Mohamed MARICAR

Experience

• 

  Nokia

  Oct 2000 - Aug 2004

  Application Specialist

  o Worked in Supply Chain Management (SCM) implementation projects.o Transformed business requirements into technical design.o Maintained version control management. o Assisted in trouble shooting problems.o Created solution using Oracle PL/SQL and UNIX shell scripting.o Developed scrambling scripts for confidential data.o Implemented solutions in-line with service & security importance and critical.o Worked closely with concept owner & architect to define system and security requirements. o Assisted Advance Application Support personnel for troubleshooting.o Acted as a build manager and developer in configuration management tool. o Developed security test scripts and tested applications. Show less

• 

  Nokia

  Oct 2005 - Nov 2010

  IT Assurance Manager

  o Responsible for risk management for business units.o Conduct Risk Assessment, Business Impact Assessment & Privacy Impact Assessment.o Establish & monitor risk mitigation plans.o Reviewing security compliance in applications.o Consulting projects to review security architecture, application security issues and to implement security services.o Proactively planning & coordinating Information security activities such as identity and access management.o Assisting in resolution and follow-up of security incidents.o Arranging & coordinating Security Audits (Testing) & Vulnerability Assessments.o Reviewing collaboration security for outsourcing partners.o Providing expertise in information security standards & best practices.o Providing security awareness and training.o Consulting Production Management in Operations Security.o Enforcing Sarbanes-Oxley Act (SOA).o Working with IT Continuity Management:-  Facilitating Table-top exercise.  Organizing Technical Recovery Exercise.  Reviewing IT Continuity Plan (BCP).o Developed the following security processes:-  Security review checklists for SDLC.  Vulnerability Management Process.  Emergency/Incident Management Process. Show less

• 

  Eurojust

  Dec 2010 - Feb 2015

  ICT Security & Business Continuity Assistant

  o Performing Risk Assessments.o Assisting in development of ISMS framework.o Developing & reviewing Security policies, procedures and guidelines.o Assisting projects with information security standards & best practices.o Developing & conducting Security control assessments.o Conducting Information Security awareness training.o Discovering vulnerabilities in IT systems.o Implementing hardening baselines for servers & databases.o Verifying policy compliance by manual and technical review.o Monitoring security information & events.o Organizing security audits for applications and network infrastructure.o Conducting security incident investigations and analysis.o Updating & maintaining Business Continuity Plan.o Planning & facilitating Table-top & Technical Recovery exercises Show less

• 

  EUSPA - EU Agency for the Space Programme

  Feb 2015 - Jun 2023

  Security Incident Handler

  o Ramp-up of the GSMC security operations center.o Contributing to Security Engineering processo Carrying out Risk Assessments.o Contributing to System Security Accreditation process.o Supervision of the security and system status of Galileo system.o Gathering Cyber threat intelligence.o Conducting investigation for Galileo security incidents.o Execution of Incident handling process to the resolution of the incident.o Review and refine the incident handling processes.o Contribute to the running and maintenance of vulnerability lab.o Preparing Galileo Security Status report for European Commission and Member States.o Deployment of Incident Monitoring tools in Secured Tempest area.o Building knowledge-base for Incident response.o Liaising with contractors for application customization. Show less

• 

  INTERPOL

  Jul 2023 - now

  Information System Security Analyst