Senior Cyber Security Engineering Manager
Careem
Total years of experience :29 years, 5 Months
Responsible for Cyber Security Operations of Careem’s AWS based infrastructure and applications. The job responsibilities include
24/7 SOC Operation management
Capacity building and skill development of SOC team
SOC Playbooks and Process development
SOC KPI and dashboard development and reporting
Ransomware protection of AWS instances, servers and endpoints
SOC/SIEM Monitoring, Alerts triage, Ticketing and adverse event/incident handling and response
Incident management handling, Data Loss Prevention, User behavior analytics, Email protection and Zero trust network access
Achievements
66% Reduction in unresolved tickets with 100% reduction in critical and 82% reduction in high priority tickets
Ransomware protection coverage enhancement from 50% to 90%
Improvement in MTTD, MTTA and MTTR
SOC Duty Roaster Plan, Skill Assessment and Training Plan development
Organization and Operational Structure development
Team Engagement plan
Onboarding and Knowledge transfer process/documentation
Incident Handling and Incident Management Process Development and Table Talk Exercises
Responsible for Cyber Security Operations of PTCL and Ufone Infrastructure including Integrated SOC, Vulnerability Management and Penetration Testing, Cyber Security Strategy formulation and Projects
Cyber Security Strategy formulation and Security project initiation and deployment
Presenting the Information Security Status to the Information Security Steering Committee (ISSC)
24/7 Integrated SOC operation management of PTCL and Ufone
Improvement in SOC operations and incident response plan to enhance the cyber security posture of the company
Ensuring Cyber Security KPI and KRIs are met, Control Effectiveness measurement for Enterprise Risk Management
Built security in design by incorporating information security requirements in the project/service inception phase till deployment and operations
IS security assessments including Vulnerability assessments, design reviews, CIS benchmark compliance, integration of log sources with SIEM, monitoring and analysis and incident response
Review and compliance readiness of PTA’s Critical Telecom Data and Infrastructure Security Regulations (CTDISR-2020)
Security organization development
Responsible for Network and Information security of PTCL IT and Technology Infrastructure, products, and services. The main responsibilities include
Development and enforcement of information security policies and procedures
Develop Information Security Strategy and manage opex/capex
Network Information Security reporting including NIS dashboards/KPIs, Key Risk Indicator and trend analysis
Plan and execute Security Awareness and skill/capacity development
Ensure the risks of IT and Technology applications, systems and nodes are identified and mitigated in timely manner
Ensure security hardening of the devices and systems against CIS benchmarks
Review and enforce regulatory and international standards to meet Compliance requirements
Manage Security Operations Centre (SOC) to ensure proactive monitoring and analysis of events for taking mitigation action against offenses/alerts and incident response management
Manage vulnerability management and penetration testing program to identify vulnerabilities and mitigation plans
Support and Coordination for PCI DSS of PTCL Cloud Service and ISO 27K compliance of PTCL Data Centre and SOC
Support the MSSP team for product evaluation and technical proposal/solution development
Implementation of Information Security Classification (AIP) and Mobile Application Management (Intune)
Follow up with IT & Technology teams to get the IS audit and external audit’s IS observations fixed
Products - SIEM (IBM Qradar & Resilient), Endpoint Security (Kaspersky), Web Security Gateway (Fireeye), Vulnerability Assessment and Compliance (Qualys Guard), Penetration Testing, Security Awareness Program (Phishrod)
Responsible for Core network consisting of OCS, SMSC, NSS, VAS and Packet Core Network Planning of LTE and CDMA2000 1x/EVDO Rev-A/B Network (3G/4G mobile broadband) - Huawei Core, IN and VAS nodes, OCS, ZTE RAN nodes, OCS, EPC, eNB
Leading PS Core Consolidation project -Synergy Project between PTCL and Ufone
Evaluating TDD LTE 3.5 GHz, RF Audit RFP
Representing PTCL in NFV, SDN and cloud initiatives of Etisalat Group
Cloning Mitigation in EVDO Network
Responsible for Core, Access, VAS and Packet Core Network Planning of CDMA2000 1x/EVDO Rev-A/B Network (3G mobile broadband) - Huawei RAN, Core, IN and VAS nodes, ZTE RAN nodes
Transforming commercial team’s rollout and vas requirements into network plans considering traffic trends, subscriber growth pattern, network capacity, footprint and future network evolution
Resource redistribution and optimization based on ARPU, Revenue/BTS, Usage Pattern, Pricing and Loading of different network elements
Network Solution Design, RFP Preparations, technical evaluations, price negotiation and contract finalization
Core and access network traffic analysis, KPI monitoring to ensure QoS
Technical Support to the network development and operations teams
Technical support to commercial team for product and service development
Design of packet core network topology for the HPRD network
Technical audit of core network for optimization of network resources and resolution of slow browsing issues in the mobile data network
Coordination and interaction with commercial, billing and customer care, regulatory, procurement wings and vendors
Chairman technical evaluation committee for 3G EVDO Rev-A/Rev-B projects, Electronic voucher center, Packet Core Network expansion project and purchase of CPEs
Preparation of RFPs for 3G EVDO Rev-A/B RAN network, Packet core network, AAA redundancy project, Online Charging System (OCS)
Member PTCL Team for LTE and EPC trial project (Huawei & ZTE)
Responsible for Core Network planning and dimensioning of CDMA2000 1x/EVDO based WLL network consisting of soft switches, Media gateways, MSCs, HLRs, WIN, SMSC, RBT Server and PDSN
Designing Numbering, Dialing and Routing plans, planning core network architecture, IP bearer network and signaling network plan
Coordinating with the regional core network and vendor teams for smooth and timely deployment and integration of the network elements and interacting with the vendors to resolve interoperability issues and ensuring that the project implementation is as per contract specifications
Planning re-hosting / cutover of different network elements, preparing SCP subscriber distribution plans and Scheduling software upgrades
Follow up with the vendors and maintenance teams for resolution of the PAT discrepancies.
