Abdul Ghafar Rasoli
Details
Computer Science
Ibne Sina University
2014 : 2017
•Led regular audits and reviews to assess potential vulnerabilities in information systems and networks, aligning with relevant policies and procedures; defined robust security measures, reducing cybersecurity incidents by 80%.
•Led the reporting and oversight efforts for the Cybersecurity program, ensuring transparent communication between EA (Etisalat Afghanistan) and Etisalat Group senior management, the parent company based in UAE.
•Streamlined Cybersecurity Governance and SOC Activities, harmonizing efforts with strategic objectives; introduced real-time monitoring tools, reducing response time by 60% and safeguarding the organization against potential data breaches.
•Executed a comprehensive Information Security Awareness Training program, increasing employee compliance with security policies by 90% and reducing internal security incidents by 85%.
•Drove the establishment and maintenance of a comprehensive security framework, leveraging expertise in technical solutions and industry standards; accurately documented and communicated standards, enhancing overall security posture, and minimizing risks.
2023 : Present
Etisalat Afghanistan
Manager Cybersecurity Governance
•Developed and maintained comprehensive cybersecurity policies, frameworks, and programs; aligned data and infrastructure protection with Etisalat Afghanistan and Etisalat Group - UAE standards, ensuring compliance with information security policies and requirements.
•Supervised Vulnerability Assessment and Penetration Testing initiatives; implemented 40+ new threat detection content using SIEM and EDR queries. Collaborated on Purple Teaming Exercises to validate alert and control functionality.
•Performed thorough analysis of emerging threats, adversaries, and incidents, translating complex technical information into actionable insights that informed strategic decision-making and enabled the development of effective response plans which resulted in a 40% reduction in average incident response time and increased overall cybersecurity readiness.
•Led enterprise threat-hunting efforts, collaborating with cross-functional teams, and conducting extensive log analysis, to identify and address weaknesses in detection and telemetry systems, resulting in a 40% improvement.
•Identified and responded to 5 Advanced Persistent Threat “APT” Incidents, identifying intrusion scope, and relevant indicators of compromise (IOCs), and executing containment and remediation actions.
•Enhanced security measures resolved hundreds of vulnerabilities and recommended essential security changes. Verified and updated critical security documentation.
2021 : 2023
Etisalat Afghanistan
Senior Team Leader Cybersecurity
•Coordinated with 10+ internal and 5+ external security and IT teams, guaranteeing ongoing compliance and secure operation of authorized information systems.
•Safeguarded mission-critical systems in 3 different data centers, ensuring strict compliance with corporate security policies and regulations. Analyzed and reported on organizational and system security posture trends.
•Showcased expertise in information security, risk assessment, and incident response to protect sensitive information and maintain service excellence.
•Applied security policies to meet system security objectives. Evaluated security control effectiveness for continuous improvement.
•Spearheaded comprehensive security and risk management across Enterprise IT Operations, Application Security, and Database and Operating Systems (Linux / Windows).
•Developed a comprehensive RMF policy and application strategy, aligning with NIST SP800-53/NIST SP800-171 Controls; ensured 100% compliance with DoD security requirements, safeguarding critical systems and data.
2019 : 2021
NETLINKS LTD
Information Assurance and Security Lead
2018 : 2019
NETLINKS LTD
Information Assurance Specialist
•Led the implementation of comprehensive Service Level Agreements (SLAs) to align with AWCC IT security policies for all departments.
•Delivered strong security administration support for diverse information systems and applications, including UNIX, Windows, and SIEM.
•Enhanced IT corporate firewall administration by implementing robust security parameters, safeguarding digital assets, and mitigating unauthorized access and cyber threats. Reduced security incidents by 70% through expertise in information security principles.
•Administered in-depth technical assessments, evaluating engineering and integration initiatives, and providing technical support for the configuration, administration, and monitoring of the enterprise's next-generation firewalls.
•Strengthened security for point-to-point and point-to-multi-point connections, employing recommended protocols to fortify digital data transmissions.
•Planned routine vulnerability assessments on software packages and tools, promptly identifying configuration errors and advocating for necessary fixes, patches, and security enhancements.
•Designed secure tunneling mechanisms, including VPN, to regulate outside-to-inside AWCC IT domain access, aligning with service level agreements and established procedures.
•Teamed up with Administrator – Network Infrastructure to deliver 24/7 system security services across all IT domains and IP data communications for AWCC IT/GSM platforms.
2015 : 2018
Afghan Wireless
Team Leader Information Systems Security
Skills
Business Relationship Management, Business Strategy, CEH, Certified Information Security Manager (CISM), CHFI, CISA, Cisco ASA, Communication, Communication Skills (Verbal and Written), Computer Security, Cyberoam, Cybersecurity, Cybersecurity GRC, Cybersecurity Incident Response, Cyber Threat Hunting (CTH), Cyber Threat Intelligence (CTI), Decision-Making, Digital Forensics, ECSA, Enterprise Network Security, Incident Response, Information Security, Information Security Management, Information Security Management System (ISMS), Interpersonal Communication, ISO 27001, IT Security Policies & Procedures, Leadership, Linux Firewalls, Malware Analysis, Management, Networking, Network Security, Operations Management, Palo Alto Networks, Penetration Testing, Problem Solving, Risk Management, Security Architecture Design, Security Awareness, Strategy, Team Leadership, Team Management, Tenable.sc, Tenable Nessus, Threat & Vulnerability Management, Time Management, Vulnerability Assessment, Vulnerability Management
About
I have over 12+ years of dedicated experience in IT and Cybersecurity and have always worked in Enterprise organizations in key role.
Equipped with a robust arsenal of skills, I specialize in Cybersecurity Management, Building Security Operations Center, Budgeting, Planning, Cybersecurity Incident Management, Windows Forensics, and Architecture Security.
My mission is to safeguard your organization's digital assets, fortify your defenses, and ensure seamless operations in a world where threats evolve as quickly as technology itself.
A data virtuoso and a process improvement enthusiast, I thrive on analyzing complex issues and devising ingenious strategies to streamline operations and reduce costs, all while maintaining the highest security standards.
In this ever-evolving landscape of cyber threats, I'm here to provide you with the expertise, vision, and dedication needed to stay one step ahead. Together, we'll secure the digital realm, ensuring your organization's success in the digital age.
Key Area of Focus and Expertise:
- Cybersecurity Governance, Risk and Compliance (GRC)
- Cybersecurity Audit
- Digital Forensics and Incident Response
- Enterprise Threat Hunting & Vulnerability Management
- Next Generation Firewalls Administration, Configuration and Management
Profile Photo
