عادل محمد

• Managing, reviewing & updating Information Security Policy and sub-polices.
• Managing compliance with company information security policies, PCI-DSS compliance which been achieved by the end of year 2011
• Managing & Maintaining PCI-DSS Compliancy, PCI-DSS is one of the high important security standard similar to other compliance standards like ISO27001 but more focused on Cards Information Industry.
• Managing & Maintaining PCI Card Program Compliancy from following the compliancy for all related Physical and Logical Policies .
• Responsible for conducting security site reviews, writing audit/review reports, reviewing findings, and making recommendations.
• Monitors and evaluates IT unit performance on key security issues and Programs, recommends corrective action programs.
• Responsible for planning, developing and implementing security plans, security programs such as Emergency Response, Physical Security, Information Protection, Incident Management and/or Investigation.
• Maintains knowledge of complex industry trends, current security issues and security technology and update management on risk and threat that could impact company business.
• Responsible for providing leadership, advice and counsel to management on security policy and practices. Identifies exposures and to recommend and develop corrective plans as appropriate.
• Provides leadership, advice and counsel to all security staff in achieving current and long rage strategic program objectives.
• Support management and any other formal outside investigators assists in conducting investigations of significant threats.
• Performs incident analysis and investigation relative to all incidents with advice and closure to all responsible functional management and supporting security management.
• Monitors the internal control systems to ensure that appropriate access levels are maintained and followed.
• Coordinate with IT Management for preparing the disaster recovery plan, and update it on yearly basis.
• Initiates, facilitates, and promotes activities to create information security awareness within the organization.
• Conducting a regular Risk Assessment, maintain it and updating it with any new threats & vulnerabilities.
• Conducting a regular Vulnerability Scanning and Penetration Testing .
• Manage Security Controls for any new Project / New Product .
• Plan for new Security Controls, Technologies and Layers of protection needed on regular basis.
• Business Continuity and Disaster Recovery Plan Management .
• Preparing Incident Management Comprehensive Policy aligned with ITIL standard.
• Leading a success team of Information security officers, sharing knowledge & experience .
• Control Information Security Department budgets and expenditures .

• Plan, organize, direct, control and evaluate the operations of information systems.
• Develop and implement policies and procedures for computer systems operations and development .
• Hire and manage information systems personnel and contractors to design, develop, implement, operate and administer computer and Telecommunications software, networks and information systems.
• Control the computer systems budgets and expenditures .
• Ensure of using latest technology and best practices with hardware and software.
• Data Centre Infrastructure Planning and Managing : Prepare and Managing Data Center including Servers & Network cabinets, ACs, UPSs, GENSET, Monitoring … etc
• Hardware Planning, Managing and configure : Network Devices: Routers, Firewalls, Cisco and IDS/ IPs Devices, Web Application Firewalls and Load Balancers, Network Admission Control Systems .
• Managing Servers: IBM/HP Servers.
• Managing other Communication Devices: like MEGANAC
• Manage High End Storage Devices.
• Important Business & Management Applications : managing, troubleshooting, updating : Archiving System, Risk Management System, Voice Mail & IVR .
• Manage & configure different types of security systems like : Endpoint Antivirus, Vulnerability Scanning Software, Lan Management System, Data Loss Prevention, SIEM & FIM Solutions.
• Managing Microsoft Applications like : Active Directory , WSUS, ISA, Microsoft Group Policy, Exchange.
• Operating Systems managed : UNIX AIX 5.2 / 5.3 , Windows Server 2000, 2003, 2008, 2012 Windows XP, Windows Vista, Windows 7 & above.