Manager - Information Security
National Bank of Kuwait
Total years of experience :22 years, 4 Months
Security Operations Centers (SOC)
Security Operations Center (SOC) Manager
• Manage the team roster and oversee the daily operation.
• Ensure the team responds to the alerts on predefined SLAs.
• Guide the team on how to perform investigations and suggest resolutions.
• Work with change management team to identify new systems being pushed to production so that we ensure the system is integrated with the SIEM solution.
• Monthly Dashboard reporting to CISO/CIO for SOC KPIs.
Monitoring & Compliance • Developed and implemented database monitoring for Critical Banking Databases & Applications using Infosphere Guardium. • Manage compliance metrics and dashboard reporting to CISO. • Conduct internal ISMS 27001 audits and security reviews for ISO 27001 compliance and re-certification. • Ensure sensitive data protection, review and report any compliance violations as per PCI, ISO 27001 & internal policies. • Assist in maintaining compliance for PCI, ISO 27001 and internal policies. Incident Management • Ensure proactive monitoring for incident identification and reporting as per NBK Incident Management Framework. Access Control • Ensure regular user access reviews are conducted across critical NBK IT Infrastructure and user access is provided based on valid business justification. Audit Support • Assist and extend support for internal and external audits. • Assist Business & IT in remediation of audit findings. Project Management • Assist with key security projects and extend support on IT & Business projects. Governance and Advisory • Review and assist in developing security policies, processes and procedures based on industry standard.
• Liaise and advise different business units to identify security in business and processes and support them with remediation to secure business information. Security Operations • Facilitate and coordinate internal and external vulnerability assessments and reporting. • Liaise with IT for patch management to ensure timely closure of high risk issues. • Perform system audits & security reviews for NBK & NBK Capital IT Infrastructure. • Evaluate new technologies and conduct POC. • Manage relationship with vendors for timely maintenance and ensure efficient SLA implementation. • Review and approve firewall requests to access critical banking infrastructure. • Managed Technologies & Tools such as InfoSphere Guardium, Nessus 5.2, Cisco DLP, Acunetix Web application Scanner, Control Case PCI Card Data Scanner. Achievements • Developed monitoring compliance framework for NBK ISO Dept. • Key player in recertification of ISO 27001 for NBK ISO Dept. • Streamlined internal patch management and External VA tracking process for ISO.
Developed a security strategy based on ITIL, using the PDCA lifecycle framework.
Developed security policies for various domains.
Developed a semi-qualitative Risk Assessment template for TSC (Pending approval).
Initiated a security awareness program for the TSC group.
Integrating security approval in the change management process.
Initiated Business Dependency analysis for critical assets.
- Disaster Recovery Planning for the datacenter.
Responsible for the IT Infrastructure of ITG (Kuwait, Dubai, Jordan).
Designing, planning and proposing cost effective LAN/WAN network solutions for the Head office & Remote sites.
Responsible for secure connectivity from head office to remote sites.
Responsible for smooth operation of the Corporate servers.
Planning the networks and Systems for the security over Firewall rules, Windows Group Policies and Anti-virus deployments.
Setting up secure access to application server from remote sites through VPN.
Reviewing access request forms, server logs & network usage.
Assist in ITIL implementation initiative; operational level;
Review and recommend hardware based on business requirements.
Ensuring correct setting up of hardware standards for SDLC.
Managing the operation of data integrity (disaster recovery, data, systems and equipment security)
Creating test environments and conducting post implementation technical reviews.
Review various IT quotations for procuring new hardware/software.
Represented Wataniya Telecom as the Project Head on the US Army Hotspot Project.
Planning, Design & Deployment of wireless mesh network for the US Army camps.
Planning, Design and Deployment of MOH IP network for Microwave and FSO.
Implemented a Radius Server (AAA) for prepaid internet access for the US Army.
Responsible for Smartlink Telecom’s Core network and planning hotspots across Kuwait.
Project Manager for migration of existing AAA server to the new server.
Setup NOC escalation and reporting procedures for efficient customer support.
Evaluating new technologies for prospective future deployments.
Designed and Setup a complete Network Operations Center for Smartlink Telecom
Datacenter setup, planning and equipment security.
Availability monitoring of entire core, distribution, and edge network services and H/Ws, through centralized NMS tools.
Evaluating, lab testing, analyzing, and reporting of new protocols, IT Technologies, and vendors.
* Monitor the Kuwait - Network Gateway, WAN links for Optical Carriers and customers.
* Trained on the latest Cisco 12000 series routers for monitoring, configuring and administration purposes.
* Interact with Flag Telecom-UK, Teleglobe-Canada incase of outages and network issues.
* RIPENCC Administrator: Maintaining, Registering IP ranges, DNS and Autonomous System (AS) with RIPENCC. (Regional Registry for the Middle East)
* Supervise and train a team of five members, prepare shifts; prepare various NOC documents, prepare Service Order forms for registered customers.
* Troubleshoot customer’s network using various network tools.
* Assigned the task of completing the Technical and Floor Diagram at the customer site.
* Documentation of the whole IP network using VLSM.
*Providing Technical support to customers with issues relating to PC’s and Internet.
*Monitoring the Bandwidth assigned to the customers per T1 line.
*System Administration and maintenance on Win XP/Win 98 platform.
*Updating the Technical Support and providing documentation for new issues.
*Supervising the Internet and Network Traffic.
*Thorough knowledge of the various technical resources available on the net.
*Developed content for the company’s site : http://www.afaqnet.net
*Corresponding with Qualitynet incase of network failures and high internet traffic.
*Installed different operating systems, software and hardware as per requirement.