Experience

Help AG, an e& enterprise company

• United Arab Emirates
• Computer and Network Security
• 300 - 400 Employee

• Director of Cyber Defense Operations

  • Nov 2020 - Present

  Dubai, United Arab Emirates Key Responsibilities: - Leading Help AG’s Cyber Defense Operations. The operations consist of a 24x7 security operations center (SOC), cyber threat intelligence team, digital forensic and incident response team, and SOAR automation team. - Responsible for delivering high-quality services to our clients in UAE. - Responsible for enhancing the current service and delivery outcomes. - Responsible for cyber defense and MSS thought leadership. - Contributing to Help AG's… Show more Key Responsibilities: - Leading Help AG’s Cyber Defense Operations. The operations consist of a 24x7 security operations center (SOC), cyber threat intelligence team, digital forensic and incident response team, and SOAR automation team. - Responsible for delivering high-quality services to our clients in UAE. - Responsible for enhancing the current service and delivery outcomes. - Responsible for cyber defense and MSS thought leadership. - Contributing to Help AG's next-generation managed service development. - Contributing to Help AG's go-to-market strategy. - Vendor relationship management. Show less



Private Company

• United Kingdom
• IT Services and IT Consulting
• 700 & Above Employee

• Confidential

  • Jun 2019 - Jun 2020

  Oman Key Achievements: - Developed a managed detection and response (MDR) stack to provide comprehensive detection and response services. The stack included multiple detection controls to offer 95% to 98% cyber threat visibility, detection, and rapid response capability. - Established the company's Managed SOC Service (people, process, and technology) and won three managed service contracts. - Established an MSSP partnership with a leading SIEM solution vendor to build a multi-tenant… Show more Key Achievements: - Developed a managed detection and response (MDR) stack to provide comprehensive detection and response services. The stack included multiple detection controls to offer 95% to 98% cyber threat visibility, detection, and rapid response capability. - Established the company's Managed SOC Service (people, process, and technology) and won three managed service contracts. - Established an MSSP partnership with a leading SIEM solution vendor to build a multi-tenant next-generation SIEM platform in Oman. - Established client onboarding and service transition processes and procedures. - Optimized existing penetration testing service resulted in new and recurring service contracts. - Won seven consulting projects for the company within six months of joining the company. - Added four new logo clients and increased in-year revenue. - Enhanced the company's visibility and profile in the region by speaking at various public forums on emerging cybersecurity topics, resulting in new sales inquiries and requests for proposals. Show less



EY

• United Kingdom
• IT Services and IT Consulting
• 700 & Above Employee

• Director - Cybersecurity

  • May 2017 - Jun 2019

  Muscat, Oman Key Achievements: - Built EY's first Digital Security Operations Centre (DSOC) powered by advanced cyber analytics technology in the MENA region from the ground up. - Developed policies, processes, and procedures for the smooth and efficient operation of the digital SOC (DSOC) as a managed service. - Built client on-boarding and service transition processes and procedures. - Established the advanced threat hunting processes using the cyber analytics platform to detect known and… Show more Key Achievements: - Built EY's first Digital Security Operations Centre (DSOC) powered by advanced cyber analytics technology in the MENA region from the ground up. - Developed policies, processes, and procedures for the smooth and efficient operation of the digital SOC (DSOC) as a managed service. - Built client on-boarding and service transition processes and procedures. - Established the advanced threat hunting processes using the cyber analytics platform to detect known and unknown threats. - Established SOC reporting and dashboards for clients to fulfill the contractual requirements. - Established incident response processes and procedures to detect, analyze, and respond to cyber incidents. - Established the MSS sales channel across the middle east region. - Mentored, coached, and developed the skills set of the team. Show less



DXC Technology

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• General Manager and Delivery Lead - Cybersecurity - Asia Middle East and Africa

  • Oct 2015 - May 2017

  Kuala Lumpur, Malaysia Key Achievements: - Managed cybersecurity operations in the Asia Pacific and the middle east region. The operations consist of a security operations center (SOC), security engineering, security architecture, identity & access management, vulnerability management, cyber governance, risk, and compliance teams. - Led a team of 85 plus members. - Improved regional Cyber P&L by 30% by reducing operational inefficiencies and additional revenue recognition. - Established a culture of… Show more Key Achievements: - Managed cybersecurity operations in the Asia Pacific and the middle east region. The operations consist of a security operations center (SOC), security engineering, security architecture, identity & access management, vulnerability management, cyber governance, risk, and compliance teams. - Led a team of 85 plus members. - Improved regional Cyber P&L by 30% by reducing operational inefficiencies and additional revenue recognition. - Established a culture of collaboration and teamwork, resulting in better service delivery and client satisfaction. - Optimized CSC’s managed service delivery and processes in the region to improve efficiencies and client satisfaction. - Established a security training program for the Asia SOC team to enhance managed service delivery quality resulting in various client contract renewals. - Established a quarterly security strategy and roadmap exercise with high-value clients to improve client engagement and satisfaction, resulting in new business opportunities. - Established CSC's regional cyber consulting practice, added five new logo clients, and achieved more than USD 1 million in business contracts in less than six months. - Won the company’s single largest cyber consulting project from a leading banking client in the Middle East. - Established consulting products specific to regional regulatory requirements (MAS TRM) and industry verticals resulted in financial services client acquisition. - Established a cloud security assessment framework to assist Singapore-based financial institutions in migrating to a public cloud while complying with MAS TRM regulatory requirements. Show less



Computer Sciences Corporation (CSC)

• IT Services and IT Consulting
• 1 - 100 Employee

• Security Incident Response and Control Centre Manager (Global)

  • Apr 2013 - Oct 2015

  Sydney, Australia Managing global incident response team of 16 incident response coordinators and analysts; delivering swift response against growing global threats, including APT; the team coordinates and manages all aspects of a security incident including thorough investigation, analysis and incident life-cycle management. My job responsibilities includes providing strategic direction and consulting to the team for security incidents; interface with C level executives; team workload and schedule management to… Show more Managing global incident response team of 16 incident response coordinators and analysts; delivering swift response against growing global threats, including APT; the team coordinates and manages all aspects of a security incident including thorough investigation, analysis and incident life-cycle management. My job responsibilities includes providing strategic direction and consulting to the team for security incidents; interface with C level executives; team workload and schedule management to provide 24x7 service coverage; quality control; managing internal and external escalations; team mentoring and budget management.

