Senior Information Systems Security Auditor
Arab National Bank
Total des années d'expérience :13 years, 11 Mois
Assess the implementation of Bank's Information Technology (IT) and Information Security (Info Sec) Policies & Procedures, Standards, established practices and related regulations.
• Perform Network and Application Penetration Testing using both Automated and Manual techniques.
• Design and perform audits of computer systems to ensure they are operating securely and that data is protected from both internal and external threats
• Assess system-wide security statuses
• Design and recommend Implementation of IT security policies, procedures and standards
• Ensure compliance to policies and procedures
• Evaluate highly complex security systems according to industry best practices to safeguard internal information systems and databases
• Lead investigations of security violations and breaches and recommend solutions, prepare reports on intrusions as necessary, and provide an analysis summary for management
• Respond to complex requests for information security information from both internal and external customers
• Implementing Private and Public Key Authentication, Encryption and Decryption in different security products
• Proven ability to troubleshoot and quickly resolve complex hardware, software and network issues
• Technical evaluation and selection of security management tools
• Advising management on information security related issues
• Developed a Client/Server based multi-threaded Wi-Fi auditing tool using some open source APIs, frontend GUI was developed in JAVA and at backend Perl, Python, bash scripting, and MySQL database was used.
• Worked on a stateful packet inspection firewall project to build a complete, secure and stable firewall exclusively from Open Source software
• Implemented Private and Public Key Authentication, Encryption and Decryption in different security products.
• Penetration testing of different Information Security products e.g. firewalls, IPS, and IDS. wired and wireless networks auditing and penetration testing
• Also have done some projects in C, VB, PHP, Perl, Python and Adobe Flex
• Implementation of IT security policies, procedures and standards.
• Advising management on information security related issues.
Computer Systems Engineering