Traffic and Performance Analysis of the bearer and signaling network for achieving optimal KPIs to ensure QoS and issue instructions for rerouting and transmission media/signaling links augmentation
Coordinating with the PTCL maintenance teams and vendors for early rectification of faults and technical issues.
Coordinating with the BSS planning, Optimization, WIN, Operation and maintenance, network management, interconnect policy and regulation, sales/marketing, customer care departments.
Contributed to the SOPs for the Limited Mobility, Automatic Re-parenting/expansion, Access Code Registration and User Zone planning and implementation etc.
Represented PTCL in the IOT meetings between Motorola and Huawei in Shenzhen, China in Nov 2005
Member of VMSC Load Testing Team that conducted testing in Xian, China in June 2007
Member of Technical Evaluation Committee of PDSN Expansion Project
Familiar with Mapinfo, Global Mapper and Aircom's Planning Tool
Responsible for Core Network planning and dimensioning of CDMA2000 based WLL network consisting of soft switches, Media gateways, MSCs, HLRs, WIN and PDSN
Scope of the job also includes defining Numbering, Dialing and Routing plan, coordination and monitoring the Core Network Deployment and Integration, interacting with vendors to resolve the interoperability issues.
Contributed to the SOPs for the Limited Mobility, Automatic Re-parenting/expansion, Access Code Registration etc.
Traffic Analysis and transmission planning for the Core Network
Familiar with Mapinfo, Global Mapper and Aircom's Planning Tool
* Manage a team of Engineers and Technicians and provide technical support and assistance in the areas of switching network of more than 27 SSP-SN , 100 LEs and 4 STP's
* Strong and in depth knowledge of the analysis and design of 5ESS Translations for SS7/R2 Trunk configurations for the PSTN, GSM, Audio Text Service Provider, Prepaid Card Phone Companies, Next Generation Networks as well as ISDN BRA / PRA solutions, various PABX configurations, Announcements, V 5.2 RAN, IN, UAN and Premium Rate Service and Emergency numbers.
* Design and Programming of RDBMS of 5ESS Queries to facilitate 5ESS Translations (MS ACCESS) and automation of the processes
* Inputs to Order Tracking System, NMS Overlay Projects, SECM Evaluation, Centralized TDO Implementation Project, Remote Test Equipment Project and Data ware house Projects
* Coordination with NOCs, ETAC, EWSD, GSM, SS7, IN, marketing groups and vendors and customers to resolve interface problems and for introduction of new services and features in the exchanges
* Managed a team of Engineers and Technicians working in SUN SPARC workstations based Network Management Center (NMC) of 20 Alcatel E-10 B exchanges and 100 CSND’s.
* Member of Preliminary Acceptance Testing Committee of NMC
* Testing and Commissioning expansions in Alcatel exchanges
* All kinds of Data base creations, modifications and trouble shooting - Analysis/Pre-Analysis of Digits, Routing, Charging, Zoning, SS7 link management and Password Management, etc
* Monitoring, scheduling and supervising centralized operation and maintenance of Alcatel exchanges, Alarm and Fault management
* Automation of works by macros and scripts
* Traffic analysis reports, O & M activity reports and presentations to higher management
* Worked in AXE - 10 mobile telephony exchange
* Managing a team of Engineers and Technicians
* Planning, installation and commissioning of more than 125 Pay Card Phones and line protection units in the Region
* Meet management's installation and fault ratio targets to boost sales
* Testing and Commissioning of Wireless Pay Card Phones (WLL)
* Installation and Commissioning of Micro-Wave link with PSTN
* Working in NT DMS100 Switch and NT 400DR RBS
* Major : Electronics and Communication * Overall 84%