• Senior Security Consultant

  • Jan 2011 - Apr 2013

  Sydney, New South Wales, Australia Senior member of CSC's security advisory service group. My responsibilities include providing strategic security consulting and compliance management services around PCI-DSS, COBIT, ISO 27001, COBIT and Australian federal government standards (ISM). Performing security risk assessments, vulnerability assessments and providing cloud security consulting services. Subject matter expert on Symantec Control Compliance Suite risk management and compliance product. Assisting business development /… Show more Senior member of CSC's security advisory service group. My responsibilities include providing strategic security consulting and compliance management services around PCI-DSS, COBIT, ISO 27001, COBIT and Australian federal government standards (ISM). Performing security risk assessments, vulnerability assessments and providing cloud security consulting services. Subject matter expert on Symantec Control Compliance Suite risk management and compliance product. Assisting business development / sales team to develop / enhance collateral for existing and new services. Performing pre-sales activities including customer meetings, product demonstrations, participating in RFCs and tenders.



Australian Information Security Association (AISA)

• Computer and Network Security
• 1 - 100 Employee

• Chair ISMS Focus Group

  • 2011 - Dec 2012

  Australia



Starcom

• Australia
• IT Services and IT Consulting
• 1 - 100 Employee

• Security Consultant

  • Apr 2010 - Dec 2010

  Australia Worked as technical lead for IT security business. My responsibilities included helping customer to manage IT governance, risk and compliance using automated tools (i.e. Symantec Control Compliance Suite). Performing security risk assessments, vulnerability assessments and providing cloud security consulting services. Assisting business development / sales team to develop / enhance collateral for existing and new services. Performing pre-sales activities including customer meetings, product… Show more Worked as technical lead for IT security business. My responsibilities included helping customer to manage IT governance, risk and compliance using automated tools (i.e. Symantec Control Compliance Suite). Performing security risk assessments, vulnerability assessments and providing cloud security consulting services. Assisting business development / sales team to develop / enhance collateral for existing and new services. Performing pre-sales activities including customer meetings, product demonstrations and participating in RFCs and tenders. Show less



Computer Sciences Corporation (CSC)

• IT Services and IT Consulting
• 1 - 100 Employee

• Sr. Security Engineer

  • Feb 2007 - Apr 2010

  Australia Subject matter expert for security risk assessments and technology compliance service. Performing security Risk Assessment of applications and IT infrastructure; security audit. Exploring and assessing emerging security technologies. Assistance in providing security consulting and security architecture design and project co-ordination. Mentoring junior staff members. Assisting new business team with pre-sales activities.



Versos

• Jordan
• Computer and Network Security
• 1 - 100 Employee

• Sr. Technical Security Consultant

  • Nov 2004 - Dec 2006

  Riyadh, Saudi Arabia Security consulting to corporate clients, security policy development / review, Gap analysis, Risk Assessment based on BS 7799 / ISO 27001, security governance consulting, vulnerability assessments, secure network architecture design, device level security policy design, assisting clients to implement information security policies / strategies, incident response policy design, technical support to junior staff, security awareness training, technical proposal, presentations, collaboration with… Show more Security consulting to corporate clients, security policy development / review, Gap analysis, Risk Assessment based on BS 7799 / ISO 27001, security governance consulting, vulnerability assessments, secure network architecture design, device level security policy design, assisting clients to implement information security policies / strategies, incident response policy design, technical support to junior staff, security awareness training, technical proposal, presentations, collaboration with global companies to accelerate business in middle-east, pre-sales, explored and assessing emerging technologies to supplement and improvise service offerings. Show less



HCLTech

• India
• IT Services and IT Consulting
• 700 & Above Employee

• Network Security Consultant

  • Jul 2000 - Nov 2004

  Security risk assessment, vulnerability assessment, OS hardening, IT security policy and procedure development; secure network architecture design, device level policy design, disaster recovery policy design, security policy review, manage security service including firewall & IDS management; incident co-relation, incident management, security awareness training, RFP creation, pre sales technical support. Exploring and assessing emerging technologies to supplement and improvise solution… Show more Security risk assessment, vulnerability assessment, OS hardening, IT security policy and procedure development; secure network architecture design, device level policy design, disaster recovery policy design, security policy review, manage security service including firewall & IDS management; incident co-relation, incident management, security awareness training, RFP creation, pre sales technical support. Exploring and assessing emerging technologies to supplement and improvise solution offerings. Designing and implementation of complex network security solutions encompassing the industry leading security products. Technical escalation support to field engineering team. Show less



Savvy Computers (P) Ltd.

• Sr. Support Engineer

  • Jan 1999 - Jul 2000



DCM Ventures

• United States
• Venture Capital and Private Equity Principals
• 200 - 300 Employee

• Support Engineer

  • Jul 1996 - Jan 1999