Chief information Security officer
Central bank of Egypt
Total des années d'expérience :19 years, 0 Mois
• Develop and implement information security policies and procedures. This includes creating policies and procedures that are aligned with the bank's security strategy, and ensuring that they are communicated and understood by all employees.
• Led the development and implementation of a new information security Risk Management framework.
• Build a strong team of security professionals. This includes hiring, training, and developing security professionals who have the skills and experience necessary to protect the bank's information.
• Collaborated with the Chief Information Officer, line of business and functional area leaders and their teams to identify and assess IT risks
Managed information security (IS) for regional branches in Cairo, Beirut, Abu Dhabi, and Paris.
•Successfully completed a number of large-scale security projects on time and within budget.
•Led a team of security professionals and oversaw all IT security and compliance initiatives across all business units in local and regional branches.
•Built an information security management system (ISMS) from the ground up.
•Successfully built the Security Operations Center (SOC).
•Managed IS compliance with PCI-DSS, NIST, CIS, internal bank policies, and regulating authorities' standards.
•Managed penetration tests, vulnerability assessments, and code reviews.
•Managed security projects and oversaw the implementation of processes and methods for auditing and addressing non-compliance to information security standards.
•Managed the security of Internet and mobile banking and Islamic banking integration.
•Transformed the enterprise to performing and delivering risk assessments in conjunction with security architecture.
•Collaborated with the Chief Information Officer, line of business and functional area leaders and their teams to identify and assess IT risks.
•Proactively engaged with risk partners such as Internal Audit, Regulatory Risk Management, Legal, Fraud Management, and the Operational Risk Manager to ensure effective coordination and communication of activities and risk events.
Lead and manage security consulting engagements.
•Stay up-to-date on the latest security threats and trends.
•Develop and deliver security training to clients.
•Mentor and develop junior security consultants.
•Build and maintain relationships with clients and peers.
•Understand the cultural and regulatory landscape of the Middle East.
•Build relationships with local security professionals and organizations.