Manager - Cyber Security
Ernst and Young
Total years of experience :21 years, 9 Months
Responsible for Qatar Energy OT Cyber Security Operations
Managing common DMZ zone infrastructure to serve all Qatar Energy industrial plants
Managing Wallix Bastion PAM solution for remote connections to OT networks
Managing VMWare NSX - network virtualization and security platform
Managing VMware vRealize Network Insight - micro-segmentation planning and deployment solution
Managing VRealize Log Insight - a log collection and analytics solution
Managing OT/IT Inventory project with a scope of all Qatar Energy OT onshore and offshore assets
Managing data pipeline from different network sources to SOC data collectors (Syslog/Windows Logs)
Managing SolarWinds Syslog Server to collect and send logs to Kafka log collectors
Managing Systems Hardening GPO and local systems controls
Managing the patching process of Qatar Energy common DMZ network
Managing and accepting ICS vendor FAT and SAT for ICS Cyber Security implementations on site
Continuous monitoring of SIEM solution, EDR solution, Server Security, Whitelisting solution
Monitored new IOCs and CVEs and mitigate new vulnerabilities accordingly
Monitoring Open Source Intelligence for the latest Indicators of Compromise
Thread hunting and Incident Response using SIEM solution
Organized patch deployment process using SCCM and Endpoint Management software
Administered the Endpoint Detection and Response system - EDR
Threat hunting using Endpoint Detection and Response solution - EDR
Administered the Whitelisting solution
Administered and Monitored the Email Security solution
Working with Hex Editor to investigate the true nature of suspected or unknown files
Vulnerability assessment solution - Vulnerability scans and remediation
Designed and Implemented HOTS process - Hand Over To Support for the new assets introduced to the network
Unified Endpoint Management Solution: Patch Management, Asset Management, Software Deployment
Prepared manuals and trained Helpdesk staff to assist in monitoring of suspicious events in different platforms
Prepared the System Inventory database and Whitelist of allowed application across whole network
Implemented TM Management to centrally manage Email Security Appliences
Conducted quarterly Antivirus solution health check audit and remediated the inconsistencies
Deployed the new EDR Server to extend the EDR services for branch offices
Worked with external partner to make company certification happen for ISO27000 InfoSec standard
Worked with external partner to make company accreditation happen for Qatar 2022 Cyber Security Framework
Ensured all Servers configuration is compliant with CIS Security Framework
Implemented the Email Data Leak Prevention solution - Email DLP
Prepared the Score Cards to measure company’s Systems Security - Key Performance Indicators (KPI)
Worked with Helpdesk team to ensure all systems databases are up to date - AD, EDR, EPO, etc.
Designed the cyber security hardening strategy for Qatar Chemicals plant based on ISO/IEC 62443 and National ICS Security Standard in Mesaieed, Qatar;
Designed and tested the Application Whitelisting solution for Qatar Chemicals plant in Mesaieed, Qatar;
Designed the Active Directory domain upgrade from 2003 to 2016 at Dolphin Energy plant, Ras Laffan, Qatar;
Designed the Active Directory domain upgrade at Qatar Petroleum RG plant, Dukhan, Qatar;
Upgraded VMWare Virtualization clusters at SHELL GTL plant, Ras Laffan, Qatar;
Designed and implemented RADIUS Server for network devices authentication at QAFCO plant, Qatar;
Designed the Active Directory domain upgrade for QAFCO5 plant at QAFCO plant, Mesaieed, Qatar;
Received “GOLD” Award from Honeywell for the World’s biggest virtualization migration on January 7, 2018.
Implemented security hardening project on Cisco switches at QAFCO plant, Mesaieed, Qatar;
Performed AD Domain audit of six AD domains at QAFCO plant, Mesaieed, Qatar;
Designed and tested Active Directory PCN domain upgrade at Yara Tertre plant, Mons, Belgium;
Installed and configured DELL FX2 Premium platform at Yara Tertre plant, Mons, Belgium;
Configured VMware vSphere 6.0 Cluster including vSAN and HA at Yara Tertre plant, Mons, Belgium;
Configured new Cisco 2960x and 3850 switches at Yara Tertre plant, Belgium;
Upgraded PCN AD domain and deployed DMZ and Management domains at Yara Tertre plant, Belgium;
Remote Services connection restored at QAFAC plant in Mesaieed, Qatar;
Configured and replaced L2 switches during network upgrade project at QAPCO plant, Mesaieed, Qatar;
Configured and FAT tested Cisco 2960x L2 switches, 3850 L3 Router and Cisco ASA Firewall during network upgrade project at QAFCO plant, Mesaieed, Qatar;
Designed and implemented online upgrade of AD domain at QAFCO plant, Mesaieed, Qatar;
Upgraded network including Cisco L2 switches and L3 routers at Qatar Vinyl Company, Mesaieed, Qatar;
Configured and online replaced Cisco 3850 L3 routers at QAPCO plant, Mesaieed, Qatar;
Configured and installed Cisco IE3000 Industrial switches at Qatar Steel Company, Mesaieed, Qatar;
Designed and implemented online upgrade of AD domain at QAPCO plant, Mesaieed, Qatar;
Designed and implemented online upgrade of Active Directory domain at QChem plant, Mesaieed, Qatar;
Installed and configured Solarwind network management tools at QAFCO plant, Mesaieed, Qatar;
Configured and installed the Cisco ASA 5525x Firewall at QChem plant. Mesaieed, Qatar;
Provided Networking and Cyber Security services to Qatar Petroleum;
Deploying new Cisco switches to Qatar Petroleum DCS system at Halul industrial island, Qatar;
Provided McAfee antivirus deployment solution for Qatar Petrochemical Company;
Routers configuration at Qatar Petroleum plant in Dukhan, Qatar;
Configured new Cisco switches at Qatar Petroleum plant in Dukhan, Qatar;
Designed and implemented VLAN consolidation and Spanning Tree reconfiguration at QAPCO Utilities plant;
Installed and configured a new Active Directory Domain at Qatar Petrochemical Company, Qatar;
Performed upgrade of VCenter and ESXi Server on IBM Blade Servers at Dolphin Energy gas plant;
Built process control domain development system at SHELL GTL plant in Ras Laffan, Qatar;
Supporting Citrix infrastructure at SHELL GTL plant in Ras Laffan, Qatar;
Backup and restore PCD systems using Honeywell EBR backup solution at SHELL GTL plant, Qatar;
Performed Windows AD Domain and Network audit at Borouge plant in Ruwais, UAE;
Conducted Microsoft Server 2008R2 training for the IT staff in ABB UK office;
Prepared the Digital Security Technical Guideline document for use in ABB Caspian region;
Prepared and conducted Information Security training course for ABB office staff and offshore engineers; Acting as technical lead to identify and implement solutions to problems affecting IT services;
Provided IT/Cyber Security support for BP assets (oil and gas industry) in Caspian region;
Ensured that system hardware, operating systems, middleware, system security, Anti-Virus, backup setup, and related procedures adhere to the established standards (including Digital Security standards).
