Dr Hafiz Yasar Lateef

Successfully designed company-wide policies to bring operations in line with Center for Internet Security (CIS), ISO27001, ACSC Essential 8, NSW CSP & NIST standards.
Developed and maintained efficient incident response protocols to mitigate damage and liability during security breaches.
Reviewed violations of computer security procedures and developed mitigation plans.
Selected and installed company-wide Intrusion detection & prevention systems.
Created cybersecurity best practice communications to educate staff against known threats and potential vectors of attack.
Collaborated with third-party payment card industry (PCI) compliance partners.

Skilled at working independently and collaboratively in a team environment.

Proved successful working within tight deadlines and a fast-paced environment.

Used critical thinking to break down problems, evaluate solutions and make decisions.

Conducted Lectures and Hands-on Labs for state-of-the-art Cyber Security experiments.
Prepared comprehensive content for Cyber Security Awareness
Successfully organized workshops and lectures for Cyber Risk Management.

• Successfully designed company-wide policies to bring operations in line with NIST Cyber and Risk Management Framework, Center for Internet Security (CIS) standards, NSW Cyber Security Policy, ACSC Essential 8, ISO 27001:2022 and ACSC ISM.
• Reviewed non-conformities of ISO 27001:2022 and developed mitigation plans.
• Successfully implemented cyber risk mitigation strategies for legacy systems and incorporated them in Enterprise Risk Management.
• Reviewed violations of computer security procedures and developed mitigation plans.
• Spearheaded Bring Your Own Device & Endpoint device protection programs during COVID-19, defining necessary security parameters and designing complementary security deployments.
• Developed business continuity, disaster recovery, cyber program management and Crisis Management plans.
• Authored comprehensive security incident reports, highlighting breaches, vulnerabilities and remedial measures.
• Performed risk analyses to identify appropriate security countermeasures.
• Coordinated with management teams to plan, develop, align and execute strategies that would meet client's vision, mission and purpose.
• Analyzed architecture design, scoping, implementation, testing and deployment needs to define project requirements.
• Led and assisted technical upgrade projects for clients by working and coordinating with consultants and developers for integrations.
• Guided implementation of company-wide enterprise security strategy for network and hardware, disaster recovery, data protection and endpoint protection.
• Coordinated cybersecurity projects, including defining scope, managing milestones and maintaining strong relationships with all stakeholders.
• Represented company's technical security interests to partners to provide bi-directional flow of technical information and best practices in information security.
• Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk.
• Successfully lead and participated with teams that performed vulnerability assessments, penetration tests, social engineering exercises, and other cyber security projects for clients.
• Provided consultation and technical services on all aspects of information security.
• Performed risk and vulnerability assessments and provided results and recommendations to senior management.
• Managed relationships with third-party intrusion detection system providers.
• Selected and installed company-wide Intrusion detection & prevention systems.
• Analyzed network security and current infrastructure to assess areas in need of improvement and develop solutions.
• Guided implementation of company-wide enterprise security strategy for network and hardware, disaster recovery, data protection and endpoint protection.
• Developed organisational and Government policy compliance procedures.
• Researched, analysed and reviewed complex policy issues, identified emerging issues, developed evidence based options, and recommended solutions to resolve problems and mitigate risks.
• Operational ownership of cyber security management and the ISMS.
• Ensured cyber security policy alignment with implementation and delivery of new systems, technologies, vendor services, cyber security standards and best practices.
• Implemented and maintained a program of regular security audits to identify and remediate vulnerabilities in the ICT and associated process environment.
• Reported on audit outcomes, documented and escalated ICT risks accordingly to ensure delivery of a high quality and consistent service is maintained to meet specific needs and strategic objectives of HNELHD.
• Created cybersecurity best practice communications to educate staff against known threats and potential vectors of attack.

• Conducted security audits to identify vulnerabilities.
• Directed in-house cyber security auditing program using ISO 27001 to detect flaws and weaknesses in IT systems.
• Researched and developed new computer forensic tools.
• Performed risk analyses to identify appropriate security countermeasures.
• Provided consultation and technical services on all aspects of information security.
• Performed risk and vulnerability assessments and provided results and recommendations to senior management.
• Managed quality assurance program, including on-site evaluations, internal audits and customer surveys.
• Directed functions involving strategic planning and implementation; program development, implementation and coordination.
• Developed and implemented corrective actions to bring business areas in line with ISO27001 standards.

• Created state-of-the-art syllabus, lab experiments and instructional plans for cybersecurity class sessions in accordance with industrial data standards.
• I've taught comprehensive cybersecurity & Data Analytic Courses both at under-graduate & post-graduate level.

• I've successfully trained students about Big Data data analytics projects using Hadoop, Microsoft SQL data lake & No-SQL databases.
• Created cybersecurity best practice communications to educate students against known threats and potential vectors of attack.
• I've effectively delivered a series of lectures for data analytics, Machine Learning, Computational Statistics, NLP, predictive analytics, prescriptive analytics, data warehouse design and Big Data
• Collaborated with course coordinator to create dynamic, ongoing curriculum development and instruction improvement program

• Taught Cybersecurity & Enterprise Architecture (EA) courses to Bachelor of IT students by employing various learning styles and abilities.
• Evaluated and revised lesson plans and course content to facilitate and moderate classroom discussions and student centered learning.
• Planned lectures based on targeted learning outcomes as assigned by organizational leadership.
• Developed semester outlines and instructional plans for each class session to comply with stated course objectives.

• I've successfully designed cybersecurity incident response & compliance policies for critical urban services and infrastructure at Bundaberg regional council, Queensland, Australia.
• Ensured the integrity and confidentiality of sensitive data.
• Provided relevant cybersecurity and IT security subject matter advice, findings, and recommendations to executive management.
• I've developed Data-driven Economic Development and Civic Engagement policies.
• I've successfully managed tenders for secured data-driven IoT & Smart City vertical applications such as Smart Water Meters, CCTV Video Analytics, Smart street lighting etc.
• I've successfully prepared and submitted funding applications to Federal Government Smart Cities Suburbs program in collaboration with IT & Economic development teams.
• Tender Management & documentation of RFP, RFI & RFQ for multi-million dollars cyber-safe Smart city projects at Bundaberg city council, Queensland, Australia.
• Vendor Management & stakeholder management for numerous Smart city projects at Bundaberg city council, Queensland, Australia.

• I've taught diverse Internet of Things (IoT), Cybersecurity, Networking, Data Science & Machine to Machine communication Courses to IT Students.
• Instructed students using lectures, discussions and demonstrations in IoT & Data Analytics.
• Oversaw graduate student projects and advised on focus, methodology and report generation to meet preset standards.

• Designed data-driven smart home energy management applications using IBM BlueMix IoT cloud platform, WiFi/Zigbee sensor devices & Data Science tools.
• Designed energy efficient user association and base station sleep policies for Fifth Generation (5G) dense heterogeneous networks powered by renewable energy sources.
• Designed quality of service aware traffic offloading policies for green cellular access networks in collaboration with Politecnico Di Torino University, Italy.
• Successfully Published magazines, books, conference papers and journals for cutting-edge data science, IoT, 5G & Smart City applications.

• Published journals & conferences for latest innovation in 4G telecom industry.
• Presented tutorials and conducted workshops on cutting-edge ICT technologies