سيد محمد تيمور, Senior Information Security Consultant

سيد محمد تيمور

Senior Information Security Consultant

Help AG

البلد
المملكة العربية السعودية - الرياض
التعليم
ماجستير, Information Technology
الخبرات
12 years, 6 أشهر

مشاركة سيرتي الذاتية

حظر المستخدم


الخبرة العملية

مجموع سنوات الخبرة :12 years, 6 أشهر

Senior Information Security Consultant في Help AG
  • المملكة العربية السعودية - الرياض
  • أشغل هذه الوظيفة منذ نوفمبر 2023

I am currently employed as a Resident Consultant (Cybersecurity, GRC). My primary roles and responsibilities include third-party risk management, reviewing cybersecurity documentation, and promoting cybersecurity user awareness.

Senior Cybersecurity Consultant (GRC) في Dimension Data
  • المملكة العربية السعودية - الرياض
  • أبريل 2022 إلى نوفمبر 2023

I have over 10 years of experience as a Senior Cyber Security Consultant (GRC). I have collaborated with national and multinational organizations on various projects, including ISO 27001:2013 certification, SAMA Cyber Security Framework, NCA-ECC Framework, NIST standard assessments, risk assessments, and IT security audits.

Information Security Consultant في Innovative solutions
  • المملكة العربية السعودية - الرياض
  • أبريل 2016 إلى أبريل 2022

Currently working in Innovative Solutions as an Information Security Consultant, having 8+ years of experience. I have worked with National and Multinational Organizations on several projects like ISO 27001:2013 certification projects, SAMA Cyber Security Maturity Assessment, Risk Assessments, IT Security Audit, PCIDSS Audits and physical security review.

Executive IT Security في Warid Telecom
  • باكستان - لاهور
  • مارس 2014 إلى أبريل 2016

-> Development of policies and procedures & review of existing policies & procedures according to ISO 27001 standard.
-> Vulnerability Assessment of IT Machines
-> PKI (Public Key Infrastructure) Management
-> Security awareness in the organization

Information Security Officer في USA based Healthcare IT company (MTBC)
  • باكستان - روالبندي
  • ديسمبر 2011 إلى مارس 2014

-> Organization wide Implementation of ISO 27001:2005 Standard
-> Annual Internal Audit of IT infrastructure
-> Vulnerability Assessment of IT Machines
-> Management of GFI End Point Security to enforce Access Control Policies.
-> Review firewall logs of internet usage (web logs)
-> Email logs Analysis(Exchange Server)
-> VPN and FTP logs Analysis
-> Assist compliance department to develop security policies
-> Basic level Application security testing
-> Intermediate level Penetration testing of Internal Network
-> Management of Surveillance system
-> Any duty assigned by management

الخلفية التعليمية

ماجستير, Information Technology
  • في University Of Arid Agriculture
  • أغسطس 2010

Master of Information Technology Principal subjects: Higher level Programming Languages (C#, Java, C++), Networking, Network Security, Operating System, System Administration, Databases, Management

بكالوريوس, Commerce
  • في Punjab College of Commerce
  • أغسطس 2007

Bachelor of Commerce in 2007. Major Subjects were: Financial and advances accounting, Audit, Human Resource, Tax, Economics, Management, Mathematics

الثانوية العامة أو ما يعادلها, Pre-engineering
  • في Sirsyed science college
  • أغسطس 2005

(HSSC) Higher school secondary certificate in 2005 with major in Pre-Engineering. Major Subjects were: Mathematics, Physics, Chemistry

دبلوم, Science
  • في Mannar Public School
  • أبريل 2003

(SSC) Secondary school certificate in 2003. Major subjects were: Mathematics, Physics, Biology, Chemistry

Specialties & Skills

Databases
System Administration
Windows Network Administration
Linux Server
Vulnerability Scanning
ASP.NET
EXCHANGE
FIREWALL
INFORMATION SECURITY
RISK ANALYSIS
SECURITY
SECURITY POLICIES

اللغات

الانجليزية
متمرّس
الأوردو
متمرّس

التدريب و الشهادات

Certified Information Security Manager (CISM) (الشهادة)
تاريخ الدورة:
March 2022
صالحة لغاية:
January 2026
Certified Information System Security Professional (CISSP) (الشهادة)
تاريخ الدورة:
December 2022
صالحة لغاية:
November 2025
Payment card industry professional (PCIP) (الشهادة)
تاريخ الدورة:
August 2018
صالحة لغاية:
December 2021
Qualified Security Assessor (QSA) (الشهادة)
تاريخ الدورة:
August 2018
صالحة لغاية:
August 2022
ISO 27001 :2013 Lead Auditor (الشهادة)
تاريخ الدورة:
April 2016
ISO/IEC 27001:2013 Information Security Management Systems: Lead Implementer (الشهادة)
تاريخ الدورة:
October 2016

الهوايات

  • Playing Cricket
    Won a University tournament in 2009