Hussain Almalki

Experience

• 

  SAUDIA AIRLINES

  Aug 2009 - Oct 2009

  IT Technician

  As an IT Technician during my cooperative program at Saudi Airlines, I provided hands-on support in troubleshooting and maintaining IT systems. I played an instrumental role in ensuring the smooth operation of networks, printers, and software applications, contributing to the overall efficiency of the IT department.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐏𝐫𝐨𝐯𝐢𝐝𝐞𝐝 𝐏𝐫𝐨𝐚𝐜𝐭𝐢𝐯𝐞 𝐈𝐓 𝐒𝐮𝐩𝐩𝐨𝐫𝐭: Successfully resolved technical issues related to network and hardware, minimizing downtime and improving user satisfaction.• 𝐒𝐭𝐫𝐞𝐚𝐦𝐥𝐢𝐧𝐞𝐝 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬: Optimized IT processes and workflows, enhancing the department's operational efficiency.• 𝐄𝐧𝐡𝐚𝐧𝐜𝐞𝐝 𝐓𝐫𝐨𝐮𝐛𝐥𝐞𝐬𝐡𝐨𝐨𝐭𝐢𝐧𝐠 𝐒𝐤𝐢𝐥𝐥𝐬: Developed a systematic approach to diagnosing and resolving IT problems, improving response times.• 𝐂𝐨𝐧𝐭𝐫𝐢𝐛𝐮𝐭𝐞𝐝 𝐭𝐨 𝐓𝐞𝐚𝐦 𝐂𝐨𝐥𝐥𝐚𝐛𝐨𝐫𝐚𝐭𝐢𝐨𝐧: Fostered effective communication within the team, supporting a collaborative environment for IT support. Show less

• 

  Monash University

  Jul 2016 - Dec 2016

  Pen Tester

  As a Pen Tester at Monash University, I conducted rigorous security assessments on web applications and physical infrastructure to identify vulnerabilities and enhance overall security. My role focused on performing comprehensive security audits and delivering actionable insights to strengthen the institution's cybersecurity posture.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐄𝐱𝐞𝐜𝐮𝐭𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐮𝐝𝐢𝐭𝐬: Conducted thorough penetration tests and audits, identifying critical vulnerabilities and recommending mitigation strategies.• 𝐈𝐦𝐩𝐫𝐨𝐯𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐏𝐫𝐨𝐭𝐨𝐜𝐨𝐥𝐬: Developed recommendations adopted to enhance the security of web applications and network infrastructure.• 𝐃𝐞𝐥𝐢𝐯𝐞𝐫𝐞𝐝 𝐃𝐞𝐭𝐚𝐢𝐥𝐞𝐝 𝐀𝐬𝐬𝐞𝐬𝐬𝐦𝐞𝐧𝐭 𝐑𝐞𝐩𝐨𝐫𝐭𝐬: Provided in-depth reports to key stakeholders, facilitating informed decisions on security improvements.• 𝐒𝐭𝐫𝐞𝐧𝐠𝐭𝐡𝐞𝐧𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐰𝐚𝐫𝐞𝐧𝐞𝐬𝐬: Promoted a culture of security awareness across the institution through regular training sessions and workshops. Show less

• 

  SAP

  Dec 2016 - Mar 2017

  SAP Young Professional Program (YPP)

  I gained extensive training in SAP solutions and methodologies during the SAP Young Professional Program. This program enhanced my design thinking, communication, and presentation skills and provided me with a deep understanding of SAP's business intelligence tools and data management solutions.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐒𝐀𝐏 𝐂𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧 𝐀𝐜𝐪𝐮𝐢𝐫𝐞𝐝: I achieved an associate-level SAP certification, showcasing my proficiency in SAP technologies.• 𝐌𝐚𝐬𝐭𝐞𝐫𝐞𝐝 𝐃𝐞𝐬𝐢𝐠𝐧 𝐓𝐡𝐢𝐧𝐤𝐢𝐧𝐠: Developed innovative problem-solving skills through design thinking methodologies applicable across multiple business contexts.• 𝐄𝐧𝐡𝐚𝐧𝐜𝐞𝐝 𝐂𝐨𝐦𝐦𝐮𝐧𝐢𝐜𝐚𝐭𝐢𝐨𝐧 𝐚𝐧𝐝 𝐋𝐞𝐚𝐝𝐞𝐫𝐬𝐡𝐢𝐩: Honed communication and presentation abilities, leading to effective stakeholder engagement.• 𝐃𝐞𝐞𝐩𝐞𝐧𝐞𝐝 𝐓𝐞𝐜𝐡𝐧𝐢𝐜𝐚𝐥 𝐄𝐱𝐩𝐞𝐫𝐭𝐢𝐬𝐞: Gained knowledge in SAP Business Intelligence, Predictive Analytics, and SAP HANA, enhancing my ability to integrate data-driven insights with strategic decision-making. Show less

