Information Security Consultant
ProVise Management Consultancy
مجموع سنوات الخبرة :9 years, 5 أشهر
Completed projects across organizations in different business verticals such as financial institutions, cloud service provider, consulting organization, entertainment parks, sports organizations in middle east countries and India.
Spearheaded current state assessment for regulations such as ISR, NESA and SAMA has been conducted successfully.
Conducted successful readiness audit for multiple organizations on ISMS and PCI DSS to help them to get certified. The scope ranges from auditing IT infrastructure, organizational policies and procedures, process standardization, recommending industry best practices to meet the compliance.
Development and review of information security policies and technical standards based on the various international standards and local regulatory requirements. Security Operations Centre maturity assessment and best practices implementation.
Data life cycle management policy development which includes collaborating with infra team for data identification, classifying data and level of protection recommendation based on data classification label.
IT assets security audit and reporting - Security audit report delivery for multiple customers. Vulnerability Management - Audit finding closure from VA reports. Hardening - Accomplishing windows and linux VM/physical servers hardening process.
Risk & impact analysis for changes in network - For any changes in network, risk analysis is carried out and reported to customers.
Change management - Key responsible member in change management board for validating & implementing customer change requests. Firewall
policy review for customers.
Security Information and Event Management (SIEM) - Proactive 24x7 monitoring of customer network and alerting customer on security incident occurrences.
Patch management & port open analysis - Patching of servers with critical and important security updates by patch management process, analysis of port open for firewall policy and providing recommendation to secure the system from attacks.
لقد تم حذف الرابط بسبب انتهاكه لسياسة الموقع. يرجى التواصل مع قسم الدعم لمزيد من المعلومات.