FOR OFFICERS IN PPG-03 and Above CONFIDENTIAL

PUNJAB LAND RECORDS AUTHORITY

ANNUAL ASSESSMENT REPORT

FOR THE PERIOD 01-07-2023 To 30-06-2024

PART-I
(TO BE FILLED IN BY THE OFFICER/ OFFICIAL REPORTED UPON)

1. Name (in block letters). HAFIZ SAFTAIN ALI TABASUM

2. Father Name. (in block letters). ASGHAR ALI

3. Designation: Assistant Director (IT Security & Compliance)

4. CNIC No. 34602-6828747-1

4. Date of Birth. 15-05-1994

5. Date of joining in PLRA (PMU). 11-April-2022

6. Post held during the period (with PPG). PPG-6

7. Academic qualifications. MS/Mphil Computer Science

2 years, 4 months, and 25 days

8. Period served in present post.

Muhammad Nadeem (Deputy Director IT Security)

1. Under the reporting Officer ___________________________________
 PART- II
(TO BE FILLED IN BY THE OFFICER REPORTED UPON)

I. Job description
• Manage the Security Operations Center (SOC) at the Punjab Land Records Authority (PLRA), ensuring the continuous
monitoring and defense of the organization's IT infrastructure against cybersecurity threats.

• Oversee the deployment, configuration, and management of the Endpoint Detection and Response (EDR) solution,
CrowdStrike, to ensure comprehensive endpoint protection across the organization

• Conduct proactive threat hunting and real-time monitoring of security incidents, utilizing advanced analytics and detection tools
to swiftly identify and respond to potential security breaches.

• Liaise with vendors concerning security incidents and tool performance, ensuring timely and effective communication.

• Regularly assess the efficiency of security tools, ensuring they are functioning optimally and meet the organization's security
needs.

• Enforce compliance with PLRA’s domain and hostname schemes to ensure quick identification and efficient management of
systems, including Head Office, ARC's , QARC's and MARC's.

• Worked on server clustering, business continuity and disaster recovery planning (BCP/DRP), and important data backup and
recovery solution management.

• Maintain comprehensive records of all security incidents, including the steps taken for mitigation, and contributing to the
continuous improvement of security protocols and policies.

2. Brief account of achievements during the period supported by statistical data where possible. Targets given and actual
performance against such targets should be highlighted. Reasons for shortfall, if any, may also be stated.

• The target of joining endpoints to the domain has been successfully achieved, including those at the head office, ARC's,
QARC's, and MARC's, with over 90% of workstations now integrated into the PLRA domain.

• The hostnames of all workstations, including those at the head office,Data Center, ARC's, QARC's, and MARC's, have been
updated according to the PLRA-approved pattern for quick system identification.

• All servers and endpoints are monitored, and if any fall into Reduced Functionality Mode or become inactive, the data center
team is immediately informed to take appropriate action, ensuring the servers/endpoints return to normal operation to avoid
any service disruption.

• The SOC project with Trillium Information Security Systems was successfully completed, enhancing PLRA's security posture
with robust threat detection, proactive incident response, and detailed, actionable reports.

• The InsightVM Rapid7 project was successfully implemented, significantly enhancing PLRA's security framework with
continuous vulnerability assessment, prioritization, and remediation.

• Implemented CIS hardening standards to strengthen PLRA's security posture, effectively assessing and enhancing system
configurations for improved resilience and compliance with best practices.
 PART -Ill
(EVALUATION BY THE REPORTING OFFICER)

Please comment on the officer/ official performance on the job as given in Part II (2) with special reference to his
knowledge of work, ability to plan, organize and supervise, analytical skills, competence to take decisions and quality
and quantity of output. How far was the officer able to achieve the targets? Comment on the officer's contribution, with
the help of statistical data, if any, in the overall performance of the organization. Do you agree with what has been stated
in Part II (2)?

A B C D

Quality of work
Generally produces work of
l Always produce work of exceptionally high
poor quality.
Quality

Output of work Always behind schedule

2 Always up-to-date; accumulates no Arrears very slow disposal.

1. Integrity (Morality, uprightness and honesty)

A B C D

Integrity
a. General Unscrupulous
Irreproachable
I.
b. Intellectual
Devious; Sycophant
Honest & straightfo1ward
3. Pen picture including the officer's strengths and weaknesses with focus on emotional stability, ability
to work under pressure, communication skills and interpersonal effectiveness. (Weakness will not be
considered as adverse entry unless intended to be treated as adverse).

