Information Security manager
Standard Chartered Bank –
Total years of experience :46 years, 1 Months
Standard Chartered PLC is a British multinational banking and financial services company headquartered in London, England. It
operates a network of more than 1, 200 branches and outlets across more than 70 countries and employs around 87, 000 people
worldwide. Over 7 years I have transitioned from Regional
Piraeus Bank Group headquartered in Athens, Greece has more than 22, 000 employees in 10 countries and is Europe’s fourth
biggest lender; the Egyptian subsidiary has 47 branches, 200 ATMs, 1200 Employees.
▪
Creating, reviewing and maintaining Piraeus Bank Egypt Information Security Framework, policies, procedures, standards and
guidelines.
▪Assists in defining the responsibilities for all employees participating in the “Information Security Management System”
▪ Ensures that the Information Security application efficiently addresses the business goals of the Piraeus Bank Egypt. Participates
in IT strategy definition for the information assets efficient management and protection.
▪ Monitors the overall level of security and the level of compliance against the Information Security Framework for the Bank and
its owned Companies. Coordinates the efforts with the regulatory, statutory, and other requirements that Piraeus Bank Egypt must
adhere to
▪ Reporting the Security Stats/ Threats/ Risks to Senior Management & Group Security Office periodically/ad-hoc.
▪ Participates in procuring / developing / upgrading systems and applications within Piraeus Bank Egypt and approves their security
requirements
Achievements:
▪Security Awareness program developed training material & Information security guides for email, internet and secure
information usage for both employees and customers, in different channels website, E-banking, ATM, printed material,
workshops and training, the program includes also employees out of office activities such as social networks and out of office e-
mail usage guides.
▪ATM Lifecycle Security program, developed and implemented Anti skimming procedures and controls, internal and external
cameras evaluation for all bank cameras, security checklist implementation, and the process covers the whole ATM lifecycle security
and has key members from government, other Egyptian banks, fraud monitoring and operational risk integration.
▪User Management and Control, centralized user management in one unit to manage user access to all systems, developed
forms, procedures, roles and responsibilities to manage users and access requests, leading the user profile definition matrix
over all systems on a role based access design.
▪IT - Risk and control, part of the integrated operational risk assessment for the Bank, reporting and consolidating action plans
to resolve business risk in relation to IT risk, the project is a sub item of the overall risk assessment program.
▪Design and perform Security Audits, Conduct periodical audit reviews on all information security controls, providing insights to
management on security stats of the bank.
Assist in creation of business cases and project charters with project sponsors / project managers.
▪Resolve conflicts of resources, projects and stakeholders.
▪Day to day management of the project management members & Project Managers.
Page 3 of 3
PUBLIC
▪Responsible for reviewing project budgets, providing budget, and expenses control.
Achievements:
▪Business Continuity management: project manager, conducted business impact assessment for all banking operations based
on operational risk severity and impact, project has achieved full evacuation, IT disaster recovery and crisis management plan
through consolidated process dictionary prioritized by risk and business impact.
▪Operational Risk Assessment workgroup member, responsible of planning and coordination of operational risk assessment
and control, assisting business units in activity and process analysis, definition of technology risks, integration of process with
business continuity and align approved mitigation projects with IT action plan.
▪Project manager of the legacy FNS/BANCS core banking history migration to data ware house, unifying one source of
information for MIS and operational reports, early termination of the legacy system presented 600, 000 Euros savings of running
cost and 300, 000 USD for alternative opportunity of outsourcing.
▪Fiserv core banking implementation over the course of two years (
Reporting to Head of Information Technology
Responsibilities:
▪Supervise 10 support officers covering 55 branches, 4 system administrators and run the environment services including domain,
mail, call center, HP open view and all in-house and third party applications running on WINTEL infrastructure.
▪Budgetary and new solutions implementation, technical projects and implementations, and insure a healthy environment. The role
extends to handling internal procedures and workflow optimization, design new solutions, introduce new applications requests as
well as Secure, and maintain data protection and backup.
Achievements:
▪Optimized premier Microsoft agreement and reduced the total utilized hours by two thirds while environment has gone four times
bigger ( from 20 servers to 80 servers)
▪Implemented and installed the NETAPP shared storage UNIT, achieved huge storage saving by centralizing shares and integration
with the asset classification policy
▪Implementation and streamlining the ATM operations by deploying a domain model and centralized Antivirus, security protection
and management.
Established the company managed infrastructure for 12 branches and 700 users including routers, switches, firewalls, call center
managed the integration between Oracle, Unix & VMS in a windows domain & 35 Global vendors connectivity in US, UK, Japan and
many others.
IT Governance
IT Governance
IT Governance
IT Governance
URL removed due to policy violation. Please contact support for further information.