Asif Akhter CISA, ITILv3

Pakistan
Senior Deputy Manager (IT Governance & Info Sec) at Lucky Cement Limited
asifakhter@live.com - +92346 2741078

Summary
IS Audit Experinence: -KPMG Pakistan -KPMG UAE -KPMG KSA IT Consultancy Experience:
KPMG Pakistan Ernst & Young Pakistan Ernst &Young UAE - IT Operational Policies and
Procedures - Information Security Policies and Procedures (ISO27001) - IT Governance Review
- Data Leakage Prevention Maturity Assessment (DLP) - Functional Testing - Standard Operationg
Procedures - Vulnerability Assessments Specialties: - A team player and a problem solver;
 Excellent Interpersonal communication skill;  Sound knowledge of IT Audit and Information
Security;  knowledge of reviewing (Windows Server 2003) and Databases ( SQL Server 2005); etc
and  Sound knowledge of Governance Framework like ITIL, ISO27001.

Experience
Senior Deputy Manager (IS Governance & Info Sec) at Lucky Cement Limited
August 2015  -  Present  (5 months)
EXCHANGE ONLINE 365: Migration review with respect to all emails and groups properly
transferred to the exchange online 365 and performed the security review for strengthening the
controls over exchange online 365. MICROSOFT Enterprise Agreement (EA): - Auditing the
Compliance of Microsoft User Licensing (Windows , CALs, Office) for the category of Enterprise
Agreement (EA), Open Licensing (OLP) and Original Equipment Manufacture(OEM). IT ASSET
AUDIT: - IT Asset Audit with respect to compliance and additional assets and reporting to the
management. DATA CENTER Fire Detection & Suppression Testing: - Testing of the design of
data center with respect to fire detection and fire suppression system. DATA CENTER Power
Availability Testing: - Testing and design of UPS and ATS generator with respect to availability.

Deputy Manager (IS Governance & Info Sec) at Lucky Cement Limited
March 2013  -  Present  (2 years 10 months)
-Apply / Direct the application of Information Security Policies and Procedures (ISO 27001 & 27002)
-Apply / Direct the application of IT Operational Policies and Procedures. (Cobit) -Implementation
of Disaster Recovery Plan (DRP) -Identify significant threats to the Information Processing
facilities and devise appropriate mitigating controls. -Facilitation of IT Internal and External Audit
-Providing Information Security Awareness Trainings to Users -Facilitation of Consultants while
performing ERP Feasibiltiy Assesment Program (Business Process Understanding) -SAP Vendor
Selection coordination. -Evaluation of Partner on KPI's. -Involve in high scoping exercise with
 respect to available module of SAP. -Understanding of Business process such as SCM, HCM etc.
-Understanding of SAP with respect to BASIS and SOD conflicts in the process. -Understanding of
user Licensing criteria over SAP. -Managed the team in the absence of HOD.

Senior Consultant G-3 at Ernst & Young Ford Rhodes Sidat Hyder
June 2012  -  March 2013  (10 months)
Client Name – Abu Dhabi Education Council (ADEC) Assignment –Data Leakage Prevention
Maturity Assessment Role – Team Leader Task and Responsibilities – Data leakage prevention
maturity assessment has to be conducted against the following main areas; Governance, policies
and procedures, End point access control, Network protection controls, Third party management
and Data leakage prevention Security review of Windows server 2008 and SQL server 2005. Client
Name – United Energy Pakistan (UEP) Assignment –Complete IT Management Manual Role –
Team Leader Task and Responsibilities: IT Governance Review; Development of Information
Security Policies and Procedures based on ISO27001; and  Development of Information
Technology Operational Policies and Procedures.

