IMRAN KHALIQUE

Dedicated role to build and run the firm's enterprise security operations program. Owned vulnerability management, endpoint hardening, identity controls, cybersecurity awareness, digital risk protection and acted as the technical lead partnering with the firm's MSSP, pentest, and SaaS-security vendors.

• Reduced organizational attack surface by 60% by architecting the firm's enterprise Vulnerability Management (VM) program across Rapid7 InsightVM and Tenable, applying CIS Benchmark-aligned baselines, structured scan cadence, and remediation workflows integrated with change management processes.
• Cut phishing click-rates 45% over 24 months as designer and administrator of the firm's Security Awareness and Training (SAT) program via KnowBe4; executing simulated phishing campaigns, new-hire onboarding, and leadership-facing behavioral metric reporting.
• Achieved ~80-90% endpoint hardening compliance by establishing and enforcing a CIS Benchmark security baseline across the Windows endpoint estate via Microsoft Intune MDM and Group Policy Objects (GPOs), eliminating long-standing configuration drift and reducing exploitable attack vectors.
• Built executive cyber-risk reporting framework aligned to NIST CSF functions - Identify, Protect, Detect, Respond, Recover - translating raw security signals into KPIs that gave leadership real-time visibility into threat posture, vulnerability exposure, and IR effectiveness for governance and budget decisions.
• Designed and operated a Third-Party Risk Management (TPRM) program to vet, document, and stage approval for on-premises and SaaS application integrations; incorporating SOC 2 control mapping, data-handling validation, and risk scoring to reduce Shadow IT exposure and enforce the firm's information security standards at the point of vendor onboarding.
• Led MSSP/MDR oversight and detection engineering tuning SIEM detection rules to reduce alert fatigue, deploying SOAR playbook initiatives, and managing log source integration lifecycles across the security stack driving MTTR to approximately 1 day and achieving a 75% reduction in non-actionable escalations.
• Deployed SaaS Security Posture Management (SSPM) via Adaptive Shield across 20+ enterprise applications continuously monitoring for configuration drift, enforcing least-privilege access controls, managing the vendor relationship end-to-end, and remediating critical misconfigurations including controls relevant to the Microsoft Midnight Blizzard threat campaign.
• Authored and maintained security governance documentation including Incident Response (IR) playbooks, access control policies, and operational SOPs ensuring controls were auditable, repeatable, and aligned to CIS and NIST CSF. Supported audit readiness by maintaining documented evidence of vulnerability remediation, SSPM configuration controls, and TPRM assessments across the firm's cybersecurity program.
• Coordinated annual penetration testing engagements by defining scope, managing vendor coordination, triaging findings by risk severity, and driving remediation through to verified closure ensuring the firm's security posture was validated against real-world adversarial techniques.
• Administered executive Digital Risk Protection (DRP) by leading the transition from ZeroFox to ReliaQuest DRP and deploying DeleteMe for PII removal - reducing the external attack surface and profiling risk for firm leadership through continuous monitoring of brand exposure, data broker presence, and open-source intelligence (OSINT) signals.

Sole IT engineer for the New York office and primary technology partner for the firm's senior executives. Owned the Microsoft 365 and identity stack day to day, ran endpoint and network operations across multiple sites, and was the on-the-ground lead for the firm's 22nd floor build out and post-pandemic re-opening.

• Supported and maintained enterprise IT infrastructure across Windows environments, Microsoft 365, mobile devices, and collaboration platforms, ensuring reliable day-to-day operations for onsite and remote employees.
• Administered user accounts and endpoint management systems including Active Directory, Entra ID, Intune, Exchange Online, and Teams, improving provisioning efficiency and access management across the organization.
• Supported Meraki firewalls, switches, and access points across wired and wireless infrastructure.
• Led asset lifecycle, imaging, patching, and hardware refresh across multiple offices.
• Delivered white-glove executive support, home-office networking, Meraki, conferencing, and secure remote access.

Frontline desktop and infrastructure engineer in one of the largest Big Four environments in the world. Worked across the Windows and Mac estate and partnered directly with the cybersecurity team on vulnerability scans, forensics, and pentesting.

• Resolved Windows and macOS issues across local and remote offices, including Microsoft 365 migration, VMware, Citrix, SCCM, and Avecto.
• Liaised with the cybersecurity team on vulnerability scans and forensic file retrieval for litigation support.
• Assisted in ad-hoc penetration-testing engagements using tools such as Reaper and PWNED.
• Led MDF/IDF closet server debugging and replacement projects.
• Facilitated WTEY (Welcome to Ernst & Young) seminars, onboarding new hires onto firm hardware and technical resources.
• Ran asset management against firm retention policies.
• Maintained Crestron, Cisco VC, and Microsoft Surface Hub conference rooms.