Ahmed  Eldeeb, Senior Systems Security Engineer

Ahmed Eldeeb

Senior Systems Security Engineer

Qatar Petroleum

البلد
قطر - الدوحة
التعليم
ماجستير, Cyber Security
الخبرات
19 years, 5 أشهر

مشاركة سيرتي الذاتية

حظر المستخدم


الخبرة العملية

مجموع سنوات الخبرة :19 years, 5 أشهر

Senior Systems Security Engineer في Qatar Petroleum
  • قطر - الدوحة
  • أشغل هذه الوظيفة منذ نوفمبر 2020

• The mandate is to ensure a high-quality security posture for company information systems and provide a trusted path for data and information flows between information systems, either internal or external.
• Identify and manage information systems risks in areas that include, but are not limited to, access control, data protection, traffic flows (i.e., web and email), and malicious code prevention, detection, and response.
• Design, plan, and manage the implementation projects of security controls in line with the risk management process, and considering concepts like Zero Trust, Defense in Depth, Least Privilege, Reduce Attack Surface, and Segmentation and Isolation.
• Develop and maintain procedures for applications and software whitelisting and ensure that all new software is deployed according to the approved procedure.
• Design and manage encryption and cryptographic key management solutions for protecting classified information located on-premises or on Cloud.
• Designing and architecting Public Key Infrastructure to provide authentication and access control functions and mitigate impersonation risks.
• Conduct periodic system security assessments based on ISO/IEC 27001, ISO/IEC 27002, NIST Cyber Security Framework, and NIST SP 800-53 standards, while considering new technologies and emerging threats, with the objective of identifying current systems security posture and determining security gaps or improvements and required security controls.
• Involved in incident response procedure, reporting security incidents or breaches, and containment actions.

Senior Information Security Spesialist في Qatar Chemical & Petrochemical Distribution Company (Muntajat)
  • قطر - الدوحة
  • مايو 2013 إلى نوفمبر 2020

• Analyze the organization’s systems to identify critical systems, technology risks, and security gaps.
• Develop high/low-Level designs with the vision of security infrastructure accounting for emerging new technologies and other variables, including performance, high availability, proactive/retroactive responses, and secure implementations.
• Design, plan, and implement security controls covering risks mapped to threats and vulnerabilities and impact on assets or business functions.
• Initiate and continuously develop a dependable security program focusing on processes, technology, and personnel.
• Lead risk and vulnerability assessments to identify risks and security controls to reduce or mitigate risks.
• Implement security policies and procedures defining how to preserve confidentiality, integrity, and availability of information.
• Define, design, and deploy security mechanisms and controls in line with security policies and procedures goals and objectives.
• Align business activities with security controls offering a trusted information path with the highest possible level of availability and reliability.

Sr. Network and Security Engineer في King Abdulaziz University - Information Technology Deanship - Networks Devision
  • المملكة العربية السعودية - جدة
  • مارس 2010 إلى مارس 2013

• Applied network infrastructure expertise in leading and supervising up to 10 resources in delivering multiple network projects.
• Advised and consulted on network and information security architecture and designs.
• Developed high/low-Level designs with the vision of security infrastructure accounting for emerging new technologies to achieve enhanced performance, high availability, avoid redundancy, and ensure more secure implementations.
• Conducted risk/vulnerability assessment and performance tests to validate solutions and implementations.
• Contributed Business Continuity Plan by designing and implementing redundant disaster recovery sites.
• Served as Incident Response Team Leader while troubleshooting networking and security incidents.
• Analyzed statistics and monitored network traffic for faults, high utilization, and anomalous behavior.
• Implemented and managed firewalls, site-to-site VPN, SSL VPN, IPS, layer 2, and layer 3 security, as well as access control using Cisco ACS to ensure network operation.
• Established and managed application and server load balancers.
• Implemented and coordinated routers and switches for network infrastructure.
• Secured experience in network management and in monitoring and analyzing solutions.
• Led project team in the implementation of networking and information security solutions.
• Performed routine team administration activities, including scheduling, tasking, allocating, monitoring, and providing feedback.

Network and Security Engineer. في AICI-SP American International Contractors Incorporation - Special Projects
  • مصر - القاهرة
  • أغسطس 2007 إلى أكتوبر 2009

• Executed, managed, and completed design and implementation network and security solution projects, reporting to the Project Manager.

Network and Security Engineer. في ASA LLC (American International Contractors Incorporation, Syska Hennessy Group Construction, Inc.,
  • مصر - الإسماعيلية‎
  • أغسطس 2004 إلى أغسطس 2007

• Installed, configured, troubleshot, and monitored infrastructure for diverse clients, including American International Contractors Incorporation, Syska Hennessy Group Construction, Inc., Archirodon Construction Overseas SA, and USA Corps of Engineers.

الخلفية التعليمية

ماجستير, Cyber Security
  • في University of Liverpool
  • نوفمبر 2020
بكالوريوس, Management Information Systems (MIS)
  • في Sadat Academy for Management Sciences
  • يوليو 2003

Specialties & Skills

Information Security Management
IT Security
Security
IS Security
VPN Solusions (Remote Access, Site to Site) Specialist
Incident Response Management
Security Information and Event Management (SIEM)
Cisco ACS
Fireeye Web and E-mail MPS
Cisco ISE
Cisco Ironport (WSA & ESA)
Web Application Firewalls
Sourcefire
Citrix Netscaler
Information Security Management
Security Architecture Design
Firewalls Specialist (ASA, FWSM)
IPS Specialist
Networks and Security Architecture and Design
Identity Management and Access Control (Cisco Secure ACS)
Network Load Balancers
Troubleshooting Networking and Security Incidents
Project Management and Supervision
Cisco Routers and Switches
Network Management, Monitoring and Analysis Solutions.
Business Continuity Planning
High Level/Low Level Designs
Data Loss Prevention (DLP)
Risk Management
IT Governance and Information Security Management System

اللغات

العربية
متمرّس
الانجليزية
متمرّس

التدريب و الشهادات

PECB – ISO/IEC 27032 Lead Cybersecurity Manager # CSLMN1019972-2017-05 (الشهادة)
تاريخ الدورة:
April 2017
صالحة لغاية:
April 2020
PECB – ISO/IEC 27001 Lead Implementer # ISLI1019972-2017-04 (الشهادة)
تاريخ الدورة:
April 2017
صالحة لغاية:
April 2020
Information System Security Architect (CISSP-ISSAP #442327) (الشهادة)
CCIE Security 36897 (الشهادة)
Certified Information Systems Security Professional (CISSP #442327) (الشهادة)
Certified Cloud Security Professional (CCSP #442327) (الشهادة)