+966-567689179
[email protected]
www.linkedin.com/Sohaib-Mallhi
Saudi Arabia (Transferable Iqama)
PROFESSIONAL SUMMARY
Results-driven Cybersecurity & Network Security Specialist with 10+ years of experience in penetration testing, vulnerability assessment, and enterprise security architecture. Skilled in tools such as Burp Suite, Nmap, Wireshark, Nessus, OpenVAS, and CrowdStrike.
Expert in ISO 27001 ISMS implementation, auditing, and compliance, including gap analysis, risk management, and continuous improvement. Strong experience in OT/ICS Security (ISA/IEC 62443), covering SCADA protection, threat modeling, and incident response.
Proven ability in firewall configuration, network segmentation, and secure infrastructure design using Fortinet, Cisco ASA, Sophos, SonicWall, MikroTik, and pfSense. Experienced in cloud platforms (Azure, AWS), virtualization (VMware ESXi, Proxmox), and automation using Python & Bash.
CORE SKILLS
Penetration Testing & VAPT
ISO 27001 Compliance & ISMS
OT/ICS & SCADA Security
SIEM & SOC Operations (Wazuh, QRadar, Splunk)
Firewall & Network Security (Fortinet, Cisco, Sophos)
Cloud Security (Azure, AWS)
Server Administration (Windows/Linux)
Virtualization (VMware ESXi, Proxmox)
Scripting & Automation (Python, Bash)
DevOps Tools (Docker, Ansible, Grafana, Nagios)
PROFESSIONAL EXPERIENCE
Cyber Security & IT Engineer
NOUR Consulting Solutions, KSA
📅 Jan 2025 – Present
Conduct penetration testing and vulnerability assessments using industry tools
Implement ISO 27001 compliance, ISMS audits, and risk assessments
Perform OT/ICS security assessments based on ISA/IEC 62443
Configure and manage firewalls (Fortinet, pfSense, Cisco ASA, MikroTik)
Manage SIEM tools for incident monitoring and threat detection
Design secure network architectures using VLAN, HSRP, VPNs
Sr. Network Administrator
Right Medical Billing Pvt Ltd (USA)
Managed enterprise firewall (SonicWall) and VPN infrastructure
Administered Windows Servers, VMware (ESXi, vCenter), and NAS solutions
Deployed AWS-based proxy servers and cloud infrastructure
Maintained 24/7 live systems and ensured high availability
Handled Microsoft 365 services and enterprise email systems
ISMS & IT Specialist
Global Corporate & Research Investigations (UAE)
📅 Dec 2021 – Dec 2024
Implemented ISO 27001 ISMS across multiple international offices
Managed Microsoft 365, Azure AD, Defender, and compliance tools
Configured Sophos XG Firewall and endpoint security solutions
Conducted audits, risk assessments, and compliance reporting
Managed IT infrastructure across UAE, UK, USA, and Malaysia
Network & System Administrator
HBS General Hospital
Managed servers (Hyper-V, ESXi, DNS, DHCP) and network systems
Performed web server security testing and vulnerability checks
Configured MikroTik routers and enterprise network services
Maintained CCTV, PABX, and hospital IT infrastructure
System Support & Technical Officer
News One TV Pvt Ltd
📅 Feb 2015 – Jan 2021
Configured Cisco routers and VLAN-based networks
Managed IDS/IPS systems and firewall modules
Administered domain servers and satellite communication systems
Provided end-to-end IT support and troubleshooting
CERTIFICATIONS
Certified Ethical Hacker (CEH) – EC-Council
ISO 27001:2013 Lead Auditor
CISSP (Training – Skills Up)
Microsoft SC-900, AZ-500
Fortinet NSE 1, 2, 3
Palo Alto Certification
CCNA CCNP Network Security
Cloud Security (AWS & Azure)
EDUCATION
Bachelor of Science in Computer Science
Barani Institute of Information Technology (PMAS-AAUR)
📅 2014 – 2019
KEY PROJECTS
Deployment of firewalls (Fortinet, Palo Alto, Cisco ASA, Sophos)
Data center deployment for telecom operators (Zong, Jazz, Telenor)
SIEM & security dashboards (Splunk, Wazuh)
ISO 27001 documentation and compliance implementation
Disaster Recovery (DR) solutions deployment
VMware & Proxmox virtualization environments
QRadar, EDR, and CrowdStrike deployments
Digital forensic investigations
LANGUAGES
English (Fluent)
Urdu (Native)
Arabic (Beginner)
German (A1 Certified)
Chinese (Basic)
