Total des années d'expérience: 16 Années, 7 Mois
mars 2015
A À présent
Project Manager & Sr. Information Security & Risk Consultant
à Saudi Arabia Monitory Agency (SAMA)
Lieu :
Arabie Saoudite - Riyad
• Manage a 12-million information security and risk management project for SAMA - SAMA Shield Project
• Assess and develop enterprise wide information security and risk management strategy aligned with business objectives
• Develop information security and risk management framework based on best practices and widely accepted standards such as ISO 27001, NIST SP800-30/37/39/61/66, and ITIL and their integration according to COBIT 5 recommendations
• Build incident response management plan, formulate its process, escalation, and communication plan and the list of CSIRT
• Provide ongoing advisory services to current and desired SOC environment
• Establish semi-annual risk assessment to all SAMA payment systems and evaluate their current and desired maturity level
• Provide threat intelligence; fine-tune its DataFeed to SAMA’s related threats, and integration with current SIEM solution and log management
• Build comprehensive security awareness campaign including awareness plan, awareness improvement reports, awareness provisioning e.g., series of onsite awareness sessions and learning management system (LMS)
• Assess and develop enterprise wide information security and risk management strategy aligned with business objectives
• Develop information security and risk management framework based on best practices and widely accepted standards such as ISO 27001, NIST SP800-30/37/39/61/66, and ITIL and their integration according to COBIT 5 recommendations
• Build incident response management plan, formulate its process, escalation, and communication plan and the list of CSIRT
• Provide ongoing advisory services to current and desired SOC environment
• Establish semi-annual risk assessment to all SAMA payment systems and evaluate their current and desired maturity level
• Provide threat intelligence; fine-tune its DataFeed to SAMA’s related threats, and integration with current SIEM solution and log management
• Build comprehensive security awareness campaign including awareness plan, awareness improvement reports, awareness provisioning e.g., series of onsite awareness sessions and learning management system (LMS)
mars 2013
A décembre 2013
Project Manager and Information Security Consultant
à Saudi Electronic University
Lieu :
Arabie Saoudite - Riyad
• Key player in process development, implementation, and improvement of SEU portal and SingleSignOn projects
• Oversee development, test, deployment, and support
• Collaborate with stakeholders to review requirements and design, communicate statue, and resolve issues in timely manner
• Provide guidelines to technical team through full project lifecycles/milestones and provide outstanding technical assistance as needed
• Continuously identifying and mitigating risks within project scope, cost, and schedule
• Oversee development, test, deployment, and support
• Collaborate with stakeholders to review requirements and design, communicate statue, and resolve issues in timely manner
• Provide guidelines to technical team through full project lifecycles/milestones and provide outstanding technical assistance as needed
• Continuously identifying and mitigating risks within project scope, cost, and schedule
novembre 2012
A mars 2013
Information Security Consultant/Analyst
à Symantec™ Security
Lieu :
Arabie Saoudite - Riyad
• Responsible for monitoring and managing all SOC systems (firewalls, AVs, ID/IPS, & AAA) at Saudi Telecom.
• Give technical and advisory support to the following boxes: FortiGate, Cisco SA, Juniper NetScreen, TippingPoint IPS, remedy, Nagios, Bluecoat, Websense, Brithmail, HP ArcSight, RSA SecueID)
• Support and improve Incident handling operations (ticketing, remediation process, security config. changes)
• Ongoing SOC document improvements (policies/regulations, standards, and procedures)
• Give technical and advisory support to the following boxes: FortiGate, Cisco SA, Juniper NetScreen, TippingPoint IPS, remedy, Nagios, Bluecoat, Websense, Brithmail, HP ArcSight, RSA SecueID)
• Support and improve Incident handling operations (ticketing, remediation process, security config. changes)
• Ongoing SOC document improvements (policies/regulations, standards, and procedures)
août 2008
A janvier 2009
Information Security Specialist
à Royal Saudi Air Defense Forces
Lieu :
Arabie Saoudite - Riyad
• Information Security Specialist crafting and revising RFP for an enterprise wide security project
• A member of group assigned to evaluate responses to RFP and provide inputs and recommendations
• Conducting “Proof of Concept” test on GualysGuard® PCI compliance and SOC components (e.g., online monitoring of network security components (Juniper® NetScreen firewall, unified access control, network and user assessment, and IRP)
• Refining and developing missing security policies, standards, and procedures
• Provide ongoing network and InfoSec consultancy
• A member of group assigned to evaluate responses to RFP and provide inputs and recommendations
• Conducting “Proof of Concept” test on GualysGuard® PCI compliance and SOC components (e.g., online monitoring of network security components (Juniper® NetScreen firewall, unified access control, network and user assessment, and IRP)
• Refining and developing missing security policies, standards, and procedures
• Provide ongoing network and InfoSec consultancy
janvier 2007
A juin 2008
Network LAB Supervior
à DePaul University
Lieu :
Etats Unis
• Practical design and engineering of security infrastructure.
