Chief Information Security Officer
Qatar Charity
Total des années d'expérience :20 years, 2 Mois
A. Daily information security operations management.
B. Ensure the conduct of ISMS review and internal audit.
C. Ensure that the list of risk owners is updated and correct.
D. Maintenance and improvement of ISMS and performance of daily information security tasks assigned by ISMS Manager
E. Update, review information security risk register.
F. Maintain and update the ISO / IEC 27001 Statement of Applicability
G. Conduct information security training and awareness.
H. Ensure implementation of any changes in ISMS recommended by annual report or audit.
I. Management of Information Security Control Tools in ISMS scope in Qatar Charity.
J. Ensure the maintenance of records to demonstrate compliance with relevant policies and procedures.
K. Ensure that internal communication and consultations on information security issues are activated as needed.
L. Communicate with internal functions outside the scope of ISMS about information security matters as appropriate
M. Establish links with external information security professionals such as the executive authority (NSOC-MOI) and communication service providers (Q-Cert), where necessary.
N. Gray penetration testing for network and Application.
O. Notify incidents of dangerous information security and its risks to senior management
A. Design security tools for malicious code scanning.
B. Conduct white box and red team security testing to assess and validate application security.
C. Define, maintain and enforce application security best practices.
D. Monitor and track progress of found vulnerabilities and maintain the history.
E. Explain and demonstrate vulnerabilities to application/system owners, and provide recommendations for mitigation.
F. Issue reporting on assigned application and system scans.
G. Perform secure code development training to developers, employees, quality assurance personnel and relevant staffs.
H. Evangelize security across all teams and influence change where needed.
I. Analyze web server files looking for malicious code and malwares.
- E-Government System analysis.
- Writing Technical Software Proposals.
- Software Development Pricing.
- E-commerce project team management.
- Developing E-commerce System.
Supervising IT Department.
Software and Data Analysis.
Software Pricing Testing Approval for Sales.
Web Applications Development Consultant..
1. Supervising company engineers.
2. Networks designing, planning, implementing and maintenance support (hardware - software_ and data Recovery).
3. Customer technical assistance (Help Desk Support).
4. Website Administering.
5. Consults and coordinates with other areas of the departments, as needed to resolve hardware and/or software problems, as well as plan and coordinate software and hardware upgrades.
1. Maintain computer networks hardware and software, link new points and nodes when required.
2. Website designer and Supervisor.
1. Supervising company engineers.
2. Networks designing, implementing and maintenance (hardware - software_ and data Recovery).
3. Customer technical assistance.
4. Diagnoses problems and repair.
1. Maintenance Computers and accessories.
2. Networking and maintenance network hardware and software (LAN).
3. Installing and repairing the operating system (MS Windows - Linux).
4. Repair and maintenance computers hardware