Elham Alsaad

During my time with SNB, I was given the opportunity to develop my technical skills in the field using the Immersive Labs Platform:

• Enumeration Scanning Tools
◦ Nikto and DIRB, WordPress Scan, Port Knocking, DNS Enumeration, Banner Grabbing, Nmap
• Windows Hardening
Reconnaissance - Hardening with Microsoft Defender Firewall
◦ Analyzed a penetration testing report findings and translated remediation recommendations into
Windows host-based firewall controls, as listed below.
◦ Implemented Windows hardening measures (least privilege and network segmentation) using
Microsoft Defender Firewall with Advanced Security, including the creation, and modification of
inbound service-specific rules and profile-based firewall rules, such as:
◦ Creating and enabling an inbound firewall rule to allow FTP traffic on TCP port 21 for
Domain profiles only
◦ Blocking unnecessary remote management services such as MSRPC on TCP port 135
for Public Profile
◦ Restricted Remote Desktop Protocol (RDP) access by defining authorized remote IP address
ranges and limiting connectivity to approved corporate subnets.
◦ Applied network segmentation and least privilege principles through firewall scope configuration,
profile-based rule enforcement (Domain, Private, and Public), and IP-based access restrictions.
◦ Gained hands-on experience interpreting vulnerability remediation recommendations and imple
menting compensating security controls at the host level.

• Facilitated and coordinated SNBC information security audit requirements
• Performed a compliance assessment against the NCA-TCC, developed detailed report, maintained
evidence, tracker, and reported findings to management for remediation action
• Led an audit engagement for the Cortex Credit Card Management System between the Internal Audit
and the Information Security Department.
• Familiarity of SAMA electronic banking requirements and related compliance check reviews
• Assisted in preparing the RFIs, and validating the received evidence related to SAMA electronic
banking requirements, and updating the compliance tracker and associated reports accordingly
• Responsible for validating KPI/KRI values and evidence on quarterly basis
• Effectively communicated the KPI/KRI gaps to senior management and cross-functional stakeholders
• Performed compliance assessments against +6 of SNB information security internal policies, covering
15% of each policy in three months
• Collaborated with the team to perform a compliance assessment against the ISM Main Policy and
reported findings to senior colleagues
• Conducted a gap assessment against the NCA-DCC framework, identifying over 10 new gaps from
previous year
• Assisted in following up with the SNB asset inventories and in ensuring asset inventories compliance
with SAMA requirements and observations
• Provided support to the line manager on various tasks as assigned
• Responsible for consolidating team updates and preparing summary presentations for the line
manager to track progress on a weekly basis.
• Experience in utilizing the automation tool Archer for KPI and KRI activities
• Led the automation of the SAMA thematic inspection observations in Archer tool by designing the
workflow process, creating supporting documentation and diagrams, and successfully coordinating
and communicating the implementation details to the Archer administrator, in addition to responding
to the follow-up inquiries, leading to successfully implementing the project
• Participated in reviewing an information security policy to ensure its compliance with NCA and SAMA
regulations
• Performed a comprehensive review on SNBs information security CMMI to enhance its maturity
level, covering 200 controls under the strategy domain, and resulting in a 12% improvement in overall
maturity.
• Basic familiarity of the various systems and security tools in use, such as Centrify, Blackberry MDM,
SCCM, SOAR, Citrix, AnyConnect VPN, Active Directory, DLP, GetVisibility, Informatica

• Participated in updating policies and drafting change requests to update policies
• Evaluated the cybersecurity service providers services against the Saudi Geological Survey
Cybersecurity Tender prior to outsourcing their services
• Assisted in formatting laptops, installing windows operating system, configuring user/admin accounts,
installing desktops applications (Microsoft Office, EDR, Antivirus, TeamWork), connecting devices
into the organizations network, updating softwares license and hardwares drivers

• Following up with the cybersecurity KPIs
• Familiarity with NCA-ECC, DCC, and SAMA CSFs
• Reviewing +5 cloud service providers contracts to address all SAMA required outsourcing clauses
before outsourcing any service into the cloud
• Filling SAMA outsourcing forms and answering SAMA questions regarding the cybersecurity posture
of cloud service providers
• Participated in facilitating requirements during the gap assessment phase of the NDMO project
between Bupa and its third party
• Risk Key Tasks:
• Familiarity with the Third-Party Risk Management Framework
• Participated in classifying the level of access of service providers to Bupas data and in assessing
service providers cybersecurity posture through preparing a list of tailored questions (RFIs) for each
service provider to collect evidence of identified risks prior to onboarding them
• Governance Key Tasks:
• Participated in the development of a draft policy to comply with SAMA minimum verification controls
according to their applicability to Bupas applications in alignment with the Information Technology
team input
• Mapping policiess controls to their references and updating policies revision dates
• Facilitating the publication of newly approved policies

• Participated in the GRC function
• Familiarity with IT security tools (e.g., EDR, NDR, VA, Email Security, WAF, McAfee ePolicy
Orchestrator Administration, Arbor)