Provided Operational Support of ABB 800xA ICSS systems on the BP facilities and ABB internal test servers;
Configuration and maintenance of the Microsoft Windows domains that provide the platform for the ABB ICSS systems, including Active Directory configuration, network design and planning;
Planned, installed and configured ESXi server at BP office;
Prepared the Digital Security Audit work Instructions document for use in ABB Caspian region;
Coordinated the project of migration form Lotus Notes to Office 365 and Microsoft Outlook in ABB Baku;
Conducted IT Audit on BP offshore platforms to make sure all systems are compliant with procedures;
Administered Industrial Ethernet Hirschman managed switches in control systems network.
Designed, tested and implemented the WSUS server in disconnected industrial environment - ACG Project
Administered NETGEAR NAS device including backup, patches and managing permissions;
Performed servers installation and related infrastructure, maintenance, routine system checks, performance monitoring and housekeeping activities required to deliver services in line with agreed service levels;
Administration of Lotus Domino Server and Lotus Notes clients, data Backup systems and print servers;
Provided consultancy to projects from IT infrastructure perspective;
Provided data backup and restore services;
Review data backup policies and ensure that backup schedules meet data recovery requirements;
Ensuring server's virus protection software is operational and current;
Courses led:
Course 6293A- Troubleshooting and Supporting Windows 7 in the Enterprise
Course 6292 A- Installing and Configuring Windows 7 Client
Course 50331B - Windows 7, Enterprise Desktop Support Technician
Course 50322A - Configuring and Administering Microsoft Windows 7
Course 6422A - Implementing and Managing Windows Server 2008 Hyper-v
Course 6419B - Configuring, Managing and Maintaining Windows Server 2008-based Servers
Course 6425C - Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services
Course 6426C - Configuring and Troubleshooting Identity and Access Solutions with Windows Server 2008 AD
Course 6421B - Configuring and Troubleshooting Windows Server 2008 Network Infrastructure
Course 20410D - Installing and Configuring Windows Server 2012
Course 10748C - Planning and Deploying System Center 2012 Configuration Manager
Course 20411D - Administering Windows Server 2012
Implemented smart gas meters project in Azerbaijan; Represented Itron company in Azerbaijan, working closely with customer’s IT and Marketing departments, helping to resolve technical and non-technical issues with project implementation;
Deployed Windows Server 2008 R2 on a HP ProLiant ML 150 G6 server with hardware raid configuration;
Upgraded 80 computers to meet the hardware requirements for operating system upgrade process;
Upgraded 80 computers to the new Windows Vista OS and Office 2007 software package in Baku office;
Participated in the operating system upgrade process in Moscow office;
Installed new software releases, evaluated and installed patches, and resolved software related problems.
Proactively evaluated user support issues and identified areas requiring training;
Organized data backup system using Backup Exec centralized backup software;
Implemented and administered centralized Antivirus system;
Installed and maintained Microsoft Exchange 2007 mail server;
Administered Windows 2003 Server including Active Directory, Group Policy and DHCP services;
Administered Panasonic XX-TES824 office mini-ATS;
Implemented Microsoft WSUS update services;
Held responsibility for IT inventory;
Migrated Lotus Domino e-mail server to a new DELL Power Edge server;
Administered Lotus Domino e-mail server and Lotus Notes clients;
Implemented and administered ISA 2004 firewall /proxy server;
Administered and maintained a backup server with Veritas Backup Exec backup software;
Administered Panasonic KX-TD1232 office mini-ATS;
Administered Symantec corporate antivirus system;
Maintained servers and user systems according United Nations WFP IT standards;
Provided hardware and software troubleshooting support to all staff;
Kept track of software licensing and advice about discrepancies;
Duties as Procurement Specialist:
Collected and maintained information on market prices and updated non-food suppliers list;
Assisted in the identification and formulation of the Office needs with regards to the equipment;
Initiated request for quotations or invitation for tender with regards to the procurement;
Followed up with goods received and services rendered from vendors;
Advised on any discrepancy with regards to purchase orders and items delivered;
Arranged clearance of items from the Customs authorities;
Provided IT support to the United Nations head office in Azerbaijan:
Maintained Active Directory services and data backup system;
Administered MDaemon mail server and Panasonic office mini-ATS system;
Set up and maintained Wireless networks and MS Windows based dial-in server;
Provided end-user support and held responsibility for IT inventory;
Provided 1st/ 2nd line support over the telephone, remotely and face to face to clients & internal staff members.