Senior Associate at KPMG Taseer Hadi

January 2008  -  June 2012  (4 years 6 months)
To Perform Audit Support activities which included IT control and security reviews. The primary
areas of attention include risk management, information security and privacy, network and OS
security, business application security, Entity level controls and financial reporting controls.
Test the Design and Operating Effectiveness of IT controls using KPMG audit methodology
for the following main areas with respect to IT general controls: Access to Program & Data
(IS Policy, Access Administration, Physical access, Monitoring, Super users, Identification &
Authentication etc) Program Changes (Change Policy, Authorization, development testing
and approval etc) Program Development (Data Migration, Methodology for development and
acquisition etc) Computer Operations (Backup and recovery procedures, Disaster recovery ,
Incident management etc) KPMG (Saudi Arabia) Ryadh, Al Khobar Worked as secondee for
KPMG KSA and responsible to conduct the IS Audit engagements on an individual basis. Major
Clients: HSBC SA (SABB), Ryad capital, Saudi Paper, Methanol Chemical Company, Halliburton
and etc KPMG UAE-Dubai, Sharjah Worked as secondee twice for KPMG UAE and responsible
to conduct the IS Audit engagements on an individual basis. Major Clients: Majid Al Futtaim
Hypermarkets (Carrefour Departmental Stores Chain); HSBC Bank Middle East Limited; Majid Al
Futtaim Properties; (MAF Properties); Juma Al Majid (JAM Group);National General Insurance ;
(NGI); Invest Bank; Rasmala Investments; (Brokerage House);Al Mal Capital (Brokerage House)
etc

Associate at KPMG
April 2008  -  June 2009  (1 year 3 months)
IS Audits and Advisory
Education
Sir Syed University of Engineering and Technology
B.S, Electronics Engineering, 2004 - 2007
Metropolitan Academy
2000 - 2000
Asif Akhter CISA, ITILv3
Pakistan
Senior Deputy Manager (IT Governance & Info Sec) at Lucky Cement Limited
asifakhter@live.com - +92346 2741078

5 people have recommended Asif

"Asif is a gem of a person! A great team player who looks up to and contributes his 100% in
achieving the team's goal. He is known for his professionalism, delivering his work before time and
a great sense of humor. I am blessed to have him as a friend."

—Aeman Shujaat, Senior Associate Consultant,  A.F. Ferguson & Co. (a member firm of the PwC
network),  worked directly with Asif at KPMG

"Asif Akhter is a proactive and tireless contributor who would make a great addition to any team. He
is very responsive and efficient when addressing any challenges. He provides sound advice and is
current on industry trends. A solid team player and has a great combination of breadth of talent and
depth of skill."

—Muhammad Uzair Zahid, Database Administrator,  Dollar Industries Pvt. Ltd.,  worked directly
with Asif at Lucky Cement Limited

"Asif Akhter is very professional, qualified and resourceful individual in his field. His technical
background enables him to understand requirements quickly. I had the pleasure of working with
Asif for two years at Lucky Cement , collaborating on several projects. Few traits of this gentlemen;
Dependable, Down to Earth, Independent, Persistent, Energetic and Humorous. I have observed
all these traits in him as an individual. As a team member or a leader, Asif earns my highest
recommendation."

—Naseem Javed, IT Project Manager,  Amneal Pharmaceuticals,  managed Asif at Lucky Cement
Limited

"Asif Akhter is a level headed person with strong analytical skills who has a passion for his
profession. He has an amazing appetite to take on challenging assignment and to deliver them in
extreme circumstances. He has a good sense of humour with the seriousness that is required to
achieve closure especially on complex projects involving multi stakeholders. He has a pleasant
personality with good interpersonal skills and can be used for new and innovative ideas."
—Tabraiz Mansoor, Consultant,  KPMG Lower Gulf,  worked indirectly for Asif at KPMG Taseer
Hadi

"Asif is very lively, dedicated and a hard working person..most importantly he uses his time
effectively!"

—Adeel Ahmed - CGEIT, Assistant Manager,  PwC,  managed Asif indirectly at KPMG Taseer Hadi