NITASHA KHAN
Adelaide,SA
Summary
Dynamic Digital Forensics and cybersecurity professional with extensive experience at KPMG & Deloitte Pakistan, specializing in digital forensics and risk management. Proficient in vulnerability assessment tools like Nessus and skilled in client communication. Proven track record in enhancing security protocols and delivering tailored solutions, ensuring compliance with international standards.
Overview
7
7
years of professional experience
Work History
ASSISTANT BROKER –FINANCE & ACCOUNTING
EZ Finance & Accounting
04.2021 - Current
- My current role is a work from home opportunity involves assisting Broker with preparation of Loan Documents, assessment of Client Financials and preparing Loan Application on behalf of broker.
- It also includes assisting brokers in communication with Banks and Private Lenders.
- Understanding client needs and providing expert advice on mortgage products, interest rates and loan structures.
- Keeping detailed and accurate client file notes and being a main point of contact for the client for enquiries relating to finance advice.
SENIOR ASSOCIATE – DIGITAL FORENSICS & CYBERSECURITY
KPMG PAKISTAN
01.2019 - 01.2020
- My role in KPMG includes everything from bolstering controls and helping ensure compliance to conduct meticulous investigations and developing integrated solutions.
- I have worked with a team of 40 Information Security personnel including advisors, subject matter experts, Consultants in respect to (Information Risk Management, Security Transformation & Integration, Fraud Risk, Digital Forensic, Information & Cyber Defense and Incident Response).
- Aided in Cyber readiness, maturity assessment & post incident response.
- Implementation of Digital forensics tools and policies and procedures during investigation to avoid any tempering with the evidence.
- Implementing IT security, performing Vulnerabilities Assessment/Penetration testing.
- Performing Network Configuration review of network devices.
- Assisting Security assessment of PCI-DSS PCI Readiness and Telecommunication security audit.
- Performing Assessment of Presence over internet for clients.
- Assisting in process and system reviews and improvement exercises.
- Advising clients and proposing the best possible technical solutions which both fit in with the customer environment and that might be integrated with other Cyber Risk Advisory services.
- Tracking and managing remediation efforts of identified risks and vulnerabilities on client side.
- Serving as a facilitator and liaison between the business lines and the technology teams that support them for the successful mitigation of information security risks.
- Assisting in a range of independent security reviews on technology projects, suppliers and end user computing.
- Vulnerability management within secure software development lifecycle (SSDLC)
ASSISTANT CONSULTANT– RISK ADVISORY -IT SECURITY
DELOITTE PAKISTAN
05.2018 - 06.2018
- As an Assistant Consultant in Deloitte’s Cyber Risk Services & Technology Consulting, I carried out the following:
- Assisted in development of proposals, EOIs and relevant documentation, as requested.
- Assisted in audit engagements which included reviewing of Application Security Controls; Review of the compliance of regulatory requirements i.e. SBP’s rules for Payment Service Operators & Payment Service Providers.
- Reviewing Data Center Controls.
- Performed information security review of an organization which comprised of Information Security Governance, Operations and Compliance.
- Performed gap assessment of information security policies against the international standards e.g. ISO 27001 etc.
- Assisted in vulnerability assessment and penetration testing exercises.
- Assisted in Developing Information Security Relevant Standard Operating Procedures (SOP).
- Assisted a data & information classification engagement of banking sector client as per international standards and regulatory requirements (i.e. PCI-DSS, State Bank of Pakistan (SBP)’s regulations etc.).
INTERNSHIP PAID – – RISK ADVISORY -IT SECURITY
DELOITTE PAKISTAN
02.2018 - 04.2018
- Assisted in vulnerability assessment and penetration testing exercises.
- Assisted in Developing Information Security Relevant Standard Operating Procedures (SOP).
- Assisted in development of proposals, EOIs and relevant documentation, as requested.
- Assisted in the development of Information Security Risk Management Framework as per the requirements of ISO 27001
Education
GRADUATE CERTIFICATE - Cyber Security
Melbourne Institute of Technology
01.2021
MASTER OF SCIENCE - Information Security
NED University of Engineering and Technology
01.2018
BACHELOR OF ENGINEERING - Telecommunication
NED University of Engineering and Technology
01.2014
Skills
- Nessus
- Nexpose
- OpenVAS
- Qualys Web Application Scanner
- GFI Languard
- Burp Suit
- Acunetix
- MBSA
- CSET
- Wireshark
- Nipper Studio
- Metasploit
- Websploit
- Cain and Abel
- Quxxi
- Nox
- Apk
- Extractor
- Jd gui
- DEFT
- Encase
- Autopsy
- Volatility
- Data Acquisition tools
- Windows scanning tools
- Mobile Forensics
- Windows forensics tools
- VM Ware
- Virtual Box
- Dreamweaver
- Flash
- Matlab
- Prolog
- MS Office
- SQL Server 2005
- SQL Server 2008
- Oracle 9i
- Windows 10
- Windows 8
- Kali Linux
- Ubuntu
Training
- Deloitte’s – Integrity Imperative
- Deloitte’s – Data Safety
- Skillsoft – The Process of Auditing Information Systems
- Deloitte’s – Confidentiality and Insider Training
- Deloitte’s – Business Continuity Management (BCM)
- Deloitte’s – Commit to Confidentiality
- Deloitte’s – Asset Management
- Deloitte’s – Social Engineering
- Deloitte’s – Phishing
- Deloitte’s – Anti Corruption Training
- Certification – Database Management System
Key Clients
- Jubilee General Insurance
- Silk Bank Limited Pakistan
- Pakistan Petroleum Limited
- Bank Al HABIB
- Habib Bank Limited
- Meezan Bank Limited
- Allied Bank
- Habib Metro Bank Limited
- Habib Bank AG Zurich
- Habib Bank AG Zurich Plc
- Habib Bank Zurich (Hong Kong) Limited
- HBZ South Africa
- Habib Canadian Bank
Timeline
ASSISTANT BROKER –FINANCE & ACCOUNTING
EZ Finance & Accounting
04.2021 - Current
SENIOR ASSOCIATE – DIGITAL FORENSICS & CYBERSECURITY
KPMG PAKISTAN
01.2019 - 01.2020
ASSISTANT CONSULTANT– RISK ADVISORY -IT SECURITY
DELOITTE PAKISTAN
05.2018 - 06.2018
INTERNSHIP PAID – – RISK ADVISORY -IT SECURITY
DELOITTE PAKISTAN
02.2018 - 04.2018
GRADUATE CERTIFICATE - Cyber Security
Melbourne Institute of Technology
MASTER OF SCIENCE - Information Security
NED University of Engineering and Technology
BACHELOR OF ENGINEERING - Telecommunication
NED University of Engineering and Technology
Similar Profiles
Owen MurphyOwen Murphy
Accounting Clerk at EZ Accounting Services & Tax Services LLCAccounting Clerk at EZ Accounting Services & Tax Services LLC
Anna ScottAnna Scott
Office/Finance Manager at Dick Keller Automobiles/EZ FinanceOffice/Finance Manager at Dick Keller Automobiles/EZ Finance
Vance KoehlerVance Koehler
Business Owner/Operator at EZ Auto FinanceBusiness Owner/Operator at EZ Auto Finance
Lauren HortinLauren Hortin
Shift Manager at McDonald'sShift Manager at McDonald's
Jaylen Tindale-SeymourJaylen Tindale-Seymour
Property Maintenance at NAProperty Maintenance at NA