Network Administrator/ IT Executive/ Security Specialist

• Reporting to CISO/CEO and manage & ensure security of Internal Organization as well as help clients to achieve their business goals and compliance requirements such as HIPPA, PCIDSS, NIST….etc. Identifying, planning, and guiding technical teams to implement security related solutions and continuous improvement and monitoring. Assessing the risk and remediation planning, strategically achieve business goal by ensuring cost effectiveness.
•  Develop, implement & monitor a strategic, comprehensive enterprise-wide information security & IT risk management program to ensure that integrity, confidentiality & availability of information is owned, controlled, or processed by organization.
• Ensure ongoing analysis of information security threats, vulnerabilities, and market trends. Determine potential impact on the organizations and client’s risk posture.
• Engage with the IT leadership across the Firm, challenge, and support as required to drive an appropriate level of security across the entire IT estate
• Drive security training and specialist skills across all areas of IT .
•  Preparing Risk management, Vulnerability Management, Incident Management….etc Reports for CISO, CEO, CIO, IT Directors and IT Managers in Internal Organization as well as Client’s Organization.
• Conducting Risk management Meeting, Tabletop Exercise and Training Program for IT Team.
•  Development of Security Program/Training program for internal and Clients Organization.
• Maintaining Vulnerability Management System and Risk Register.
• Preparing Risk Mitigation Plan, Project Plans and Custom Reports and plans based on Requirements.
• Improvement of Service Delivery Mechanism and Incident management System
• Provide Technical Guidance for Internal IT Team.
• Monitoring and Managing, Firewalls, MDR,XDR, SIEM, 0365, Windows Servers, Routers, Switches….etc.

Notable Achievements:
• Improve Service Delivery Process and Reduce Save time up to 20%.
• Implement Vulnerability Management process.

• Reporting to the head of Security Architecture and Review, Design Security architecture of Applications, Infrastructure, and cloud solutions.
• Group wide Role which including Conducting Risk assessment and implement identified solutions by engaged with network admins, Application developers and functionals teams.
• Operate the Security Architecture evaluation of risks identified in systems, including reviewing, and proposing tactical and strategic remediation plans, and evaluation the cost / risk benefits of remediations.
• Engages with the BISO and Solution architects in the development of product specific information security plans.
• Consult, and champion the adoption of security design, with technical delivery teams for both existing systems and new systems.
• Research, design and document the security posture requirements and controls of new technology introduced into the Group. Research industry trends and regulatory requirements.
• Design and publish Security Architecture Design Patterns and Standards to comply with group security requirements, industry standards, customer requirements regulatory requirements and best practices.
• Work with third parties as needed to deliver the function.
• Operates metrics and monitoring to report the effectiveness and efficiency of the Security Architecture function.
• Provide subject matter expertise in cyber security architecture as a core member of the Security Architecture - Design engineering team.
• Contribute to the Security Architecture Design Forum
• Develop and operate the Security Architecture control framework.

• Reporting to the Head of IT, manage IT Network, System and Security Service of Internal Organization responsibilities and sister company.
• Oversee all IT functions including Information Governance, data centre management, vendor relationships, technical support, Security of Network & Inhouse Applications, financial monitoring, and disaster recovery planning.
• Manage operating budget and identifying, Planning and Improvement of network and Security related Enhancement.
• Conducting Risk assessment and implement identified solutions by engaged with network admins, Application developers and functionals teams.
• Contribute as a Subject Matter expertise in IT strategic Planning, Annual Budget planning and Project Management.
• In addition to that Involving troubleshooting of LAN/WAN and Security Implementation with Internal and Remote IT team at India.
• Ensure ongoing analysis of information security threats, vulnerabilities, and market trends. Determine potential impact on the organization’s risk posture.
• Engage with the IT leadership across the Firm, challenge, and support as required to drive an appropriate level of security across the entire IT estate
• Drive security training and specialist skills across all areas of IT
• Develop, implement & monitor a strategic, comprehensive enterprise-wide information security & IT risk management program to ensure that integrity, confidentiality & availability of information is owned, controlled, or processed by organization.
• Manage information security organization, consisting of direct reports & indirect reports including training, staff development, performance management & annual performance reviews.
• Develop, maintain & publish information security policies, standards & guidelines
• Oversee approval, training, & dissemination of security policies & practices.
• Create & manage information security & IT risk management awareness training programs for all employees & approved system users
• Define & facilitate information security risk assessment, including reporting & oversight of treatment efforts to address negative findings. Manage security incidents & events to protect corporate IT assets, regulated data & Application.
• Handling Information Security and Network Related Projects and Providing Technical advisory for Network, Infrastructure, and applications.

Notable Achievements:

• Implementing Information Governance Framework align with future business and technological changes.
• Implemented Risk Mgmt Process & take necessary action to mitigate risk by early detection of risk.
• Started Annual Internal/External Audit/VAPT process to evaluate and ensure security controls and compliance Requirements.
• Gap analysis and a VAPT were performed to improve network availability, and the network was redesigned to address the vulnerabilities and weakness identified.
• Reduced security costs by 10% by reassessing and redesigning security strategies.
• Network bandwidth was increased by 220% and costs were reduced by 5%.
• Developed Change Management Policy.
• Established Security Testing for Application, Network and Systems with Internal team and External Vendor.
• Improved Network Visibility by installing, Data Centre Monitoring System and Network/Log Monitoring System.
• Managed Web Application Development Project for Manufacturing Section
• Completed IT Configuration Documents Related to Infrastructure and Security.

• Collaborated with End Users, Software Engineers and Head of IT to implement secure network and security solution by achieving cost constraints.
• Configuring Application, Server/Client Operating system, and Devices according to user requirement and IT Policy.
• Vendor collaboration, solution evaluation and reporting to head of IT.
• Analyzing Helpdesk and recommendation of improvement and optimizations.
• Recommendation of Improvement of Network, process, and system.
• Ensuring Network, End point and Data security.
• Monitoring and troubleshooting of network including windows Servers, Switches, Routers, and firewalls.
• Collaboration with users help them to resolve technical and process related issues.

• Managed, directly and indirectly 150+ User base and accountable for the ongoing maintenance, development and implementation of Network, System and Security.
• Represent Network Subject matter expertise throughout software development life cycle.

• Customer service and Hardware/Network Troubleshooting, Repairing…. etc.