Ismail Sami Abdelaziz Afia

Experience

• 

  EFG-Hermes

  Jul 2007 - Mar 2010

  Corporate Network Engineer

  Key Responsibilities:• Responsible for configuration and support for network switching and routing in daily operation.• Ensure the stability and integrity of in-house voice, data, video and wireless network services.• Planning, designing, and developing local area networks (LANs) and wide area networks (WANs) across the organization.• Participating in the installation, monitoring, maintenance, support, and optimization of all network hardware, software, and communication links.• Analyzing and resolving network hardware and software problems.• Resolve detailed technical Network operational issues and other network connectivity issues that have been escalated to the network team. • Practice network asset management, including maintenance of network component inventory and related documentation and technical specifications information. Achievements• Developed the company’s first network inventory.• Switched all network devices management protocols to secure ones.• Designed and implemented the company’s secure WIFI network. Show less

• 

  EFG Hermes

  May 2010 - Jun 2019

  Managerial Responsibilities:• Leading a team of IS specialists, in charge of their recruitment, training, and coaching.• In charge of the team’s performance, compliance and development.• Working with the CEO and the board of directors to complete the corporate Information Security strategy and objectives.• Managing the Information Security budget including procurement and vendor relations.• Contracting with consultancy service provider such as; McAfee, FireEye, Deliotte, KPMG, Security Meter, and Secure Masr.• Liaising with different business units to implement the information security measures to ensure compliance with the corporate policies.Technical Responsibilities:• Conducting Information Security Assessments on all the IT infrastructure.• Maintaining corporate wide Security Operation Center (SOC) in all corporate offices in 7 countries.• Designing the corporate information infrastructure in light of the Information Security policies and best practicesAchievements: • Formed EFG Hermes’s corporate Information Security Policies and Procedures from scratch. • Worked on developing the Information Security Department by assembling high quality calibers to operate and implement the Information Security Policies.• Developed the Incident Response (IR) team to handle the Information Security emergencies.• Contracted with Mandiant (US Consulting Services) to complete information security maturity assessment for EFG Hermes in year 2017, the audit results was zero finding. • Established the Information Security requirements for ValU Company (EFG Hermes’s Consumer Finance), newly developed FinTech business unit. • Designed and developed the Information Security plans for all EFG Hermes’s newly established branches (domestic and international) – USA, UK, UAE, and Kenya.• Established brand protection program for EFG Hermes trademarks and domains.• Developed Security Awareness Program for all of EFG Hermes staff. Show less Key Responsibilities:• Leading a team of Information Security Specialists, in charge of the team’s performance and development. • Conducting IT risk assessment on new and existing infrastructure to optimize risk posture and manage IT risk, performance and cost for maximum business returns.• Assisting in the running of vulnerability assessments to identify the potential threats to the infrastructure. • Providing status reports to the senior management with recommendations to mitigate/ eliminate the most serious vulnerabilities.• Evaluating and implementing new information security technologies• Investigating the security incidents and customizing the handling plan according to specific operational needs.• Promoting best practice through effective internal risk controls and monitoring. • Reviewing monthly reports regarding the IT Security posture in the company for all corporate offices.• Conducting of quarterly network/application penetration testing on the company’s systems and networks.Achievements: • Redesigned EFG Hermes’s security infrastructure.• Implemented Next Generation Firewalls and IPSs across all the company’s network. Show less Key Responsibilities:• Planning and Designing Network Topology for the Internal LAN and for WAN connectivity• Maintains network performance by performing network monitoring, analysis and performance tuning.• Troubleshooting network problems and escalating problems to vendor.• Upgrades network by coordinating with vendors, test, evaluate and implement enhancements.• Administrating different Firewall layers (L3 and L7) by implementing and performing day to day operations, troubleshoot problems and escalate to vendors.• Managing company Internet Resources and administrate the Internet Dynamic Protocol (BGP) with the service Providers• Administrating Core Network Components, analyzing and isolating any issues.• Administrating wireless network and identify wireless coverage and quality issues.• Implementing QoS over WAN to assure critical business traffic stability.• Performing WAN optimizations operations to assure smooth traffic flow.• Evaluating new technologies related to LAN/WAN and Firewalling.• Implement and maintain network security parameters to assure a risk free network hardware.• provide peer technology associates and end user training where required.• Handling the network related change management and ensure all changes are under standard procedure and controlling.Achievements• Moving EFG Hermes Datacenter To Smart Village - the company HQ.• Building the company first disaster recovery site Show less

  • Corporate Information Security Manager

    Sept 2013 - Jun 2019

  • Corporate Information Security Team Leader

    Mar 2012 - Sept 2013

  • Senior Corporate Network Engineer

    May 2010 - Mar 2012
• 

  Etisalat Egypt

  Jul 2019 - Sept 2021

  Inciedent Mangement and SoC Manager

  Managerial Responsibilities: • Managing the cyber-security Incident Response Team (CIRT) and Security Operation Center (SOC) teams. CIRT is a group of security experts that handles computer security incidents. • Own the Cybersecurity Incident Management framework, which incorporates goals and objectives, policies, and processes to minimize business impact. • Developing and distributing executive-level summaries of cybersecurity incidents, which impact the company assets. • Defining, monitoring, and measuring the accomplishment of goals and objectives by quantifying the implementation, efficiency, and effectiveness of the Cybersecurity Incident Management process, and identifying ways to enhance and automate various processes. • Identifying and tracking incident management performance measures to provide relevant performance trends & and KPIs over time. • Creating a dynamic enterprise-wide CIRT team if needed. Some of these team members can be attorneys, human resources, public relations, and various IT staff with specific specializations. • Led strategic and tactical operations focused on developing, applying, and communicating a deep understanding of the cyber campaign and nation-state threats to protect the enterprise. Technical Responsibilities: • Managing the Execution of day-to-day cybersecurity Incident Management operations. • Developing and implementing monitoring use cases in the SIEM, managing security infrastructure components (SIEM, Resilient...), and being hands-on in managing investigations. • Providing managemental oversight for the identification, triage, and response of events or incidents of apparent security breaches. • Documenting, communicating, and tracking all Cybersecurity Incidents affecting Enterprise, Telecom, ISP, and B2B. • Benchmarking and recommending security solutions to defend against the latest cybersecurity threats. Show less