Information Security Proffecianal
Self Employed
مجموع سنوات الخبرة :17 years, 2 أشهر
Mohammad is a consultant within Accenture's technology consulting workforce, based in United Arab Emirate with over 10 years of information security experience across multiple clients and industry sectors.
He has led and supported projects related to information security, predominantly with clients in the Financial Services and Resources.
His broad experience includes analysis, design, and deployment. He has been involved in both strategic initiatives as well as large transformation projects.
• Conducting penetration testing, vulnerability assessment and security analysis.
• Implementation of ArcSight SIEM technology, ArcSight logger, SmartConnector, FlexConnector, ArcSight operational environment, upgrading, maintenance, troubleshooting, development of use cases, dashboards, and reporting.
• Conducting security compliance reviews of general computer controls, technical security reviews, application security review and architecture security review of the new & existing systems in the Bank.
• Developing and writing security policies, procedures and standards.
• Identifying, documenting and implementing security controls.
• Involved in PCI DSS compliance review including ISO 27001 gap analysis and implementation.
• Ensuring compliance with security best practices and controls (ISO27001:2005 Annex A, NIST and CIS Benchmarks)
• Conducting security assessments & reviews and documenting review findings.
• Managing Proof of concepts (PoCs) for different security vendor products.
• Working with virtual teams and facilitating in the implementation of security tools and products.
• Applying applicable security standards and following up on security audit requirements.
• Supporting & providing technical advice to the users and reviewing Network security architecture reviews.
• Service Delivery Manager (SDM) for end-to-end security projects:
• Enterprise Security Log Management solution (ArcSight ESM) for the entire Network.
• Enterprise wide Vulnerability Management solution for 3000+ devices distributed over multiple sites.
• Intrusion prevention Systems (IPS) implementations for the entire network.
• Worked as a Resident Engineer in the Security Operation Center (SOC).
• Executed different projects and delivered several services like PCI, Network VA/PT, Securing and Hardening Data Centers Networks and Systems.
• Conducted technical security reviews of Network and Security components.
• Conducted Network security architecture reviews and managed PCI/DSS and other security standards.
• Installed, configured, managed & troubleshooted ASA, PIX Firewalls and Juniper Firewalls.
• Installed and configured Juniper IDS/IPS and configured & administered ISS IDSs and IPSs.
• Configured, administered and analyzed ISS SiteProtector.
• Conducted vulnerability assessment by using ISS Internet Scanner and Assuria Auditor (System Scanner).
• Responsible for WebSense management, RSA administration and Tripwire administration.
• Implemented and maintained AAA and configured & administered NSM management.
• Deployed ArcSight SIM solution, applied applicable security standards and followed up on security audit requirements.
• Enhanced the security level on Solaris and AIX Servers’ environment.
with Very Good grade
With a Very Good grade.