FUAD KHAN COLUMBIA, MD, 21044

fuadkhan@fuadakhan.com 443.280.0235 https://www.linkedin.com/in/hfksystems

fuadakhan.com

Innovative CISSP Certified IT Security Leader Exceed revenue & customer satisfaction targets – Improved regulatory compliance, 3

rd party security solutions delivery &

overall security posture

Effective leader with a proven track record of success defining security compliance programs that balance business requirements and risk. Possess excellent customer relationship skills and ability to establish lasting client relationships based on trust and meeting delivery commitments. Expertise in:

NIST/FISMA Accreditation & Assessment (A&A) ITIL, TOGAF Enterprise Security Architecture

Type 1 Security Architecture Review NIST, PCI-DSS, HIPAA, SOX, ISO27001, COBIT 5, CSA

Regulatory Compliance/Risk Management Security Incident Response/Vulnerability Management

PROFESSIONAL EXPERIENCE

HFK Systems, Columbia, MD 2016 to Present

Cyber Security Advisor

Provided counsel to medical clinics for Health Insurance Portability and Accountability Act (HIPAA) compliance. Created incident and contingency response plans for multiple medical offices resulting in lower downtime due to cyber-

attacks and natural disasters.

EMC2, Columbia, MD 2014 to 2016

VCE Professional Services Security Practice Lead

Responsible for providing IT security professional services to VCE global customers.

Created and deployed Vblock / Vxblock System converged technology stack hardening procedures providing secure Vblock solution to all customers.

Performed in-depth security assessment and compliance reviews for new cloud deployments in financial, healthcare, public, and private sectors resulting in lower time to market.

Supported sales objectives by creating 2 high ROI statement of work (SOW) based security services for totaling $2M.

Facilitated long-term goals through creation of training, retention, and expansion plan for team.

HFK Systems, Columbia, MD 2013 to 2014

Cyber Security Advisor

Worked with medical clinics and advised on issues pertaining to for Health Insurance Portability and Accountability Act (HIPAA) compliance.

Created security awareness training and guidance resulting in successful HIPAA compliances for medical office practices.

U.S Department of Justice/BATF - Washington, DC 2013 to 2013

Information Systems Security Officer (ISSO)

Managed, updated and created all Assessment & Authorization (A&A) lifecycle documents for portfolio of 10 mission critical systems using NIST special publications and Cyber Security Assessment & Management (CSAM) tool.

Created multiple ‘Authority to Operate’ (ATO) packages resulting in re-certification of BATF IT systems on schedule and within budget.

Conducted security assessment and analysis activities and subsequently developed and implemented security hardening (both technical and procedural) measures for various DOJ IT systems

U.S Department of Labor - Washington, DC 2011 to 2012

Information Systems Security Officer (ISSO)

Oversaw creation, management and update of all A&A lifecycle documentation for office of foreign labor using NIST special publications and Cyber Security Assessment & Management (CSAM) tool.

Created Authority to Operate (ATO) package resulting in re-certification of OFLC IT system. Managed continuous monitoring program for OFLC IT system, improving security posture

BOOZ ALLEN HAMILTON, Columbia, MD 2008 to 2011

Senior Intelligence Analyst 2010 to 2011

FUAD KHAN COLUMBIA, MD, 21044

fuadkhan@fuadakhan.com 443.280.0235 https://www.linkedin.com/in/hfksystems

fuadakhan.com

Served as Afghanistan/Pakistan (AFPAK) country expert responsible for research and production of open source analytical briefings for government customers.

Produced custom analytical products resulting in improved understanding of AFPAK region.

Senior System Security Engineer (ISSE) 2008 to 2010

Handled responsibility for US Government tactical radio systems security architecture review, threat mitigation and vulnerability assessments.

Maintained on-schedule deployments by performing timely security architecture review of 4 tactical radio waveforms.

Thales Communication Inc, Clarksville, MD 2008 to 2008

Principal Security Analyst

Conducted security testing support of US special Operations Command tactical radio MBITR/JEM communication products

Created LabVIEW security test harness for MBITR/JEM tactical radio system resulting in increased sales and acceptance by

customers.

EDO-EVI Technology, Columbia, MD 2007 to 2008

Security Engineer

Created custom test fixtures for security laboratory

Designed and streamlined deep packet analysis verification test fixtures written in LabVIEW resulting in successful on-

schedule product sale and deployment

Anritsu Corporation, Columbia, MD 2006 to 2007

Network Security Application Engineer

Operated as professional services support to North and South American customers.

Provided stellar 1st and 2rd tier support to Americas region, increasing sales of signal monitoring product line.

Rohde & Schwarz Inc, Columbia, MD 2004 to 2005

Compliance Systems Type Approval Engineer

Coordinated RF type approval test systems professional services to North American customers.

Performed superb post-sales support resulting in 70% revenue increases in yearly sales quota.

Telephonic Wireless Corporation, Melbourne, FL 2003 to 2003

Field Support Leader

Directed network validation and field support to North American customers.

Achieved faster time to market through provision of 1st and 2nd tier field support.

Interwave Communications, Menlo Park, CA Senior System Test Engineer

NORTEL NETWORK, Dallas, TX

Senior Validation Engineer

EDUCATION Master of Business Administration University of Maryland Smith Business School, College Park, MD Bachelor of Science, Industrial Engineering University of Oklahoma, Norman, OK Graduate Certificate in Applied Intelligence, Mercyhurst University, Eire, PA VCE, Certified Converged Infrastructure Professional, VCE Vblock Systems Deployment and Implementation, Vblock System Administration and Management, Architecting VCE Solutions, Positioning Vblock Data Protection VMware, vSphere Install, Configure, Manage v5.5, NSX: Install, Configure, Manage v6.0, Virtual SAN, vSphere 6.0, SDDC Technologies ITILv3, Pearson LiveLessons Foundations Training ISC2 Certified Information Systems Security Professional (CISSP) # 337517

EH-Council Certified Ethical Hacker (CEH)

Writing Sample: https://intel520fk.wikispaces.com/

Security Clearance: Archived DOD Top Secret/SSBI (Adjudicated May 2013)