This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Jump to: navigation, search

Amin is a trusted advisor with a breadth of business and technical expertise, providing management consulting services in a variety of industries including Government, Health Care, Real Estate, Digital Media, Retail and Telecommunications. Amin has provided expertise and developed a proven track record in:

• Executive communications • Team building and talent development • Knowledge transfer and coaching • Engagement scoping, management and delivery • Information Technology Audit (CobiT 4.1, ISO 27001/27002, NIST 800-53) • Information Security Strategy & Governance • Application Architecture • Infrastructure & Cloud Architecture • Information Security Architecture • Solution selection, design and architecture • Security frameworks (ISO 27001/27002, CobiT, ISF SOGP, PCI DSS) • Software engineering (J2EE/JAVA,Objective-C, .NET, PHP) • Regulatory compliance (SOX-404, Bill C-198, PIPEDA, PHIPA, FOIPPA) • Digital Forensics and Computer Investigations • Cloud Computing (Azure, Amazon EC2/S3, CloudFront, Route 66) • Vulnerability and Penetration Testing • iOS & Android Application Development & Security

Amin also has a passion for delivering training and workshops. Amin has provided guidance and thought leadership in the security space through the design & delivery of several presentations on conducting effective Threat and Risk Assessments, the use of Digital Forensics in Technical Security (Canadian Technical Security Conference), Security within Cloud Computing, Perspectives on Enterprise Architecture, and Incident Management & Response.

Amin has completed the PCI-DSS QSA certification, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and was awarded the GTA Top Scorers award for the CISM exam.

Specialties:Information Security & Privacy, Technology Strategy, Enterprise Architecture, Web Application Development, Business and Management Consulting

Information security & privacy, strategy and governance, security architecture, program and project management, risk management, TRAs, PIAs, penetration testing, web application security assessments, security source code review, BCP/DRP, ISO27001, ISO27002, COBIT, SOX, PCI, Bill 198, MI 52-109, PHIPA, PIPEDA, FOIPPA