Supervisor / Faculty Member at Network and Security Department                                  ( 2003 – 2009 )

• Holding more than twelve thousand hours of training in the fields of network – information security and cyber security in Iran

• Instructor of information security courses at the Ministry of Energy of Iran
• Instructor of cyber security courses of Iran Tobacco Company
• Instructor of cyber security courses at the Ministry of Energy of Iran
• Instructor of cyber security courses of Petropars Iran Company
• Instructor of Windows forensics course of Iran Telecommunication Infrastructure Company
• Samen Sepehr Kish Wireless Networks Course Instructor
• Instructor of Linux courses at the Ministry of Energy of Iran
• Instructor of network security courses in Iran Petrochemical Company
• Instructor of municipal organization network courses
• Instructor of network security courses for the Customs Administration
• Instructor of Cyber Security Courses, Department of Medical Sciences
• Instructor of cyber security courses at Sepah Bank of Iran
• Instructor of network and security courses of Iran Cement Company
• Instructor of network courses of the Radio Organization of Iran
• Instructor of network and security courses of the Social Security Organization of Iran
• Instructor of cyber security courses of Iran Oil Company
• Teaching SANS cybersecurity courses during the communication era
• Instructor of Cisco network courses of Electrosteel Company
• Instructor of the Ransomware protection course of Apa Center, Razi University of Kermanshah
• Instructor of NICCO Japan and United Nations (UN) International and Educational Institute Network courses
• Instructor of information security courses of Bandar Abbas Aluminum Company
• Instructor of cyber security courses at South Pars Gas Refinery
• Instructor of wireless network course of Iranian Net Company of Tehran
• Instructor of network courses of East Industrial Management Organization – Iran
• Instructor of Tehran Applied Information Development Company in specialized cybersecurity courses

Network Engineer                                                                                                                     ( 2009 – 2012 )

• Azarakhsh Power Transmission Company
• Astan Quds Information Technology Company
• Ahura Information Technology Company

Technical Scope: Routing& Switching, Microsoft Active Directory Environments. Fulfilled full-spectrum network administration: installations, debugging, IT security, maintenance, and upgrades.

Managed IT, administration teams, promoting Quality Assurance (QA) and organizational objectives, processes, and procedures. Participated in field leadership, safety meetings, and managed key safety investigations. Maintained Microsoft OS: Implemented, deployed, and administrated Microsoft Server technologies, including Windows Servers 2003/2008 R2, 2012 , 2016 , 2019 – Win. 2000/XP/7/10 , Active Directory, Group Policy, DHCP, IIS, DNS, WSUS, Terminal Services, Domain Forest Trust management, and maintained Office365 proxy server.

Collaborated closely with Network Engineer in configuring, maintaining, and managing Switches and VLANs. Oversaw procurement of IT hardware, software, maintenance products, and services, including monitoring IT budgets and expenditure on hardware and software. Assessed emerging network and security products and technologies to reinforce the IT infrastructure by incorporating the required technologies. Travelled to client sites to provide installations, deployment, and troubleshooting requirements.

Network and System manager                                                                                            ( 2012 – 2015 )

• Parham Pars Communication Company
• Atabay Electronic Designers Company
• Pars Technologists Company

Technical Scope: Routing& Switching, Cisco, Planet Equipment, OSPF, EIGRP, SPANNING TREE, QoS

responsible for the day-to-day operation of networks (Monitoring and creating incident). Organizes, install, and support an organization’s computer systems, including local area networks (LANs), wide area networks (WANs), network segments, intranets, and other data communication system. Plan, develop, deploy, test and optimize network and system services, taking responsibility for configuration management and overall

NOC specialist in Data Centre, the main duties were R&D and design, implement and troubleshooting and develop existing services. Working by Cisco switch 6509 and router 7603; definition of QoS like traffic shapping and traffic policy with BGP routing protocol, I installed and controlled web caching and defined some ACLs for redirect web to software. Supervised network traffic and bandwidth with Zabbix and advocating several macro waves links between our data center and our customers. Used VMware and

Advanced experience in the following areas:

• Network Protocols and Services
• Cisco Infrastructure in Routing and Switching, Collaboration, Security and Datacenter
• Virtualization Services based on VMware and Microsoft Hyper-V
• Microsoft Server and Services
• Security Services and procedures
• Network Monitoring and Automation

Director of Security Programs , Infrastructure (CISO)                                                         ( 2015 – 2018 )

• Sangan Khaf Steel Complex
• Khorasan Razavi Regional Electricity – Mashhad
• Shargh System Company

Director of
Information Security Programs ,
Information Technologies Systems Infrastructure Programs

(Internal and External : Cyber Security Solutions as a service)

