Experience

• 

  Banque saudi fransi

  Nov 2014 - Jan 2016

  It security analyst

  Responsibilities:• Effectively implementing, configuring and managing the daily operations of McAfee ePO and linking all McAfee products to be managed, controlled via McAfee agent 4.8, ensuring effective communications with the ePO server.• Proactively securing the whole BSF network, providing comprehensive protection by implementing, operating and security controls for over 4000 workstations by McAfee ScanVirus enterprise 8.8 solution. Also providing security for over 800 servers with Symantec Endpoint Protection 12.1. • Securing more than 800 ATM machines by administrating McAfee Solid Core (HIPS).• Protecting the BSF network from internal threats by blocking the USBs flashes and all types of mass storages by McAfee DLP 9.3 and creating proper policies to block. Receiving exception requests to use by pre-approval under continuous monitoring.• Encrypting hard drives of BSF users laptops to ensure all data is protected with a highly secured encryption algorithm.• Providing internet access by Websense Triton and control internet browsing of 4000 users, prevent, block them from accessing malicious domains, URLs by creating specialized internet policies that satisfy BSF Rules, internet regulations and customize the proper policy for each department users based on the business needs.• Providing database security with IBM Guardium to satisfy SAMA regulations to secure the critical data bases.• Administrating Microsoft PKI server, receiving CSR requests and generate SSL certificates for clients to ensure they are communicating securely with high level of security by encrypted traffic, authenticated safely and legally.• Security incident handler, isolating, disinfecting PC, completing forensic investigations.• Scheduling daily, weekly, monthly reports for internet browsing statistics, security status and send them for concerned parties, high management.• Ensuring that all security controls comply with SAMA, PCI, ISO27001 standards and regulations. Show less

• 

  Westcon middle e

  Feb 2016 - Dec 2019

  Network & security consultant

  Role & Responibilities:The role is a technical sales engineer for ( Juniper – F5 – Dell SonicWALL) who is responsible to do all technical sales activities with the partners and the vendors.- Receiving RFPs, Preparing BOQs.- Providing presentations and enablement sessions for the partners and the customers.- Delivering PoCs for the customers who need to convince that the product will satisfy them as they expect.- Work with the whole security team in Westcon to develop the best ways and solutions that can be provided for Westcon as a distributer and the other parties like vendor, partners and customer and resolve all issues to ensure always that business continue successfully. Show less

• 

  Fortinet

  Dec 2019 - Dec 2020

  System engineer

  Pre-Sales Consultant to show the value for Fortinet security products by performing many daily different tasks like PoCs, Presentations, enablement sessions, security workshops.

• 

  Ministry of housing - saudi arabia

  Jan 2021 - Aug 2021

  Soc lead & vulnerability management head

  - Perform SOC daily operations like supervising on the incident handling process and confirming that each incident is handled following the security policies and standards.- Confirm that each cyber security incident gets the prompt response and pass through all the incident handling phases in quick time.- Communicate with other ministry departments to perform all related cyber security requirements to ensure they are performed and be compliant for the Saudi regulation entity like NCA and other governance entities internally or externally.- Perform internal security audit and review for the ministry essential controls like the firewalls or other main security controls that existing in the IT security department.- Perform vulnerability scan and assessment for any new published service in the ministry and confirm that the service has the security baseline of the ministry security policies and the industry security best practices. Show less

• 

  Confidential

  Sept 2021 - Aug 2022

  Cyber security consultant & pentester

  - Working as a freelancer on cyber security deployment projects like deploying firewalls and endpoint protections and other security solutions to secure the organizations and satisfy their requirements to reach a better security posture.- Providing specialized vulnerability assessment and pentesting services for the main type of web applications and technology services to help the organizations to understand analyze their weakness points to fix it and get more compliant for the official auditing parties based on detailedvulnerability assessment and pentesting reports which is customized based on each organization requirements. Show less

• 

  Sehati for information technology services llc

  Sept 2022 - now

  Soc head & pentesting lead

  Achievments/Tasks• Supervising on Sehati daily security operations including all the IR management.• Supervising on all Sehati pentesting activities including leading,conducting PTs.