Information Security Analyst
Al Fardan Group
مجموع سنوات الخبرة :8 years, 7 أشهر
Initiated IT Security projects.
Working on ISO 27001 as a project manager.
Developed IT Security Policy according to the business goals and regulatory requirements.
Developed detailed IT Security Procedure Manual.
Initiated Information Security Awareness program.
Created Information Security Awareness Booklet for employees.
Working with multiple End-Point Security products i.e Trend Micro, Bitdefender GravityZone.
Evaluating new Security Solutions i.e SIEM, DLP, DB Security, and End-Point security that fits the
organiztional needs.
Deployed Vulnerability Management Solution 'Tenable' to identify weaknesses in all IT Assets e.g. Servers,
Network Infrastructure and all End-Points.
Provide consultancy to all departments in acquiring new softwares, applications etc.
Provide complete security solutions, including implementation and support.
Responsible for presentations, POCs and solution Implementation.
Responsible to find out best solution for clients. i.e (Endpoint Security, Data Leakage Prevention, Email -
Security, Firewall Solutions, Patch Management, Vulnerability Management, Penetration Testing, SIEM
Solution, Data Erasure, Network Monitoring Solutions, Database Security) etc.
Hands-on Products:
Tenable, DBProtect (Trustwave), F-Secure, Kaspersky, Blancco, DeviceLock, GFI, Lumension, LogRhythem
(basic understanding), Secunia, Storm Shield, Whatsup Gold, Nexpose, Metaspolit.
Projects as a Team Lead:
Ministry Of Education (One of the largest End-Point Security Project in Middle East with 44, 000 End-Points).
Ministry of Health (20, 000 End-Points).
Ministry of Endowments & Religious Affair (2, 000 End-Points).
College of Shariah Sciences (1, 000 End-Points).
Institute of Public Administration (2, 500 End-Points).
National Defense College (500 End-Points).
Oman Airport Management Company (2, 000 End-Points).
College of Applied Sciences, Muscat & Salalah (1000 End-Points).
Defining IT security policy and procedures from a technology point of view, based upon regulations,
Industry standards and best practices.
Implement industry standards and best practices like PCI-DSS, CIS Benchmarks, NIST.
Managed major incidents including investigations and incident response.
Took proper countermeasures to prevent from threats in future.
Worked on database security by using IBM Infosphere Guardium.
Forensic Investigations by using Guidance Software, Encase.
Vulnerability Management by using Nexpose.
Penetration testing of organization’s existing and new assets by using Metasploit Framework.
Responsible for BCP & DR Drills.
Set Device Hardening Policies.
Risk Management & Governance.
Responsible for Security Reviews according to BIA for existing and new business solutions.
Administration of firewalls including all aspects of design, installation and maintenance.
Refresh of existing firewalls with new firewalls. Troubleshooting firewall problems.
Comprehensive understanding of security policies and evaluating security requests for implementation.
Deployed VPN technologies (DMVPN, GETVPN).
Worked with OSPF. BGP and EGRP routing protocols.
Configured Cisco Routers, Switches and Firewalls.
Establishes network specifications by conferring with users, analyzing workflow, access, information, and
security requirements, including interface configuration and routing protocols.
Responsible for two major clients for monitoring and troubleshooting OmanTel & Google ME.
Provided efficient technical assistance to client and assigned engineers for troubleshooting of network
issues while ensuring adherence to specified SLA timeframe.
Maintains network performance by performing network monitoring and analysis, and performance tuning, troubleshooting network problems, escalating problems to vendor.
Monitored LAN and WAN connectivity with Frame Relay Traffic.
Configured and implemented BGP on Edge Internet Routers as E-BGP sessions, implemented BGP as IBGP
in the Core-Distribution layers, identified routing issues within the network and worked on design drafts
to improve Network efficiency and Scalability.
Responsible for turning up new BGP peering and customer sessions as well as debugging BGP routing
problems. Accountable for updating Arbor Peakflow.
Provided weekly international link usage report, weekly traffic report, Traffic per provider and traffic per
link. Submitted weekly report, availability report of international carriers based on flapping statistics.
Responsible for monthly report for connection ratio, FTP report, Network availability report.