Project Manager & Sr. Information Security & Risk Consultant
Saudi Arabia Monitory Agency (SAMA)
Total years of experience :16 years, 8 Months
• Manage a 12-million information security and risk management project for SAMA - SAMA Shield Project
• Assess and develop enterprise wide information security and risk management strategy aligned with business objectives
• Develop information security and risk management framework based on best practices and widely accepted standards such as ISO 27001, NIST SP800-30/37/39/61/66, and ITIL and their integration according to COBIT 5 recommendations
• Build incident response management plan, formulate its process, escalation, and communication plan and the list of CSIRT
• Provide ongoing advisory services to current and desired SOC environment
• Establish semi-annual risk assessment to all SAMA payment systems and evaluate their current and desired maturity level
• Provide threat intelligence; fine-tune its DataFeed to SAMA’s related threats, and integration with current SIEM solution and log management
• Build comprehensive security awareness campaign including awareness plan, awareness improvement reports, awareness provisioning e.g., series of onsite awareness sessions and learning management system (LMS)
• Key player in process development, implementation, and improvement of SEU portal and SingleSignOn projects
• Oversee development, test, deployment, and support
• Collaborate with stakeholders to review requirements and design, communicate statue, and resolve issues in timely manner
• Provide guidelines to technical team through full project lifecycles/milestones and provide outstanding technical assistance as needed
• Continuously identifying and mitigating risks within project scope, cost, and schedule
• Responsible for monitoring and managing all SOC systems (firewalls, AVs, ID/IPS, & AAA) at Saudi Telecom.
• Give technical and advisory support to the following boxes: FortiGate, Cisco SA, Juniper NetScreen, TippingPoint IPS, remedy, Nagios, Bluecoat, Websense, Brithmail, HP ArcSight, RSA SecueID)
• Support and improve Incident handling operations (ticketing, remediation process, security config. changes)
• Ongoing SOC document improvements (policies/regulations, standards, and procedures)
• Information Security Specialist crafting and revising RFP for an enterprise wide security project
• A member of group assigned to evaluate responses to RFP and provide inputs and recommendations
• Conducting “Proof of Concept” test on GualysGuard® PCI compliance and SOC components (e.g., online monitoring of network security components (Juniper® NetScreen firewall, unified access control, network and user assessment, and IRP)
• Refining and developing missing security policies, standards, and procedures
• Provide ongoing network and InfoSec consultancy
• Practical design and engineering of security infrastructure.
• Business Continuity and Disaster Recovery Plan
• In-depth understanding and configuring network security infrastructure technologies such as firewalls, Virtual Private Networks (VPNs), Intrusion Detection and Prevention Systems (IDS/IPS), Access Control Lists (ACLs)
• Design WAN infrastructure for remote sites and performance troubleshooting
• SNMP management and monitoring
• Use of vulnerability assessment and PenTest tools
• Practicing Snort IDS and developing rule set
• High level practice of current IT/IS industry frameworks (COBIT, ISO, CMM),
• Enterprise security Infrastructure controls and regulatory compliance (HIPAA, NERC CIP, GLBA, SOX)
• Manage global information systems (IS/IT) using the Center for International Development at Harvard University (CIT) framework and overcome the complex issues that may arise during the project initial planning, implementation, and maintenance (cost, cultural, distance, etc…)
Professional Certification Attended:
- CISSP Bootcamp (Chicago, IL)
• Joined RSADF-RCD as a fresh graduate engineer (contractor via Jash Company) assigned to administrate currently deployed MS Windows 2k, 2003 infrastructure, Exchange 2k.
• Implement and Windows 2k, 2003 Active Directory services and Exchange on multiple remote sites of RSADF units.
• Administrating & managing VoIP Nortel Passport 8600 & 8300 core switches, using CLI, Device Manager (DM) & Optivity server.
• Configuring & managing VLANs’ ACL & filtering.
• Configuring Cisco 1600, 1700 & 2600 series routers.
• Member of a team responsible of establishing & configuring WAN links “E1 channels” in different branches of RSADF kingdom wide, configuring Paradyne DSLAM to de-multiplex E1 links & cross connect E1’s time slots for different pre-defined services.
• Install & administrate Nortel BayStack 460 & 470 Edge switches feature PoE for IP phones as well as 3com layer 2 switches
• Managing MacFee Net shield application & regular Auto update
• Configuring DSL & NTU modems
• Managing and designing IP Address Scheme for both internet & intranet
Professional Certification Attended:
• Network Security Training with workshops held by NIXU Company (Riyadh, Saudi Arabia)
• Cisco CCNA (Riyadh, Saudi Arabia)
• Nortel Passport 8600 & 8300 (Riyadh, Saudi Arabia)
• Securing Cisco IOS Networks “SECUR” (Riyadh, Saudi Arabia)
• Symantec Security Training “Hacking Exposed” (Riyadh, Saudi Arabia)
• 4 courses of MCSE track (Riyadh, Saudi Arabia):
- Supporting MS-Windows 2k professional & server
- Implementing MS-Windows 2k Network Infrastructure
- Implementing & Administrating Windows 2k Directory Structure
- Implementing & Managing Exchange 2000
• HP Openview administration
• IDS reporting and sensor monitoring
• WAN/LAN configuration using Cisco routers
• Site visit including data center, telecom closets, and operations
Research interest and conference papers (Cloud/Grid Computing, Mobile Security, Intrusion Detection, Telecommunication and Networking, Information and Network Protection, self-learning, self-aware cyber security technologies) – in both technical and theoretical views (models, frameworks, protocol enhancements based on existing theories or data that drives new theories).
*The program is offered by DePaul University – CTI College which considered one of the few nationwide universities designated as a National Center of Academic Excellence in Information Assurance (IA) education by: o Department of Homeland Security (DHS) and o National Security Agency (NSA)