Senior Security Consultant
ESolutions Netcure
مجموع سنوات الخبرة :18 years, 11 أشهر
Working as a senior security consultant to deliver Symantec security solutions and IBM QRadar Security Intelligence Platform.
!
• Maintaining security compliance programs; PCI DSS, PCI Card production physical
security, PCI card production logical security, and internal auditing
• Security assessment for current systems and new projects
• Preparing and conducting security awareness training programs for staff
• Managing and preparing security polices and procedures
• Preparing and arranging Trustwave external\internal network and applicationpenetration testing and external/internal vulnerability scanning
• Evaluating new security products before purchasing.
• Managing and administration on daily basis our security solutions: this includes
administrating, upgrading, configuring, and monitoring the below solutions:
• Symantec PGP Gateway Email Encryption
• Symantec PGP Universal server for Whole Desk Encryption
• Symantec Messaging Gateway
• Symantec Endpoint Protection
• Symantec Mail Security for Exchange
• Cisco Sourcefire Network based Intrusion Prevention system
• Microsoft Certificate Authority server for SSL, MPKI certificates
• F5 Application Security Manager Web Application Firewall
• Trustwave Security Information and Event Management SIEM
• Nessus internal Venerability scanning
• Balabit Shell Control Box - Privilege Identity Monitoring !
Currently, I am working as Information Security Consultant, supporting our clients to achieve Payment Card Industry Data Security Standard PCI DSS compliance. And team leader for our security department that manage a lot of security products like encryption, SIEM, Web filtering, Endpoint protection, WAF, MPKI SSL, and mail archiving.
My main responsibilities are:
• Assist customers to generate PCI scoping documents including Network diagrams, Dataflow diagrams, asset inventory and compiling the Executive summary document.
• Assist in determine PCI scope and the required segmentation to reduce PCI scope
• Polices and Procedures collection and mapping to PCI DSS and assist in generating missing documents.
• Project Management and follow up with concerned parties from client side to accomplish their tasks and answer their PCI questions and any technical inquires related to PCI requirements
• PCI evidence collection
• Provide onsite support and guidance in implementing PCI DSS controls
• Working closely with the assigned QSA and client to assist customer in PCI DSS compliance.
• Providing consultation and second line of guidance and support for our security team in their implementation and technical support.
Senior Systems Engineer
PRO TECHnology Company, Amman - Jordan
I have worked as a senior system engineer and was responsible for a lot of Infrastructure, Endpoint Management, Archiving and Security solutions within PROTECH solutions portfolio, plus working as a senior System administrator for my company network.
My main responsibilities were providing solutions consultation, designing, presentation, implementation, and technical support for the following solutions:
Infrastructure solutions:
- MS Domian: Active Directory 2003 & 2008, Group Policy, DNS, DHCP, ISA, TMG, and WSUS.
- MS Exchange: 2003/2007/2010, and basic knowledge in MS SQL 2005/2008/2012
- OS Clients: Install, manage, configure, and administer Windows operating systems 2003/2008/XP/Vista/7/8, and MAC.
- Virtualiztion: VMware & Hyper-v Virtualization (Basic)
- Implementing and configuring the corporate LAN environment and network printers
Endpoint Management & Monitoring solutions:
- Endpoint Management: ALTIRIS Client Management Suite & Server Management Suite
- SIEM: Trustwave Security and Event Management SEIM
- Monitoring: SolarWinds & ManageEngine Monitoring Solutions.
- Symantec Service & Asset Suite, Symantec ServiceDesk, Helpdesk solution
- PCAnywhere Solution, Leibsoft User Manager Pro, CimTrak File Integrity Monitoring
- Faronics Deep Freeze and Insight
Backup & Archiving solutions:
- Archiving: Symantec Enterprise Vault for Microsoft Exchange, File server, and SharePoint
- System Recovery: Backup Exec System Recovery
Security & Encryption solutions:
- PCI Compliance
- SSL Certificate: VeriSign SSL & MPKI certificates.
- Encryption: PGP Whole disk Encryption & PGP Messaging Gateway
- Endpoint Protection: Symantec Endpoint protection &
- App & Device Control: Lumension Endpoint Management and Security Suite
- Anti Spam: Symantec Mail Security for Exchange & Domino, Symantec Messaging Gateway
- Web Filtering: WebMarshal Secure Web Gateway, ContentKeeper Web Filtering Appliance
- Web Application Firewall: Trustwave Web Application Firewall
- Symantec Control Compliance Suite (Basic), Trustwave Network Access Control (Basic), Symantec Data Loss Prevention (Basic), and Dell SonicWall Network Security
Plus, I am responsible for the following tasks:
- Provide full presales support to the sales team and customers inlcding presentations, demonstrations, and training sessions on the portfolio of products within my scope to our internal team and customers.
- Responding to RFP, RFQ and tenders: preparing technical studies that include solution overview, system features, design, requirements, scope of work, implementation plan and Project documentation.
- Playing a key role in evaluating new products
July/2006 - July 2008
System Engineer,
Smart Systems, Abu Dhabi - UAE
• Working as a resident technical support engineer in Ministry of Finance and
Industry, and Preventive Medical Department -Abu Dhabi
• Support engineer for E-Dirham projects; working along with MOFI and supporting all remote sites in Abu Dhabi, Dubai and Al Ain (Including EPOS
devices, and E-Dirham Vending Machines in UAE)
• Support engineer for Time & Attendance and ID Card Projects; installing,
Configuring, and maintaining Time & Attendance system (CMI Terminal
Readers) . And ID card systems (NISCA ID Card printers, Zebra ID Card
printers)
Working as technical support engineer, supporting customer IT environments including hardware and software.
Working as a resident technical support engineer in Ministry of Finance and
Industry, and Preventive Medical Department -Abu Dhabi
• Support engineer for E-Dirham projects; working along with MOFI and supporting all remote sites in Abu Dhabi, Dubai and Al Ain (Including EPOS
devices, and E-Dirham Vending Machines in UAE)
• B.Sc. Computer Science (Average: good) Applied Science University -Amman • Jordanian Tawjihi, Zarqa - Jordan