4. Area and level of professional expertise with suggestions for further extension in contract.

5. Training and development needs.

6. Overall grading

Very Good Good Average Below Average

7. Fitness for retention I extension in contract: -

8. Name of the reporting officer ……………………………… Designation .................................

Signature ……………………….……... Date…………………….………………

 PART IV
(REMARKS OF THE COUNTERSIGNING OFFICER)

1. How often have you seen the work of the officer reported upon?

Very frequently Frequently Rarely Never

2. How well do you know the officer? If you disagree with the assessment of the reporting officer, please give
reasons.

3. Overall grading

Very Good Good Average Below Average

4. Recommendation for retention / extension in contract:

5. Evaluation of the quality of assessment made by the reporting officer.

Exaggerated Fair Biased

6. Name of the countersigning officer …………………………………….… Signature …………………………..

(capital letters)

Designation .......................................................... Date…….…………………..……………

GUIDELINES FOR FILLING UP THE AAR

1. Parts I and II are to be filled by the officer/ official under report. Part Ill will be filled by the Reporting Officer, while the
Countersigning Officer will fill Part IV.
2. The officer under report should fill Part II (2) of the form as objectively as possible and short term and long term targets
should be determined/ assigned with utmost care. The targets for each job may be formulated at the beginning of the year
wherever possible. In other cases, the work performed during the year needs to be specifically mentioned.
3. Assessment by the Reporting Officers should be job-specific and confined to the work done by the officer/ official during
the period under report. They should avoid giving a biased or evasive assessment of the officer under report, as the
Countersigning Officers would be required to comment on the quality of the assessment made by them. ·
4. The Reporting Officers should carry out their assessment in Part Ill through comments against each characteristic. Their
opinions should represent the result of careful consideration and objective assessment so that, if called upon, they could
justify the remarks/comments. They may maintain a record of the work done by the subordinates in this regard.
5. The Reporting Officers should be careful in giving the overall and comparative grading. Special care should be taken so
that no officer is placed at an undue disadvantage.
6. The Countersigning Officers should weigh the remarks of the RO against their personal knowledge of the officer/ official
under report, compare him with other officers/ officials of the same grade working under different Reporting Officers, but
under the same Countersigning Officer, and then give their overall assessment of the officer. In case of disagreement
with the assessment done by the Reporting Officer, specific reasons should be recorded by the Countersigning Officers
in Part IV (2).
7. The Countersigning Officers should make an unbiased evaluation of the quality of performance evaluation made by the
RO by categorizing the reports as exaggerated Fair or biased. This would evoke a greater sense of responsibility from
the reporting officers. ·
8. The Countersigning Officers should underline, in red ink, remarks which in their opinion are adverse and should be
communicated to the officer reported upon. All adverse remarks whether remediable or irremediable should be
communicated to the officer under report, with a copy of communication placed in the official record. Reporting Officers
should ensure that they properly counsel the officer under report before adverse remarks are recorded.
9. The Reporting and Countersigning Officers should be clear, direct, objective and unambiguous in their remarks. Vague
impressions based on inadequate knowledge or isolated incidents should be avoided.
10. Reports should be consistent with the pen picture, overall grading and comparative grading.

IMPORTANT
1. The officer/ official to be reported upon should submit the AAR Form after completing Part-I & II to the Reporting Officer
on 1st day of July.
2. The Reporting Officer should record his remarks in relevant parts by the 1 5th of July and pass on the report to the
Countersigning Officer.
3. The Countersigning Officer should record his remarks by the end of July i.e. 31st of July.
4. In the event of non-submission of AAR Form by the officer / official to be reported upon within stipulated time, he/ she
shall not be considered for contract extension and for financial incentives if any.
5. For Annual Assessment Reports of Assistant Directors & above in Head Office, Reporting Officer would be ADG (Admin./
Technical) whereas, reports would be countersigned by DG PLRA.
6. For Annual Assessment Reports of Office Assistants / Computer Operators and below in the Head Office, Additional
Directors / Deputy Directors concerned would be Reporting Officers. whereas, reports would be countersigned by
concerned Directors.