Head of Information Security
Confidintial
Total years of experience :20 years, 3 Months
- Responsible for all information security and business continuity.
- Managing all security projects outside the company.
- Managing security RFP’s, proposals and projects.
- Building the cyber security service catalog and capabilities.
Worked in different security projects for finical and petrochemicals sectors. Tasks I were responsible for in these projects listed below:
- Security Governance
- SOC Management & Security Incident Response
- Security Controls
- Risk Management
- Security Capability Assessments
Managing the information security solutions unit and security complaince.
Working as IT Risk Assessment Manager in the IT Risk Management Department. Managing the IT risk assessments, PCI DSS, ISO 27001, Internal audit within IT and other security projects.
Working in the ISSD (Information Security Department) Senior Security Officer. I Worked in the Security Risk & Compliance team that handles Information Security Risk Assessments, Validation and Control Assessment. Part of the PCI compliance team and part of the ISO 27001 implementation project. Project manager for File Integrity Project (Tripwire) and Database Integrity Project (Guardium). Also I was a member of the IT communication network team that leading different communication and awareness events in the IT division. Leading the information security solutions unit and manage all security projects such as internal security, PCI and regulatory projects. Managing Information security engineering section for many times. Managing NCB SOC activates as SOC project manager.
Worked the ISOSP (Information Security Operations, Support & Planning) team as an Information System Specialist. Working on the Firewalls, Intrusion Detection System, MacAfee Anti Viruses, Mail & Web filtering, Risk Assessment, Vulnerability tests, Security Project Planning, LAN security audit, Network monitoring, Cisco Active Control Server and Cisco virtual Private Network.
Worked 4 months in the LAN Security audit, installing Astaro firewall, installing windows 2000 advanced server and windows 2003, monitoring the IDS and handling the ePO as a part of the ISSR project at Saudi Arabian Airlines.
Worked 2 months in the PC’s Maintenance, software installation and troubleshooting of network.
Worked 8 weeks with IBM Hardware andSoftware Services in installation, customization and troubleshooting of network (LAN and WAN).
Graduated from KFUPM with a BS degree in Computer Engineering GPA is 2.236 (out of 4). Courses taken include Computer Communications, Computer Networking, C Programming, Parallel Computing, Distributed Systems, Operating System, Computer Architecture and Algorithms, Management and International Relations. Did a 20 pages report on the RISK processors and a presentation on the CDMA. Wrote 1200-word report on WAP Communication Parts and Security. Did senior design project on the WAP Emulator.