Cybersecurity Strategist & Cloud Security Architect
Dxc.technology
مجموع سنوات الخبرة :21 years, 8 أشهر
Managing the MEA region for ent. security architectures and cloud security.
- Managed security for multi-year end-to-end development of an integrated national labor market (complex IT platform) for government ministry - covering security architecture using SABSA, personal identifiable information (PII) assurance framework, threat modeling, risk assessment, penetration testing cycles, DevSecOps, standardization, processes and security operations governance.
- Worked with vendors and partners to identify, evaluate, and test solutions.
- Developed and maintained Business Continuity and Disaster Recovery Plans.
- Strengthened organization image and reputation by handling security project and deliveries purely by AEC with in consortium.
- Hired, supervised, guided and headed teams of subject matter experts, penetration testers, SOC analysts and IAM engineers.
- Produced security matrices for monitoring and reporting.
- Provided strategic consultancy by leading technical proposals.
- Developed strategy for securing ARABSAT satellite communication for KACST
- Delivered high-level security architecture using TOGAF and ArchiMate, road map and security operation center (SOC) consultancy while working with PRAXIS Consulting.
- Managed governance, risk and compliance for 16 offices in three countries. Directed, coached and managed team of 15+ information security consultants and engineers
- Served customers from public and defense sectors as consultant for secure computing covering architectures, designs and process using IBM System Rational Architect
- Developed architecture and Implemented integrated management system for ISO20000, ISO27001 and BS25999 standards.
- Delivered and operated 3-Tier large-scale Public key Infrastructure (PKI) architecture and effectively rolled out for secure email communication and digital signatures.
- Developed risk assessment application architecture and RDBMS model using UML.
- Created HLD and LLD design documents.
- Utilized products from IBM, CISCO, EMC/RSA, F5, Symantec, Fortinet and Juniper.
- Implemented ISO27001 and achieved certification
- Provided pre-sales technical support for business development
- Managed implementation and operations for ISP setups at co-location and telecom service providers
- Served as lead engineer for network and security operation center
- Hardened network and servers and infrastructure
- Installed and configured satellite downlinks and wireless (Radio) data connectivity
- Provided systems, network and security support to corporate clients
- Managed domains and hosting services for customers
Final Thesis: Crypytography
Information Security
Maths