Tabish Ali

Senior Manager – Technology Consulting (Cybersecurity)

EY Ford Rhodes

Oct 2021 – Sep 2023

• Headed cybersecurity services | managing teams and driving cybersecurity strategy | next-gen security operations | and data protection.
• Directed red team and purple team threat emulation | penetration testing | cloud and product security assessments | and SOC automation.
• Delivered technical architecture and cyber maturity assessments | OT and IoT security strategies | and data protection solutions including CASB | encryption | and tokenization.

Manager – Technology Risk Advisory & Cybersecurity

EY

May 2017 – Nov 2021

• Led cyber threat management practices and system penetration testing.
• Conducted third-party reviews | client IT risk assessments | and guided security best practices.
• Helped partners generate business opportunities while improving cybersecurity solutions for clients.

Lead Trainer – Cybersecurity

Moon International Pak

Aug 2015 – Apr 2017

• Established the first EC-Council Penetration Testing Academy in Karachi.
• Delivered corporate and private training sessions on CEH | CHFI | and other cybersecurity domains.

Sr. Information Security Consultant

ABM Info Tech (Pvt.) Ltd.

Apr 2014 – Jul 2015

• Implemented Symantec DLP | SEP | and DCS solutions. Performed network and application security reviews | penetration testing | and database security.
• Designed IT controls | incident management processes | and security monitoring through IDS | SIEM | and endpoint solutions.

Technology Consultant and Trainer

Moon International Pak Pvt Ltd / Moon Rise SDN. BHD

Apr 2012 – Dec 2013

• Designed and implemented secure network infrastructure.
• Conducted cybersecurity training programs and technical reviews.
• Performed application and security requirement assessments for clients.

Cyber Emergency Response Team, U.S. Department of Homeland Security

210W – Cybersecurity for Industrial Control Systems (2014)

100W – Operational Security (OPSEC) for Control Systems (2014)