Responsibilities: Include But Not Limited To The Following
.Build and operate 24 X 7 cyber security operations center (CSOC) including level1 SOC and Level2 SOC function
.Ensure processes and practices are in place for incident identification, assessment, reporting
.Work with broader security engineering and operations team to manage SIEM platforms including design and engineering
.Review, analyze, troubleshooting and drive issue resolution utilizing different data feeds – SIEMs, intelligence feeds, threat detection systems, IDS/IPS, Antivirus servers, and vulnerability management scanners , …
.Develop, design and define alerts and processes for responding to such alerts.
.Develop and monitor key metrics and report on regular basis including how the defenses established fair against threats, trends, technology performance indicators, coverage gaps, project reports, incidents, alerts, etc
.Manage and develop SOC team members, includingmentoring and capability / skill development.
. will be responsible for implementing technical solutions with top-tier Government clients.
+
Adviser , Design 4 SOC/SIEM/Cert/Network Security: (Anti Ddos(DDoS mitigation)/WAF/FW/Anti malware.)/PenTest/Security ISO/Security Best Practices/Security Polices/Security aWareness .

Cyber Security Solutions Senior Consultant & Instructor (Ciso as a Services)               ( 2018 – 2020 )  

• Aman Afzar Gostar Sharif Company
• Khorasan Razavi Science and Technology Park

Activities:Cyber Security , Network Security , SOC ,NOC ,Virtual/Physical , Microsoft and Cisco Computer Networking Standard, Information Security Management (ISO 27001), Advertising Consulting Modern, Industrial Hardware and Parts Supply, Training , … A-Z Associate 2 IT * By Prepare, Plan, Design, Implement, Operate, and Optimize.
In other words, specialty(
• Enterprise Security
• Information Security Policies
• Information Security Strategies & Roadmaps
• Security Framework
• Security Infrastructure
• Security Architecture
• Awareness Training
• Security Operations
• Security Technologies
• Security Governance
• Security Audits & Assessments
• Threat Analysis

Security Solutions Department Manager (CISO)                                                                  ( 2020 – 2023 )

• Green Web Knowledge Based Holding
• Isfahan Oil Refinery Cyber Security Consulting – Iran
• Mashhad Regional Electricity Company
• Khorasan Razavi Meteorological Organization – Mashhad
• Khorasan Razavi Environment Organization – Mashhad

As the Head of Information Technology Security
My Responsibilities 4 Internal & External Security Projects:

-Security Solution Provider:
(|Penetration Test,Digital Forensics
|ISO27001(ISMS)
|Physical Security,Cyber Security,SOC)

-Appoint and guide a Team of IT security experts
-Create a Strategic Plan for the Deployment of Information & Communication Security Technologies and Program Enhancements
-Supervise Development of (and ensure compliance with) Co Security Policies, Standards and Procedures
-Integrate IT systems Development With Security Policies and Information Protection Strategies
-Collaborate with key Stakeholders to Establish an IT Security Risk Management Program
-Audit Existing Systems and Provide Comprehensive Risk assessments
-Anticipate New Security Threats and Stay up to date With Evolving Infrastructures
-Monitor Security Vulnerabilities, Threats and Events in Network and Host Systems
-Develop Strategies to Handle Security Incidents and Coordinate Investigative Activities
Act as a Focal Point For IT Security Investigations and Direct a full Investigation With Recommended Courses of Action
-Prioritize and allocate Security Resources Correctly and Efficiently
-Prepare Financial Forecasts 4 Security Operations and Proper Maintenance Cover For Security Assets
-Provide Leadership, Training Opportunities and Guidance to Personnel
-Work with Senior Management to Ensure IT Security Protection Policies are being Implemented, Reviewed, Maintained and Governed Effectively
-Spearhead education programs focused on user awareness and security compliance
+In addition to These Efforts, i may be Involved in a large Variety of Non.Technical Managerial Tasks, At the end of the day, i as Chief Information Security Officer Reports on Security to the Chief Executive Office (CEO).

Key Achievements at SSO:

• Identified 26+ vulnerabilities by testing infrastructure security, using both automated tools and manual testing.
• Relocated large Data Centre with only 90 days’ notice, which included leasing location and design/management of build-out. The highly successful relocation resulted in only eight hours of downtime to the organization and no impact to customer shipments.
• Directed relocation of Data Centre, along with a technology refresh, resulting in 60% cost reductions.
• 2016, 2017, and 2018: Commended as the organization’s top-performing employee. Key strengths included: maintaining secure network connectivity in virtual environments, fulfilling all customer commitments, and consistently high standards of service delivery.
• 2016: Obtained ISO 9001 Certification/Accreditation: Enabling improved servicing of the network infrastructure; the implementation and deployment of which then attracted more customers and increased revenue.
• 2012, 2013, and 2015: Received state-wide “Provider of Best Customer Service of IT systems & Support” awards.
• KEY& PERSONAL
• Experience as a Team Leader for projects and systems migrations.
• Ability to be clear & concise when explaining technical procedures to customers.
• Good problem-solving and troubleshooting skills, with attention to detail.
• Excellent customer service and communication skills.
• Strong Learning Aptitude- Excellent Work Ethic- Hard-Working.
• Problem-solving- Helpful attitude.
• Impeccable attention to deta