| Contact Information | |
| Name: | Shihan Annon |
| Email: | shihan.annon (at) gmail (dot) com [email concealed] |
| Location: | Colombo -03, , Sri Lanka |
| Resume | |
| Position/Title: | CSO |
| Resume: |
Shihan Annon 220/4, Pathiragoda road, Pamunuwa Maharagama, Sri Lanka Phone: (94) 773 012483 shihan.annon (at) gmail (dot) com [email concealed] ---------------------------------------------------------------------------------------------------------------------- SUMMARY: Entrepreneur, Information Security Professional, and Technology Manager 9 years experience in information security, currently reporting at the CTO/COO level, with increasing levels of responsibility. Security experience includes work in secure content management, secure gateway management, penetration testing, access control, and network. Able to obtain business results independently, directing a team, and across business units. ---------------------------------------------------------------------------------------------------------------------- KEY SPECIALTIES: • SecureComputing Sidewinder 7 / SnapGear Firewalls • SecureComputing IronMail message security Applicances • SecureComputing Safeword Premier Access, strong Authentications • SecureComputing SmartFilter Secure Content Management solutions • Panda Security Enterprise Solutions (adminSecure) • Panda Security Retail Solutions (AV, Internet Security) • Sourcefire IPS Appliances • EnGenius Wireless Solutions TECHNICAL KNOWLEDGE: • Security o Penetration Testing Wireless 2.4GHz 802.11a/b/g/n (WEP,WPA,WPA2) Web 2 Linux/BSD/Windows NT/XP/2000/2003 Firewall ACL checking CISCO devices IPSec VPN o Tools Metasploit, Nmap, Hping, Nessus, Nikto, Netcat, Kismet, Aircrack, John the Ripper, Dsniff, BackTrack 3, etc.. o Network Intrusion Analysis using Snort, Tcpdump, wireshark o Honeypot deployment (malware trapping) o Malware reversing using IDAPro o Firewall/IPS/Message security o Encryption SSH tunneling o Information Security Policy developing/implementing o Training the staff • IP Networking o TCP/IP broad knowledge up to Tcpdump Analysis o IPSec VPN • ISP related technologies o ADSL1/2+, ISDN, Dialup • Operating Systems o Windows NT,XP,2000,2003 o Linux Debian, Slackware, Mandriva, Fedora, and OpenSUSE • Virtualization o Vmware workstation / GSX • Protocols o HTTP,HTTPS,SMTP,SSL,FTP,DNS,SSH • Programming o Python o C • Data Base o MySQL ACHIEVEMENT HIGHLIGHTS: • Design and deployed successfully entire gateway security solutions for 3rd biggest multinational company in Sri Lanka, solution including Sidewinder, IronMail, and four ISP link consolidation where it facilitate 71 subsidiary’s internet connectivity • Designed and deployed multiple antivirus solutions for few corporate clients (among TOP 20) in Sri Lanka • Working as security consultants for few Corporate in Sri Lanka • Working as Security Consultant/Pentester for Mexican and Middle East company • Initiate few innovative Business development campaigns for security products • Have successfully completed Penetration testing for governmental and Commercial Originations (Asiapac and Middle East) EXPERINCE: Organization Panda Security (Franchise Office Sri Lanka) #29, Carlwill Place, Colombo-03, Sri Lanka Position Country Manager (2007 March – Present) Job Profile • Drove the National Organization according to the Business Plan drawn up and includes sales, staffing, marketing and communication targets. • Offering the best services to customers (24x7). Service is one of the identifying elements of the Panda Security philosophy. • Actions that are undertaken must be focused on achieving leadership within the market. and the strategic planning of actions, in both the medium and long term. • Reseller appointing and Technical certification compliances. Coordinating with Training and Certification Department • Facilitate all information necessary to the Technical Training and Certification Department to comply with the Certification Program. Ensure that training objectives are achieved Organization Digital Corporate Solutions (Pvt) Ltd #29, Carlwill Place, Colombo-03,Sri Lanka Position Chief Technical Officer (2002 – present) Job Profile • Reporting Directly to the CFO and CEO • The challenge was to identify new technologies and Exploit and Integrate those technologies into newly initiated business structure of Information security. Introduce to the market and drive the business strategy accordingly. • Drove strategic security initiatives across Digital Group of companies’ business units that resulted in more consistent cross-company product and program security strategies. Contributed to entire IT infrastructure implementation and strategic decision making process of IT usability within the entire group of companies • Protect and secure strategically all company information assets and develop and run the corporate awareness and security program. • Executed budget and roadmap planning. Introduced various awareness campaigns. • People Management: training, development, team-building, projects, reseller/internal employee-leadership and steering of external consultants including budget • Improved client’s ability to meet their business strategy objectives by developing an enterprise information security strategy based on the company’s enterprise security business model. Key deliverable, a comprehensive roadmap of discrete projects designed to build operational capabilities around people, process, and technology. Organization Digital House (Pvt) Ltd #19, Carlwill Place, Colombo-03, Sri Lanka Position Manager – Information Security (1999 – 2002) Job Profile • Introduced and managed security as enterprise IT target, created awareness, designed policy and detailed plans of internet infrastructure, built and ran the whole DMZ structure. Secured network and servers, documented handbook of security, managed certificates, hold lectures and trained people • Provided Network support utilizing Secure Computing’s SideWinder, Sourcefire IPS, and Panda networking equipment. Developed network performance reporting while utilizing NTOP based reporting technologies. Implemented both Network and Server based Security Tools for both detection and protection. Transformed traditional networking protocols to more secure SSH Based protocols • Defined security policies and operational procedures to ensure secure operation of Digital House’s internal staff EDUCATION: • Australian Computer Society Exam (Part I,II,III,IV) 1999 • Covered all the (Ten) Domains of CISSP and will be sitting for the exam shortly • Will be sitting for CCNA Exam shortly • Advance Level (Mathematics & Physics stream) 1997 PERSONAL INFORMATION: • Date of Birth : 10th October 1977 • Marital Status : Married • Nationality : Sri Lankan |