Senior Information Security Analyst
Leading Bank in Kuwait
Total years of experience :19 years, 2 Months
Successfully completed implementation of Data classification and Data Leakage Prevention system for all KFH Staff by appropriately balancing People, Process and Technology
Key role in the review of Information Security Incident reports
Involved in building Bank wide vulnerability management program
Responsible for Governance of information security policies and recommend required changes to strengthen the information Security controls
Overall Governance of Identity & access control, including review of security roles, access matrix
Responsible for review and analyze change request related to IT infrastructure change
Worked as Team Lead for IT Security team.
Responsible for carrying out various systems, network and application risk assessment to find weakness in implemented information security controls and recommending mitigating controls
Instrumental in the review of new IT Security solutions and implementing security solution such as Firewalls, IPS, Mail Filtering Gateway, End Point Security, Monitoring Tools when required
Efficiently performing quarterly vulnerability assessment using tools such as Nessus, Qualy’s Guard and circulation of reports
Executing infrastructure & web application penetration testing
Responsible for management & administration of Tipping Point IPS
Effectively monitoring different system, network logs and investigating the critical logs and alerts received from SIEM system
Review routers and firewall configuration and provide detailed report to HOD
Involve in Business Continuity planning and testing
Yearly ISMS ISO 27001 risk assessments before the external audit and coordinating the final audit
Responsible for a yearly review of organization wide information security policies and provide review feedback to HOD on requiring changes
Pre-production system and application scan to check existing vulnerabilities and track until closure
Responsible for implementation of information security controls as per PCI-DSS standard and co-coordinating with external auditor
Responsible for Information security of Zajil International Telecom
Successfully designed and implemented network security solutions for Zajil Telecom and their corporate customers using solution from vendor such as Cisco, Juniper, Palo Alto, Mccafee, Cyberroam.
Configured and administrated security devices such as Firewalls, UTM, IPS
Responsible for Management and Administration of MSSP gateway (managed security service provider)
Provided users access from remote locations using VPN technology (SSL and IPSEC)
Installed and configured B2B and B2C client and corporate VPN connectivity for Zajil Telecom and its corporate customers
Performed a vulnerability assessment of system, network and security devices using tools like Nmap & Nessus and forward reports to HOD
Reviewed network device configuration to find security weakness in configuration and provide detailed reports to CISO
Responsible for management of caching engine and monitoring internet traffic as per the MOI (Ministry of Information) instruction
Carried out yearly physical security risk assessment of the data center
Carried out Risk assessment as per ISO 27001:2005 standards and successfully cleared external audit
Worked as Lead Auditor in ISMS Internal Audit team after successful implementation
Maintained a Network consisting of Cisco 2600/2800/3600 series routers, Cisco 2900/3500 series switches & Cisco 4400 series wireless controller
Managed LAN, WAN and Server administration
Responsible for handling of AD, DHCP and DNS servers
Implemented and maintained Security on LAN using file/directory permissions, password/account restrictions and firewall features
Set up Antivirus Sever (Symantec Antivirus Corporate Edition) and maintaining Updated antivirus server and monitoring the virus activity and cleaning the virus from infected PC’s using tools, and admin console
Installed and configured windows server update services on windows 2003 server and configure automatic update to all windows client machine for updates of new patches
Managed and maintained Exchange server
Managed network consists of Cisco 2600/3600 series routers and Cisco 2950/3560/3750 switches
Updated and changed the configuration of routers & switches based on the requirement
Managed and maintained PIX 525 firewall and changing configuration as per the requirement
Monitored network performance using Cisco works
Troubleshooting problems related to LAN, WAN & wireless Administration
Configured broadband connection and configure routing and remote access using broadband connection
Configured and resolved problems related to Wireless network & Setting up security for wireless network
Configured Routers &Switches troubleshooting problems related to LAN & WAN connectivity
Configured wireless routers, Access points, Print servers, Bridges & IP Cameras
Configured site to site VPN and troubleshooting problems related to VPN
Configured VOIP devices and troubleshooting problems related to VOIP
Monitored network traffic
Certified Information Systems Security Professional