Senior Information Security Engineer
Egyptian Financial Regulatory Authority
Total des années d'expérience :19 years, 6 Mois
- Embrace a culture of continuous service improvement and service excellence.
- Contribute to the plan and delivery of information security for Technical and Administrative controls to support achievement of strategy and risk management objectives.
- Engaging directly with business groups and vendors in security discussions and methodologies.
- Participate in design review sessions to provide recommendations on various projects.
- Recommend, establish, and reinforce Information Security policies, architecture, standards, procedures and guidelines consistent with the overall business and information security strategy.
- Provide Design, Implementation and Operation of IT Security solutions including:
Next Gen Firewalls (Palo Alto & Cisco FTD), NG IPS/IDS (McAfee), Application Delivery Control (F5 Big-IP LTM & ASM), Web Proxies, E-mail Security Gateways, Endpoint Security (HIDs/HIPs/AVs), Database Security, SIEM Solutions (McAfee Nitro), DDOS protection, DLP, 2-Factor Authentications, Cisco ISE/ACS, SSL Encryption/Decryption, Vulnerability Assessment tools, APT solutions for (Network, E-mail and Endpoints), and End Point visibility control solution (Nexthink).
- Conduct research in emerging technologies in alignment with IT Strategy and Business Needs, to enhance existing or develop new IT security Services.
- Perform Continuous assessment of existing setup of security systems and recommend enhancements.
- In charge of Information Security for operations by providing line management, leadership and strategic direction for the function and liaising closely with upper management.
- Responsible for the security of All IT Assets in the system using multivendor and multilayer security approach.
- Ensure all tasks performed adhere to the organization's ISO27001 Information Security Management System.
- Reviewing and performing the Configuration Change Requests (CR/RFC) using (Ticketing System) to assess risk and compliance to internal policy and standards.
- Provide security awareness training to educate the workforce on information security standards, policies, and standard methodologies.
- Ensuring that all project designs conform to the standards of the Infrastructure Architect.
- Implementing and Managing Multi-Vendor NG Firewalls (Cisco ASA- Fortigate).
- Implementing and Managing email spam-filtering/malware/fishing solutions (Bluecoat).
- provide real-time analysis and correlation of security alerts generated by applications, systems and network devices utilizing SIEM (Splunk).
- Managing and monitoring Enterprise Endpoint Protection (Kaspersky Security Center).
- Managing and monitoring Multi-Vendor IDS/IPS Solutions (Firepower - McAfee IPS).
- Implementing and Managing NAC (Cisco ISE).
- Establish and Maintains site-to-site VPN with partners and SSL VPN for mobile users.
- Managing and maintaining the network infrastructure.
- Managing and maintaining the WAN connections with Egyptian Stock Exchange.
- Recovery plans, files and systems integrity.
- Maintaining and monitoring network VPN access for remote users and remote offices.
- Monitor, evaluate, and maintain LAN, WAN, Firewall, and remote access services.
By the Security Computing Diploma from ACS i have been assessed as an ICT Security Specialist Under the ANZSCO Code 262112.