• Business Continuity and Disaster Recovery Plan
• In-depth understanding and configuring network security infrastructure technologies such as firewalls, Virtual Private Networks (VPNs), Intrusion Detection and Prevention Systems (IDS/IPS), Access Control Lists (ACLs)
• Design WAN infrastructure for remote sites and performance troubleshooting
• SNMP management and monitoring
• Use of vulnerability assessment and PenTest tools
• Practicing Snort IDS and developing rule set
• High level practice of current IT/IS industry frameworks (COBIT, ISO, CMM),
• Enterprise security Infrastructure controls and regulatory compliance (HIPAA, NERC CIP, GLBA, SOX)
• Manage global information systems (IS/IT) using the Center for International Development at Harvard University (CIT) framework and overcome the complex issues that may arise during the project initial planning, implementation, and maintenance (cost, cultural, distance, etc…)
Professional Certification Attended:
- CISSP Bootcamp (Chicago, IL)
• Business Continuity and Disaster Recovery Plan
• In-depth understanding and configuring network security infrastructure technologies such as firewalls, Virtual Private Networks (VPNs), Intrusion Detection and Prevention Systems (IDS/IPS), Access Control Lists (ACLs)
• Design WAN infrastructure for remote sites and performance troubleshooting
• SNMP management and monitoring
• Use of vulnerability assessment and PenTest tools
• Practicing Snort IDS and developing rule set
• High level practice of current IT/IS industry frameworks (COBIT, ISO, CMM),
• Enterprise security Infrastructure controls and regulatory compliance (HIPAA, NERC CIP, GLBA, SOX)
• Manage global information systems (IS/IT) using the Center for International Development at Harvard University (CIT) framework and overcome the complex issues that may arise during the project initial planning, implementation, and maintenance (cost, cultural, distance, etc…)
Professional Certification Attended:
- CISSP Bootcamp (Chicago, IL)
juillet 2002
A avril 2006
Network Engineer
à JASH
Lieu :
Arabie Saoudite
• Joined RSADF-RCD as a fresh graduate engineer (contractor via Jash Company) assigned to administrate currently deployed MS Windows 2k, 2003 infrastructure, Exchange 2k.
• Implement and Windows 2k, 2003 Active Directory services and Exchange on multiple remote sites of RSADF units.
• Administrating & managing VoIP Nortel Passport 8600 & 8300 core switches, using CLI, Device Manager (DM) & Optivity server.
• Configuring & managing VLANs’ ACL & filtering.
• Configuring Cisco 1600, 1700 & 2600 series routers.
• Member of a team responsible of establishing & configuring WAN links “E1 channels” in different branches of RSADF kingdom wide, configuring Paradyne DSLAM to de-multiplex E1 links & cross connect E1’s time slots for different pre-defined services.
• Install & administrate Nortel BayStack 460 & 470 Edge switches feature PoE for IP phones as well as 3com layer 2 switches
• Managing MacFee Net shield application & regular Auto update
• Configuring DSL & NTU modems
• Managing and designing IP Address Scheme for both internet & intranet
Professional Certification Attended:
• Network Security Training with workshops held by NIXU Company (Riyadh, Saudi Arabia)
• Cisco CCNA (Riyadh, Saudi Arabia)
• Nortel Passport 8600 & 8300 (Riyadh, Saudi Arabia)
• Securing Cisco IOS Networks “SECUR” (Riyadh, Saudi Arabia)
• Symantec Security Training “Hacking Exposed” (Riyadh, Saudi Arabia)
• 4 courses of MCSE track (Riyadh, Saudi Arabia):
- Supporting MS-Windows 2k professional & server
- Implementing MS-Windows 2k Network Infrastructure
- Implementing & Administrating Windows 2k Directory Structure
- Implementing & Managing Exchange 2000
• Implement and Windows 2k, 2003 Active Directory services and Exchange on multiple remote sites of RSADF units.
• Administrating & managing VoIP Nortel Passport 8600 & 8300 core switches, using CLI, Device Manager (DM) & Optivity server.
• Configuring & managing VLANs’ ACL & filtering.
• Configuring Cisco 1600, 1700 & 2600 series routers.
• Member of a team responsible of establishing & configuring WAN links “E1 channels” in different branches of RSADF kingdom wide, configuring Paradyne DSLAM to de-multiplex E1 links & cross connect E1’s time slots for different pre-defined services.
• Install & administrate Nortel BayStack 460 & 470 Edge switches feature PoE for IP phones as well as 3com layer 2 switches
• Managing MacFee Net shield application & regular Auto update
• Configuring DSL & NTU modems
• Managing and designing IP Address Scheme for both internet & intranet
Professional Certification Attended:
• Network Security Training with workshops held by NIXU Company (Riyadh, Saudi Arabia)
• Cisco CCNA (Riyadh, Saudi Arabia)
• Nortel Passport 8600 & 8300 (Riyadh, Saudi Arabia)
• Securing Cisco IOS Networks “SECUR” (Riyadh, Saudi Arabia)
• Symantec Security Training “Hacking Exposed” (Riyadh, Saudi Arabia)
• 4 courses of MCSE track (Riyadh, Saudi Arabia):
- Supporting MS-Windows 2k professional & server
- Implementing MS-Windows 2k Network Infrastructure
- Implementing & Administrating Windows 2k Directory Structure
- Implementing & Managing Exchange 2000
juin 2001
A décembre 2001
Co-op Trainee
à Samba
Lieu :
Arabie Saoudite
• HP Openview administration
• IDS reporting and sensor monitoring
• WAN/LAN configuration using Cisco routers
• Site visit including data center, telecom closets, and operations
• IDS reporting and sensor monitoring
• WAN/LAN configuration using Cisco routers
• Site visit including data center, telecom closets, and operations
Partager sur Facebook
Partager sur Twitter
Partager via Email