Sr. Manager - Cyber Security
Nayifat Finance Company
مجموع سنوات الخبرة :19 years, 8 أشهر
• Working with Cyber Security Department.
• Reports to IT and Chief Risk Officer.
• Handling Administration and Security Infrastructure Devices including Imperva, Symantec DLP, Nessus, Cyber Risk, Splunk SIEM Solution, Symantec Messaging Gateway, Privilege Access Management and other Cyber Security technologies.
• Review the Daily, Weekly and Monthly reports and send it across to Higher Management.
• Involved in Cyber Risk Management framework meetings from SAMA and External and Internal Audits.
• Excellent troubleshooting skills.
• Works with PCI and ISO 27001 Vendors to assist the organization to achieve the certifications.
• Creating and Reviewing Information Security policies in the organization.
• Ability to work with team spirit.
Key Result Areas:
•Participate in the IT projects by reviewing proposed designs and solutions.
•Involved in the team meetings with CSC Team.
•Currently Handling Qualys Vulnerability Management Solution, Tripwire File Integrity Monitoring, Tibco’s Log Logic Solution, Symantec Data Center Security Advanced Solution.
•Participate in Incident Response based on Security Incidents and breaches.
•Responsible for Network and Security Devices Administration.
•Participate in integration of Network and Security Devices with SIEM Solutions from DellSecureWorks.
•Follows procedure of Responding to security breaches by coordinating with respective team to mitigate the incidents.
•Participate in Network Malware Detection Projects with SABIC and its Affiliates.
•Participate in evaluation of Phishme Triage Product, a solution to Analyse and Mitigate Spam and Phishing attacks.
•Participate in IT Projects by co-ordination with various team involved in the projects
•Reports to Global Cyber Security Center Manager.
• Responsible for managing and monitoring ISS Proventia Appliance GX-Series; Proventia for Servers and Host Based Intrusion Detection System
• Managing and administering:
o Websense Email and Web Security
o File integrity monitoring through tripwire enterprise and tripwire for change audit
• Performed vulnerability assessment by using tools-Retina, Nessus, Assuria Auditor and McAfee Vulnerability Manager Appliance
• Ensuring continuous process of fine tuning of Proventia Appliances for optimum performance
• Responsible for updating all necessary patches/ XPU updates on IBM ISS Proventia IDS/IPS
• Managing ArcSight &SIEM solutions; systems availability management through Sitescope and business availability centre
• Merit of implementing Cisco Secure ACS Project, IPS/IDS Upgrade Project, Symantec Endpoint Protection Upgrade Project, Symantec DLP and McAfee Endpoint Encryption Projects.
• Handling & managing the activities related to Syslog Servers via ArcSight
• Supervising and managing Juniper’s Netscreen Firewall and maintaining access list on the firewall
• Supervising and managing Entrust IDG for VPN Users.
Key Result Areas:
•Supervised ISS Proventia Appliance (Site Protector) for all events from different network devices
•Responsible for analyzing:
•The IPS events and preparing daily reports for the respective shifts
•Events for any suspicious activities, if any suspicious activities found then:
•Creating an incident report with all the details, escalating it to the management and informing the respective asset/ data owner
•If network is going to get effected, making sure that the system is removed from network and incident is properly chained to the respective channel managers for taking quick & pro-active decisive action
•Handled the activities pertaining to management of surf control email and web filter
•Oversaw:
. from