Senior Information Security & IT operations Consultant
Al-Taysir for Information Security Consultation
Total years of experience :24 years, 5 Months
The e-Government program of Jordan was an initiative set and launched to change the way people interact with government agencies to improve their overall experience when dealing with those agencies and requesting various services from them. The e-Government program consists actually of digital interactions between a government and citizens (G2C), government and businesses (G2B), government and employees (G2E), and also between a government and other governments agencies (G2G).
Securing the e-Government program and systems is a critical and a top priority requirement for the success and continuity of such a program, and is also an essential requirement of building people’s trust in the e-Government services.
Responsibilities :
• Managing the Information Security department and team.
• Setting the security strategy for the e-government program.
• Initiating and implementing various security programs and projects which support the security strategy and in compliance with the ISO27001 standard which include but not limited to: Security Governance, Compliance, and Risk management, Physical Security, Access Control, Infrastructure Security, Applications Security, Vulnerability Assessment and Penetration Testing, Identity Management, Security Awareness programs.
• Developing the Business Continuity Plan and recommending DR strategies.
• Securing the e-government operations center and providing security consultation to other governmental entities.
• Reviewing / updating security policies and procedure, and publishing them to all concerned government entities.
• Information Security Assurance and Compliance.
Almezin Group is a group of companies located in Abu Dhabi - UAE which employs about 500 people. The company businesses are structured into constructions ( Almezin Constructions ), hotels ( The Royal International Hotel ), and investments.
Since the group relies entirely on its IT infrastructure to manage their property, clients, reservations, billing, and other services, the IT systems and infrastructure are critical for carrying out a successful business. Ensuring that this infrastructure is up, secure, and running smoothly is one of the highest priorities of the group.
Responsibilities :
• Managing the Information Security of the group and ensuring that IT and security systems reflect business needs and requirements.
• Managing IS budgets, teams, and systems.
• Creating and reviewing IT Security policies, processes, procedures, business continuity plans, and ensuring that access control policies and permissions are designed and implemented properly.
• Ensuring that servers, networking devices, and security systems are running optimally, and that the group assets and clients information are protected from any security threats or breaches.
I(TS)² - www.its2.com is a leading Saudi regional provider of IT security solutions and IT security training. The company is also a very strong player in the MSS ( Managed Security Services ) market throughout its partnership at that time with the largest MSS provider in the world, Dell-SecureWorks, and by having an operational SOC in the region that provides security services to external clients.
Responsibilities :
• Establishing the SOC at Jordan after transitioning the SOC operations from Saudi Arabia to Jordan.
• Managing the SOC daily operations, and leading a team of IT and security analysts throughout projects implementations and 24x7 operations, and through supporting various products and IT / Security solutions that the company provides to its clients within the agreed on SLAs.
• Ensuring that proper security incident handling and security analysis are provided to the clients.
• Creating and reviewing policies, processes, and procedures according to industry standards and guidelines, and maintaining the knowledge base.
• Ensuring that proper configuration management and change management processes are followed for networking and Firewall devices, and ensuring that the latest signatures are pushed to the managed clients’ IDS / IPS devices.
• Working with the SOC team in the configuration and support of clients networking and security devices, and ensuring that access control policies and permissions are configured properly on those devices.
• Overlooking the Vulnerability assessment and Penetration Testing activities conducted for different clients.
SITA is a multinational IT/Telecommunications organization with Headquarters located at Geneva, and has branches in almost every country in the world. The company specializes in developing and providing services, security, and solutions to the airlines industry all over the world.
Responsibilities :
• Leading professional teams of engineers throughout the testing, implementation, and improvement of global solutions and security services provided by the company, and supporting these solutions once implemented for clients within the defined SLAs and KPIs.
• Configuring and supporting Firewalls, Proxy Servers, and Windows Security Policies.
• Working with clients in implementing policies and procedures, DR and BC plans, and fault tolerance.
• Globally monitoring, managing, and supporting hundreds of security and networking devices and servers, and thousands of users’ desktops, and ensuring that these devices are hardened according to security policies and best practices, and ensuring that fault tolerance is built into critical servers.
• Handling security and infrastructure issues and incidents within the defined SLA.
• Studying technical and resource requirements for new security projects, while providing technical consultation to project managers, and support to service delivery managers.