• 

  STC Solutions

  Mar 2017 - Sept 2019

  As Information Security Manager, I spearheaded the development and execution of a robust security strategy for the Ministry of Media, ensuring the protection of sensitive information and critical infrastructure. I leveraged my expertise to guide the team in addressing complex security challenges and driving operational excellence.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐈𝐦𝐩𝐥𝐞𝐦𝐞𝐧𝐭𝐞𝐝 𝐂𝐨𝐦𝐩𝐫𝐞𝐡𝐞𝐧𝐬𝐢𝐯𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐌𝐞𝐚𝐬𝐮𝐫𝐞𝐬: Developed and enforced policies that safeguarded critical data and infrastructure against internal and external threats.• 𝐋𝐞𝐝 𝐈𝐧𝐜𝐢𝐝𝐞𝐧𝐭 𝐑𝐞𝐬𝐩𝐨𝐧𝐬𝐞 𝐚𝐧𝐝 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭: Directed the response to high-level security incidents, swiftly minimizing impact and restoring operations.• 𝐀𝐝𝐯𝐚𝐧𝐜𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤𝐬: Optimized existing security frameworks, incorporating ITIL and ECC – 1:2018 best practices to enhance overall protection.• 𝐁𝐮𝐢𝐥𝐭 𝐒𝐭𝐫𝐨𝐧𝐠 𝐕𝐞𝐧𝐝𝐨𝐫 𝐑𝐞𝐥𝐚𝐭𝐢𝐨𝐧𝐬𝐡𝐢𝐩𝐬: Managed key vendor partnerships to deliver top-tier security solutions and services. Show less As a DevOps Engineer, I integrated development and operational processes to streamline the software delivery pipeline. My role focused on promoting team collaboration, enhancing deployment speed, and ensuring the highest security standards throughout the development lifecycle.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐈𝐧𝐭𝐞𝐠𝐫𝐚𝐭𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐢𝐧𝐭𝐨 𝐃𝐞𝐯𝐎𝐩𝐬 𝐏𝐫𝐚𝐜𝐭𝐢𝐜𝐞𝐬: Successfully embedded security protocols into the DevOps lifecycle, promoting a holistic approach to secure development.• 𝐎𝐩𝐭𝐢𝐦𝐢𝐳𝐞𝐝 𝐃𝐞𝐩𝐥𝐨𝐲𝐦𝐞𝐧𝐭 𝐏𝐫𝐨𝐜𝐞𝐬𝐬𝐞𝐬: Improved deployment efficiency by implementing automated solutions that reduced time to market while maintaining security compliance.• 𝐌𝐚𝐧𝐚𝐠𝐞𝐝 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐕𝐞𝐧𝐝𝐨𝐫 𝐂𝐨𝐥𝐥𝐚𝐛𝐨𝐫𝐚𝐭𝐢𝐨𝐧: Coordinated with vendors to enhance toolsets and infrastructure, supporting a secure and efficient DevOps environment. Show less

