Najam Ul Saqib

CEO

Exfiltra • Temps plein

Aug 2025 - Present • 9 mos

I lead a team of cybersecurity specialists delivering advanced services in penetration testing (web, mobile, cloud), cloud security audits (Azure & AWS), Microsoft 365 & Intune security, DevSecOps, and managed security solutions. I oversee strategy, client engagement, and project delivery, ensuring businesses strengthen their security posture while maintaining compliance and operational efficiency. I also guide clients on risk assessment, threat detection, and secure architecture design, combining technical expertise with strategic business insight to protect critical assets and data.

Senior Security Engineer

Constellation Software • Temps plein

Oct 2022 - Aug 2025 • 2 yrs 10 mos

• Established and led the VA/PT departments in 3 business units under OPE: Charter, Infinity, and Ideal, conducting comprehensive penetration testing and vulnerability assessments across cloud platforms, infrastructure, web apps, mobile apps, and thick clients. • Performed in-depth static and dynamic security testing using both manual techniques and automated tools. • Architected a cost-efficient SOC leveraging Wazuh for real-time monitoring of 20+ Azure-hosted production servers. • Improved secure score on 8 Azure subscriptions containing 196 resource groups using CSPM and CASB tools. • Implemented robust access control measures in the cloud, utilizing IAM and RBAC to enforce a least-privilege model in Entra tenant having ~10,000 users. • Eliminated credentials management across multiple products by adopting Azure Managed Identities. • Trained and mentored team members in best practices for secure software development. • Azure, Defender for Cloud, Managed Identities, RBAC, Burp Professional, Wazuh

Associate Security Engineer

Systems Ltd • Temps plein

Dec 2021 - Oct 2022 • 10 mos

• Conducted thorough source code reviews, both manually and using automated tool. • Performed dynamic security testing on web and mobile applications. • Led technical interviews to recruit top talent for the security team at Systems Ltd. • Executed cloud security and compliance reviews in alignment with CIS benchmarks. • Managed infrastructure vulnerability assessments utilizing Tenable Nessus. • Collaborated with stakeholders to interpret security reports and drive the remediation of identified issues. • HCL AppScan, Burp, ZAP, MobSF, Frida, Objection, Nessus