Manager of Network and information security department
TechnoWave
Total years of experience :10 years, 9 Months
Information Security:
---Plan, design and implementation of network and security projects in private and public sectors.
---Plan design and implement the security (software-hardware) of network projects.
---Penetration testing.
---Auditing and risk management
---Perform Network, Web Application, systems, ... Penetration Testing.
---Scan Networks, Servers, and other resources to validate compliance and security issues using numerous tools.
---Create a customized Information System Security Assement for evaluating networks, and application security.
---Build secure web applications and deal with most dangerous exploits (OWASP top 10.) and vulnerability of web sites.
---Provide analysis information of network and malware attacks to open source communities.
----Securing network systems by establishing and enforcing policies, and defining and monitoring access.
--- Implementing the organization's information security policies and procedures
---Performing the information security compliance activities
---Making sure that the organizations information security policies and procedures are complied with ISO 27001:2013 Standards
--- Managing and supporting information security incidents
---Present multiple attack methodologies to groups and businesses in developing a better security design for their networks.
---Customize security solutions for Linux environments with server hardening tools like ModSecurity-iptables…
---Create enterprise monitoring and management resources.
---Create “Reliable, Redundant, and Cost Effective” IT platform.
---Work with Backtrack and kali suites.
---Work with NAT, PAT and ACLs….
---Work with Firewalls-WAF- IDS-IPS.
Networking :
Technical lead duties and management of technical projects.
Designing and implementing customers’ network infrastructure
Configuring and implementing Remote Access Solution: IPSec VPN, EasyVPN, and SSL VPN.
Configuring Pix to Pix, ASA to ASA and Router to Router VPN.
Implementation of HSRP (using IP SLA) and GLBP.
Configuring VLANs, VTP, Ether channels.
Configuring inter-valn routing on Layer-3 switches.
Securing switch access.
Configuring routing using OSPF and policy routing using route maps.
Hardening Cisco devices - Implementing IDS and IPS, Cisco IOS Firewall, AAA
Implementing traffic filters using (Standard and Extended access-lists…)
Php. MySQL.
Html. Css.
JavaScript. Ajax.
ANGULAR.
Network Engineer in Commercial Bank of Syria \[Communication and Network Department\]:
Building, Implementingand design of LANs and WANs networks.
configuration and troubleshooting of Cisco routers and switches and .
Communication lines configuration and troubleshooting.
Member of a team in communication dept responsible for connecting about 100 Branches and 300 ATMs around Syria with a data network using (Leased.Line, VPN, ISDN, ADSL, GSHDSL, ) and manage, maintenance, monitor the network.
Designing templates and layout for websites depend on requirements of the site
Coding and developing php code for the websites from scratch, using a practical approach and meeting the client requirements
Making sure that the design and the appearance of the website targets a maximum number of audience.
Writing JQuery essential for front end development.
Publish the web site when the development process is over
Upgrading the web site regularly with new and required changes
Testing the site for any bugs and unwanted functionalities.
Testing the created web site using various testing tools.
keeping track of website visits, updating new content displays on websites
Modifying and extending open source applications like CMS Made Simple, Joomla Drupal and Wordpress..
Developing and creating PHP MySQL applications as per as w3c standard
Performing the responsibilities of implementing and hosting of systems on a web server.
Developing database structure.
Testing and analyzing programming projects and reporting.
Handled PHP backend development for dynamic driven website.
Troubleshot problems with PHP and other web technologies.
Designed, developed, coded, tested and debugged system requirements for the purpose of development projects.
Communicated with clients to meet up with their requirements.
Performed other related tasks related to PHP
Performs Search Engine Optimization (SEO) to raise company ranking and increase traffic to website.
Worked on creating alternate sites for mobile devices.
Diploma in information security in syrian-indian center which was between Indian and Syrian governments and it was supported by CDAC a Centre for Development of Advanced Computing (C-DAC) is the premier R&D organization of the Department of Electronics and Information Technology. Ministry of Communications & Information Technology (MCIT) for carrying out R&D in IT, Electronics and associated areas. The Diploma includes: 1. CHFI: Computer Hacking Forensic Investigator (CDAC). 2. CEH: Ethical Hacking (CDAC). 3. Advanced Intrusion Analysis: Snort (CDAC). 4. Incident Handling (CDAC). 5. Writing Secure Applications and Programs (CDAC)