  • Information Security Manager

    Jun 2018 - Sept 2019

  • DevOps Engineer - Ministry of Media

    Mar 2017 - Jun 2018
• 

  Confidential Government

  Sept 2019 - now

  As Deputy CISO, I led critical cybersecurity initiatives that protected the organization’s assets and maintained compliance with international standards. My role involved developing comprehensive security policies, managing vendor relationships, and executing strategies that strengthened the organization's security framework.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐂𝐫𝐚𝐟𝐭𝐞𝐝 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐑𝐨𝐚𝐝𝐦𝐚𝐩: Designed and implemented a cybersecurity strategy that fortified the organization's defenses and aligned with its long-term goals.• 𝐌𝐚𝐧𝐚𝐠𝐞𝐝 𝐇𝐢𝐠𝐡-𝐒𝐭𝐚𝐤𝐞𝐬 𝐂𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞: Led efforts to maintain compliance with industry standards, including ISO 27001 and ECC – 1:2018, ensuring regulatory adherence and operational security.• 𝐎𝐩𝐭𝐢𝐦𝐢𝐳𝐞𝐝 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬: Drove vulnerability management and risk assessment improvements, enhancing the organization’s ability to mitigate threats proactively.• 𝐅𝐨𝐬𝐭𝐞𝐫𝐞𝐝 𝐂𝐨𝐥𝐥𝐚𝐛𝐨𝐫𝐚𝐭𝐢𝐯𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐂𝐮𝐥𝐭𝐮𝐫𝐞: Worked closely with cross-functional teams to promote a security-first mindset, integrating cybersecurity into all facets of operations. Show less As a CyberSecurity Consultant, I provided strategic guidance and expertise to enhance the organization's cybersecurity posture. My role involved evaluating risks, implementing adequate security measures, and ensuring national and international standards compliance. I worked closely with cross-functional teams to create a proactive cybersecurity environment that could anticipate and mitigate threats.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐃𝐞𝐯𝐞𝐥𝐨𝐩𝐞𝐝 𝐚𝐧𝐝 𝐄𝐱𝐞𝐜𝐮𝐭𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐞𝐬: Crafted and implemented comprehensive cybersecurity strategies that fortified the organization's defenses against advanced threats.• 𝐄𝐧𝐡𝐚𝐧𝐜𝐞𝐝 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭: Led vulnerability assessments and remediation efforts, significantly reducing the risk exposure.• 𝐄𝐧𝐬𝐮𝐫𝐞𝐝 𝐑𝐨𝐛𝐮𝐬𝐭 𝐂𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞: Maintained adherence to crucial standards, such as ISO 27001 and ECC – 1:2018, by establishing and refining cybersecurity policies and procedures.• 𝐎𝐩𝐭𝐢𝐦𝐢𝐳𝐞𝐝 𝐕𝐞𝐧𝐝𝐨𝐫 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭: Collaborated with external partners to align their security practices with organizational goals, ensuring consistent security performance across the supply chain. Show less

  • Deputy CISO

    Aug 2021 - now

  • CyberSecurity Consultant

    Sept 2019 - Aug 2021
• 

  DarkFalcon

  Jan 2024 - now

  Founder and CEO

  I founded DarkFalcon to redefine cybersecurity practices by seamlessly integrating security within development and operational frameworks. As CEO, I lead a passionate team in pioneering DevSecOps solutions, transforming the way organizations manage their digital security. My vision is to create a future where security is not an afterthought but an integral part of every development process.𝘒𝘦𝘺 𝘈𝘤𝘩𝘪𝘦𝘷𝘦𝘮𝘦𝘯𝘵𝘴:• 𝐈𝐧𝐧𝐨𝐯𝐚𝐭𝐞𝐝 𝐃𝐞𝐯𝐒𝐞𝐜𝐎𝐩𝐬 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤: Introduced a specialized DevSecOps framework that meets the market's unique needs, setting new standards for security integration.• 𝐄𝐧𝐡𝐚𝐧𝐜𝐞𝐝 𝐎𝐫𝐠𝐚𝐧𝐢𝐳𝐚𝐭𝐢𝐨𝐧𝐚𝐥 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐏𝐨𝐬𝐭𝐮𝐫𝐞: Developed advanced security solutions that streamlined operations and fortified defenses against emerging threats.• 𝐒𝐭𝐫𝐞𝐧𝐠𝐭𝐡𝐞𝐧𝐞𝐝 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐏𝐚𝐫𝐭𝐧𝐞𝐫𝐬𝐡𝐢𝐩𝐬: Established significant collaborations with industry leaders, enhancing the company's reputation and expanding market presence.• 𝐂𝐮𝐥𝐭𝐢𝐯𝐚𝐭𝐞𝐝 𝐚 𝐂𝐮𝐥𝐭𝐮𝐫𝐞 𝐨𝐟 𝐄𝐱𝐜𝐞𝐥𝐥𝐞𝐧𝐜𝐞: Built and inspired a team of cybersecurity professionals dedicated to innovation, continuous learning, and best practices. Show less