Deputy CISO and Head of Cybersecurity Assurance
البنك السعودي للإستثمار
مجموع سنوات الخبرة :23 years, 8 أشهر
null
Instituted an enhanced Security Monitoring Framework to ensure critical security events are analyzed
and correlated in near real-time basis round the clock 24x7
Increased SOC monitoring coverage to more than 95% for 4000 workstations, 1500 Servers, 700 ATMs
and 1000 network and security devices
Doubled SOC detection capabilities by detecting 1500 cases in 2015 to 3000 cases in 2016, while
considering the improvement of SOC detection and hunting capabilities as moving target due to growing
SOC visibility and analysts' skills.
Increased the security compliance posture to 90+ % of IT Assets by adopting robust VA and secure
configuration process, while ensuring the continuation and enhancements of vulnerability and
configurations assessment process.
Slashed the number of Critical and High security vulnerabilities to Zero during 2016 for Internet facing
applications, while timely responding to newly developed ones.
Conducted up to 6 cyber drills on annual basis to measure (people, process and technology) effectiveness
in responding to growing and changing cyber security threats.
Established and maintain a risk based security controls baseline coverage matrix for IT team to follow and
implement
Certified hundreds of IT new assets yearly prior commissioning in the production network, while
maintaining security Asset Certification Process (secure configuration and patching)
Institute data leakage monitoring process, fine tuning process and aligning it with SOC continuous
monitoring and reporting
Orchestrated tens of data leakage violations on daily basis to data owner for their review and required
action
Reduced security controls gaps (missed controls) to less than 1% during 2016 on entire IT assets, while
establishing process to detect regularly such gaps and reporting it to concern for remediation including
but not limited to data leakage prevention, data classification tool, AV, NAC etc.
Monitored the usage of production data in UAT environment and enforce its revocation process
Responded to Immanent Threats (regionally and globally) as follow: 57 in 2015 and 135 in 2016, while
sustaining the Proactive Threat Management process involving detection and responding to threats in a
proactive manner to minimize impact to bank services and reputation.
Timely response to confirmed Incidents as follow: 58 in 2015 and 21 in 2016, the effective Security
Incident Management process and procedures which was in place has played vital role to manage and
contain the impact as no Incident lasted longer the predefined containment time window.
Put and executed a road map and enhance Security Forensics capabilities for bank to facilitate
investigation of security incidents and furnish reliable and acceptable evidences in accordance with
industry best practices.
Managed Security Controls life cycle from analysis, design, requirements, solution selection till
deployment and administering the control.
Built security infrastructure and systems which are Resilient against attacks
Security technology evangelist and subject matter expert for IT Security within IT Group and CIO.
Managed Identity Management and Access Control for all applications and infrastructure elements at BSF.
Managed TPAM- Privileged password management system and SSO solution.
Deployed Anti-Malware solutions for Web and Email services.
Deployed the upgraded and revamped SIEM infrastructure to accommodate the growing coverage
requirements and enhanced visibility
Responsible for implementation of security controls rules/policies in accordance to Corporate
Information Security baseline standards
Responsible for management and administration of all existing security controls across such as IPS, WAF
and DLP.
Built a PKI infrastructure internally and deployed SSL certificate to more than 250 business applications
and thousands of IT devices.
Liaison to facilitate the Support for external security audits
Ensured compliance with applicable Security Mandates including but not limited to the ones from SAMA,
Tadawul, PCI DSS and ISO 27001.
Provided oversight and support to IT infrastructure team for effective installation and maintenance of
security controls.
Responsible for reviewing IT architecture and building security controls components around it
Built a complete road map for strategical IT security projects for the department in particular and the
bank in general.
Conducted source code review for E-Services application through third party
Liaison person for SAMA and Tadawul on matters related to Information Security
Responsible to ensure adequate security of BSF online banking services
Played primary role for department to get ISO 27001:2005 certification
Played primary role with PCI project team toward achieving the certification.
Supervised a team for monitoring Internet Banking (IB) Infrastructure 24 / 7.
Security Transaction: Solid experience in SSL digital IDs management
Network Security Design & Architecture: Solid experience with network security design solutions by participating in the assessment of different proposed network solution by the vendors. Recently, a complete evaluation was submitted to ISSD management of integrating three network environments (RAS, Internet Desktop and Trusted partner) into one secured network infrastructure.
Administered PIX Firewall 525: Installation of hardware, configure multiple interfaces on the PIX, monitor PIX firewall syslogs, and configure access control and filtering on the PIX.
Sun Screen Firewall Administration: ACL configuration, Services and addresses configuration
Administered Host Based Firewall “Sun Screen Lite” which is installed on Sun Solaris Platform.
Administered Net Screen (NS) Firewall (5200), (208) & (5GT): Configure access control and filtering on the Net Screen and monitor NS firewall syslogs
Symantec Raptor Firewall Administration: Rules base configuration, network entities and services creation. Configuring the VPN tunnels and authenticating the users via RSA secure Id method.
Conducted E-Banking project as I.S. security administrator.
Conducted Internet Banking Quality Control (IB QC) project as I.S. security administrator.
Administered RACF system (Resource Access Control Facility).
Administered SYSTEMATIC’s applications and SARIE
Conducted Desktop Standardization Project team for upgrading PCs
Assisted in preparing Y2K command center at the bank.
Designed my home page by using MS FrontPage tool.
Attended software selection methodology and local area network seminars presented by Andersen Consulting (AC) staff.
Designed the system development life cycle (SDLC) for the Release Control System software.
Participated in software selection project phases via the “Investment Project.”
Achieved Y2K readiness verification for selective PCs.
Trained SHB staff on using Windows NT, Lotus Notes and MS-Office programs.
Worked as troubleshooter for daily computer problems.
Computer languages C++, COBOL Data Communication TCP /IP Databases Software Selection Methodology
