Senior Officer, Information Security & Governance
Barwa Bank
Total des années d'expérience :18 years, 10 Mois
• Manage the Information Security & Governance for the organization including creating & reviewing policies procedure & guidelines and ensuring the adherence and implementation of the same across the organization to provide sufficient assurance to business.
• Liaison with and offers strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) plus senior and middle managers throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies
• Implementation and Management of the Information Security Incident Response Team.
• Execute Risk Assessment, managing VA/PT for the organizations including remediation in order to strengthen organizations’ infrastructure
• Lead the design, implementation, operation and maintenance of the Information Security Management System based on the ISO/IEC 27000 series and other standards like COBIT, and PCI-DSS.
• Manage the SOC monitoring, deciding threshold for alerts for SIEM to monitor the logs for Systems/Network/Servers etc.
• Review, Implementation and maintenance of the overall controls related to Information Security across the organization
• Manage the Information Security Awareness Program ensuring effective and efficient communication across the staff and Bank's customers, including training to existing staff and new joiners, to increase the awareness related to information security threats and precautions.
• Implementation & management of the effective, efficient BCP/DR for the organization and supervise the mock tests and DR Drills.
As an SCB Qatar Information Security Officer working for SCB Group Information Security (GIS), helping to maintain the information security compliance with the enforcement of Group Security policy.
Working as a bridge informing GIS and preparing about Country Audits, Security Incidents/Risks and Regulatory requirements.
Assisting GIS in the roll out GIS initiatives within the Country
Working as a communication channel for GIS. Provide an avenue for the local country management to have a formal contact point on Information Security matters and requirements which could be bespoke to the location
Ensuring that group wide information security initiatives are successfully implemented in the local context.
Informing Group Risk Assurance on any new and amended requirements from the local Regulators and any Internal and External Audits.
Performing annual assessment on the Information Security Posture for the country.
Working as Data security Qatar Central Bank Team ensuring the compliance with the instructions and guiding principles issued by QCB,
Exchanging the experience in the field data security between the banks and QCB
Efforts to improve the awareness about the security of data in the banking sector and appropriate security training for regularizing the banking sector.
Facilitate Disaster Recovery Management, and Business Continuity Program
Successfully Completed projects working under BAU namely ICSS, SCCM. WSUS etc.
Given continuous support to the users resolving the tickets and completing the RMSs .
Sent to Qatar and successfully completed the Doha Refurbishment Project in the given time frame re-locating the more than 60 Users including Global Market Team to a new swanky floor technically equipped as per the SCB Standards,
Contributed by resolving the TIN Printing issue for Qatar resulting the TIN printing transfer from UAE to Qatar.
Worked as a Team member and successfully contributed in the completion the projects like SCB Khalidiya Flagship Branch Abu Dhabi, SCB Deira Branch Dubai.
Environment: Windows XP Professional, Win 2000 Server, Exchange server 2003, Lotus Notes etc.
Installation and Configuration of Nokia Laptops as per the Nokia Standards and IBM guidelines.
Managing the Encryption and Decryption process of Pointsec on the Laptops.
Installing and configuring Nokia Business Centre on Nokia cell Phones.
Resolving all the IT related Users Issues .
Ensuring the smooth connectivity of the Wired and Wireless Network .
Dealing with the Procurement and Distribution of IT related goods .
Giving Technical assistance in holding the Web casts and NOMT meetings.
Environment: Windows XP Professional, Win 2003 Server and Exchange server 2003.
Responsible for installation, configuration and daily maintenance of all the hardware, Peripherals, Auxiliary devices, Operating systems and Software to effectively deliver system uptime.
Configuration & Managing Microsoft Outlook.
Configuration of AS/400 at client end.
Configuration of servers, workstations and I/O devices.
Implementation of RAID Technology.
Managing network printers and Backup Scheduling.
Backup, restore and tape management.
Automating daily jobs.
MBATM