Summary
Overview
Work History
Education
Skills
Languages
Timeline
Generic

Muhammad Usama Qureshi

The Hague

Summary

Senior security engineer specializing in application, cloud, payment, and IoT security. Expertise in global compliance and security frameworks, with a strong focus on security assessments and risk analysis. Proven ability to deliver secure, scalable solutions through technical training and consulting. Experienced in cross-regional collaboration to enhance product security and drive business growth.

Overview

7
7
years of professional experience

Work History

Senior Security Engineer

UL Solutions
The Hague
02.2024 - Current
  • Provided compliance guidance on IoT cybersecurity standards (UK PSTI, RED, ETSI EN, EU CRA, IEC 62443, ISO 27001, NIST SP 800-53).
  • Conducted product assessments against PCI MPoC, PCI PTS, and global payment security standards.
  • Led junior engineers in OT/IoT security across monitoring, asset management, vulnerability tracking, and compliance.
  • Delivered technical training and global webinars on RED, ETSI EN, UK PSTI, PCI MPoC, CRA, and risk assessments.
  • Performed technical evaluations, gap analyses, and compliance mapping for secure product architectures.
  • Coordinated cross-regional alignment between engineering, compliance, and security teams.
  • Enabled sales and business development through technical support and go-to-market execution.
  • Designed and implemented security awareness programs, reducing incidents and improving security posture.
  • Conducted risk assessments to identify vulnerabilities in systems.

Security Engineer

SGS Brightsight
Delft
12.2022 - 12.2023
  • Performed hardware and logical penetration testing to ensure PCI PTS and MPoC compliance.
  • Assessed encryption mechanisms, firmware updates, and security functions in POS, CPoC, and SPoC devices.
  • Conducted code reviews, reverse engineering, OWASP-based testing, and fuzzing on payment systems.
  • Delivered client readouts with clear, actionable remediation guidance.
  • Produced detailed reports outlining vulnerabilities, risk levels, and mitigation strategies.
  • Validated system resilience through controlled hardware and software tampering.
  • Used Wireshark and cryptographic analysis to verify secure data flows.
  • Utilized Linux-based tools for penetration testing and firmware validation.
  • Collaborated cross-functionally to implement PCI-aligned security controls across product lifecycles.

SOC Analyst

Mobiliva (Biotekno)
Istanbul
09.2021 - 11.2022
  • Utilized SIEM tools (Splunk, Azure Sentinel) for threat detection, alerting, and security monitoring.
  • Strengthened network security using Sophos and WatchGuard firewalls, implementing access controls, and secure configurations.
  • Managed Microsoft 365 and Intune environments, including RBAC, user provisioning, and system administration.
  • Implemented security frameworks (ISO 27001, NIST, CIS Controls) to enhance security posture and reduce risk.
  • Developed and optimized SIEM use cases, reducing false positives, and improving incident response efficiency.
  • Supported cybersecurity strategy through risk tracking, test planning, and audit readiness.

Android Developer

Hotech
Antalya
06.2019 - 08.2021
  • Developed secure Java applications using Spring Boot with SQL and NoSQL integrations.
  • Performed API testing (Postman) and ensured efficient JSON-based communication.
  • Applied OWASP MASVS standards across the mobile application lifecycle.
  • Conducted security testing, reverse engineering, and debugging to ensure code quality.
  • Executed manual and CI-based (Jenkins) integration testing, analyzing performance and security metrics.
  • Used Wireshark for packet analysis to validate secure data transmission and encryption.
  • Collaborated on code reviews, troubleshooting, and system testing with development teams.
  • Built and demonstrated client-facing solutions, including internal tools adopted company-wide.

Education

Bachelor of Science - Computer Engineering

Antalya Bilim University
Antalya, Turkey
08-2021

Skills

    Identity management
    Cyber Security
    Software development
    Cloud security
    Advanced Software System Knowledge
    JIRA
    Splunk
    Microsoft 365
    Linux
    Java
    Kotlin
    Git
    Android Development
    Burp suite
    Devops
    CI/CD integration
    Decision Making
    Communication Skills
    Ability to Work Under Pressure
    Teamwork
    Problem Solving
    Leadership
    Time Management

Languages

English
Proficient (C2)
C2
Turkish
Advanced (C1)
C1
Urdu
Native
Native

Timeline

Senior Security Engineer

UL Solutions
02.2024 - Current

Security Engineer

SGS Brightsight
12.2022 - 12.2023

SOC Analyst

Mobiliva (Biotekno)
09.2021 - 11.2022

Android Developer

Hotech
06.2019 - 08.2021

Bachelor of Science - Computer Engineering

Antalya Bilim University

Similar Profiles

CREATE PROFILE
Muhammad Usama Qureshi