Bank of Punjab (I.T Division)
Information Security Intern Feb-2017 – Present
- Developed Application Security and Development Requirements according to DISA (Defense Information Security Agency) STIGS (Security Technical Implementation Guide).
- Assessed vulnerability tools Nessus & Nexpose.
- Evaluated KPMG STP (Straight Through Processing) Proposal.
- Generated Vulnerability reports using Nipper.
- Assisted in designing the RFP (Request for Proposal) for the procurement of IT Solutions/Products.
- Developed SOP for the third party integration (Site to Site VPN).
- Designed sheets for I.T audit of BOP’s branches.
- Compiled data of I.T audit reviews of branches.
- Designed Security Awareness Poster for the final presentation
- Got familiar with OWASP Top 10, SANS 20 Critical Security Tools, Cobit 5, ISO 27001, Router Audit Tools, I.T Governance and Vulnerability Scanner.