Information and Cybersecurity Senior Manager
AL Rajhi Bank
مجموع سنوات الخبرة :11 years, 3 أشهر
o Establish Information and Cybersecurity policy.
o Establish Information and Cybersecurity program.
o Create and design the security controls in the bank environment especially for new financial systems.
o Management of security approaches for IT system with a networking system.
o Perform time-to-time system and network processing inspection for security updates.
o Manage information and cybersecurity risk assessments, propose mitigation controls and procedures in a business context, and define information and cybersecurity requirements for new and ongoing projects and business activities, as well as managing the process of information and system classification.
o Conduct an audit procedure to initiate the security and safety strategies and measures.
o Measure the performance of the information and cybersecurity program and measure the defined key risk indicators.
o Prepares and implements awareness programs for the Bank's staff on aspects related to combating financial crimes.
o Implement the proper solutions and platforms that will defense and mitigate all security risks coming from internal or external resources.
o Monitor the performance of employees of the job and participate in the assessment of their performance and their training and motivation and career affairs in coordination with the direct responsibility and human resources management.
o Maintain the standard of information security laws, procedure, policy and services.
o Performing standards assessments such as PCI and ISO/IEC 27001 standards.
o Develop and/or maintain appropriate Segregation of Duties within and across applications.
o Install, modify, enhance and maintain security devices or platforms.
o Work on determining acceptable risk levels for the enterprise and ensuring the IT environments are adequately protected from potential risks and threats.
o Participate in development and implementation of the appropriate and effective controls to mitigate identified threats and risks.
o Follow-up on detected security issues and implement solutions to reduce security risks.
o Assist in the research, development, communication, maintaining and working with the operational units on the enforcement of IT security architecture, policies, procedures, solutions and standards.
o Oversee incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary.
o Responsible for staying abreast of the latest industry security practices and technologies.
o Meet with Business Owners to analyze, document and define requirements associated with new development or maintenance and enhancements to existing security roles and permissions. Review completed roles/permissions with users to ensure requirements are fully met.
o Deliver services that meet regulatory specifications. Work with internal and external auditors to document and confirm that all security administrative duties are properly performed as well as demonstrate overall compliance.
o Working on the below;
Firewalls: Palo Alto, Cisco ASA, Cisco FTD, Fortinet, WatchGuard.
F5: LTM and advance WAF.
Qualys vulnerability and compliance scanner. Reporting and tracking vulnerabilities’ status with system owners.
Firemon: Managing firewalls access rules, risk analyzing, access rules optimizing and changes tracker.
Qradar SIEM solution.
Level-2 SOC analyst with tracking and reporting incidences.
ThreatQ TIP solution. Threat intelligence platform.
IBM Security Guardium Data Protection. Monitoring and controlling databases admins’ activates and permissions.
Infoblox: Manage, control and optimize secure DNS, DHCP and IPAM.
Arbor. Mitigating DDOs attacks.
Microsoft Intune for securing mobile devices - MDM.
SWIFT-DFA.
Symantec email security gateway.
Vectra; AI cybersecurity that detects and responds to hidden cyber attackers inside enterprise networks.
Review PCI maturity level in all security devices and platforms.
Review and resolve audit and risk notes.
Review and hardening OWASP top 10 applications security risk in the environment.
- Information Security Officer. Driving the IT security strategy and implementation forward whilst protecting the business from security threats and cyber-hacking.
- Vulnerabilities tester.
- Ethical Hacker.
- Unified Thread Managements.
- Installation, Storage, and Compute with Windows Server.
- Networking with Windows Server.
- Identity with Windows Server.
- DHCP, DNS and IPAM installation and configuration.
- Failover Clustering.
- Back-up plans (Veeam and Veritas).
- Exchange Server Installation and Configuration.
- Managing Office 365 Identities and Requirements.
- Administer servers, desktop computers, printers, routers, switches, firewalls, phones, personal digital assistants, smartphones, software deployment, security updates and patches.
- Maintain system efficiency.
- Ensure design of system allows all components to work properly together.
- Troubleshoot problems reported by users.
- Make recommendations for future upgrades.
- Maintain network and system security.
- Analyze and isolate issues.
- Monitor networks to ensure security and availability to specific users.
- Evaluate and modify system's performance.
- Identify user needs.
- Maintain integrity of the network, server deployment, and security.
- Support LANs, WANs, network segments, Internet, and intranet systems.
- Ensure network connectivity throughout a company's LAN/WAN infrastructure is on par with technical considerations.
- Perform network address assignment.
- Assign configuration of authentication and authorization of directory services.
- Maintain network facilities in individual machines, such as drivers and settings of personal computers as well as printers.
- Maintain network servers such as file servers, VPN gateways, intrusion detection systems.
- Any technical related issues.
Training the following Subjects:
Plans, develops, installs, troubleshoots, maintains and supports an operating system and associated server hardware, software and databases ensuring optimum system integrity, security, backup and performance.
- MS Windows Server 2008, 12, 16.
- MS Windows XP, 7, 8, 10.
- MS Windows Exchange server 2010, 13, 16.
- MS Office 2007, 10, 13, 16.
- Active Directory and Domain Controller.
- DHCP, DNS.
- Backups and Storage Systems.
- Network Printers and Scanners.
- Cloud Storage and Printers.
- Computer Maintenance and Architecture.
- Virtual Machines.
- Technical Support Strategies.
- Mobile Phones Maintenance (iPhone, iPad, Samsung).
-Firewall Server.
-Exchange Server 2010, 2013, 2016.
-Digital Video Recorder Server.
-Flightlog Server-Aviation Industry.
-Central Database Server, SQL Server.
-Windows Server 2012, 2016.
-VoIP-Nortel Switching System-BCM4.0.
-Technical Support.
-Maintenance (PCs, Laptops and Servers).
-Apple Systems as AirPort, Apple TVs, iPads, iTunes and MacBooks.
-Network Management and Securing of both Wi-Fi and Wired networks.
-Time Attendance System.
-Network Storage System and Backup Systems.
-lD Cards-Printer-Matica Chica.
-Online Conferences.
-Network devices, Printers and Scanners.
-Mobile, iPhone and Blackberry technical support.
1- Maintenance Computers, networking, backup and Ghosts-2008/2009.
2- Microprocessor programmer-2009/2010 instructor.
3- Digital Logic Instructor-2009/2010 instructor.
4- VHDL instructor-2009/2010 instructor.
-Thesis title: AN EFFICIENT FPGA HARDWARE IMPLEMENTATION OF THE THREEFISH TWEAKABLE BLOCK CIPHER. -Research: AN EFFICIENT FPGA HARDWARE IMPLEMENTATION OF THE THREEFISH TWEAKABLE BLOCK CIPHER. -Research: Arabic-Jawi Scripts Font Recognition Using First-Order Edge Direction Matrix. - Conference: AUTOTESTCON 2010 Conferences, Orlando, Florida, USA.