IBM
Spark Overview for Scala Analytics
IBM
Data Science Foundations – Level 1
IBM
Big Data Foundations – Level 1
IBM
Fundamentals of Network Security
Alison
Comp TIA Security +
New Horizons Learning Center, Riyadh
PROJECTS
IT Policy and Procedures - Writing and
Implementing
Work as a Project Manager and Policy
Writer for “Multiple clients"
IT Audit - Food industry companies,
Banks, Financial Institutions, Medical
Institutions, and Multiple other clients
Working as IT Audit Consultant.
Methodology of Audit ISO 27001, ITIL,
SAMA, CMA, Tadawul, NCA, and CITC
regulatory framework
Design and Manage IT Service
Work as a Project Manager, designing
and Implementing Manage Service
for IRSAA Clients, “Multiple clients"
IT GAP Analysis and Recommendation
(Part of IT Audit)
Work as a Project Manager and
Completed Assessments and submit
report for IT GAP Analysis to “Multiple
clients"
Network Design and Implementation
Worked as a Project Manager and
designed 28 data centers and
completed advanced switching and
Routing for L&T & Ma'aden Gold Mine
CO
LANGUAGES
Urdu
Native or Bilingual Proficiency
English
Full Professional Proficiency
Al Mutlaq Group, Network Administrator
01/2008 – 02/2010 Khobar, Saudi Arabia
Achievements/Tasks
Installation & Maintains access list & firewall ASA 5500 Series.
Create and Manage Active Directory Server in windows server 2003 & 2000.
Installation and Administration of Cisco 2800 Series Routers.
Planning and create user accounts and policies, rights
Installing, supporting and maintaining pc hardware and software.
Designing and implementation of Leased lines like Modem, and Wireless Broad Band.
Installation of ADSL modems, routers.
Designing and implementation of Wireless LANs.
Troubleshooting system, printers and network problems and diagnosing and solving hardware/software faults.
Manage the resolution of all IT service Related user problems and queries.
Installing, configuring and troubleshooting Local, network and IP Printers.
Metro Garments (Pvt.) Ltd., System Administrator & IT Support Engineer 12/2005 – 06/2007 Kuala Lumpur, Malaysia
Achievements/Tasks
Installation and Administration of Cisco 1700, 2800, and 3800 Series Routers
Installing, supporting, and maintaining pc hardware and software
Designing and implementing of Leased lines like Frame Relay, PPP, and Wireless Broad Band Establishing a Dedicated Frame Relay Connection
and control Traffic Flow
Configuring Cisco Switches with Cisco IOS and Set Commands
Configuring VLANs in Cisco Switches with Inter-VLANs routing with VTP (VLAN Trucking Protocol) Installation of ADSL modems, routers
Designing and implementation of Wireless LANs Manage the resolution of all IT service user problems and queries Sine International (Pvt.) Ltd., Technical Support Engineer 03/2003 – 12/2005 Karachi, Pakistan
Achievements/Tasks
Installation configuration, and tuning integration of MS Windows 2000 Server & Windows 2000 Professional / Windows XP Professional.
Design and implementation of IP addressing scheme.
Planning and creating user accounts policies, and rights.
Installing, configuring, and troubleshooting Local, Network Printers.
Implement Network connectivity and managing clients
Configuring of Switches for Star Topology and LAN Network.
Designed the LAN by a standard structured cabling method using CAT5 cable, panel board, patch panels, hubs & switch.
Installed and Configured Active Directory, DHCP, DNS, Exchange Server, and connection of remote sites with Cisco Routers.
Troubleshooting system, printer, and network problems and diagnosing and solving hardware/software faults.
Finding solutions to problems is it through creating a desktop shortcut or fixing a major fault on the operating system.
Replacing parts as required.
Providing support documentation, including procedural documentation.
Setting up new users.
Testing/evaluating new technology.