Amir Jafari

•Developed a comprehensive framework for assessing the security of network infrastructure and information systems following methodologies and references such as OWASP, gaining an 80% improvement in threat and vulnerability management •Implemented an automated vulnerability management system for 1000 servers, databases, firewalls, switches, routers, and 800 Microsoft windows laptops using Nessus and Nmap vulnerability assessment tools, saving 20+ hours per month of manual scanning

• Managed and created rules and policies for 600 end-users in Data Loss Prevention (DLP) software to prevent exposure of sensitive data outside of authorized channels, decreased security breaches by 80% • Performed assessments of systems and networks within the network environment through internal vulnerability scanning and identified 100+ vulnerabilities, reducing the company's security risks by 30%

• Implemented Cisco Identity Services Engine (ISE) integration with external identity sources using LDAP and RADIUS to control network access rights for 1000+ endpoints through the posture services • Designed group policies and access control lists to ensure compatibility with organizational standards to restrict information, system, and component access to 1500 authorized employees or machines

• Characterized and analyzed network traffic to identify anomalous activity and potential threats to network resources, saving the entire company over 1,500 computers and servers from destruction • Established, implemented, and maintained an information security management system (ISMS) based on the ISO/IEC 27000 series standards to ensure compliance with 114 controls and 30 security policies

• Developed cybersecurity plans for the National SCADA project, including 450 Routers, 4 Firewalls, two Data Centers, and 400 remote substations using Cisco Safe secure architectural framework to ensure secure deployments for the entire network environment • Wrote and updated Business Continuity and Disaster Recovery plans (BCP/DRP) to meet NIST 800-34, including business impact analyses, strategy selection, and documentation of business continuity and disaster recovery procedures

Distinction, Ranked first amongst 14 MSc Computer Networking students during the academic year 2010/11