Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

KHALID ALSHUKAILI

Information Security Officer

Summary

Results-driven cybersecurity IT professional with +10 years of high-profile experience with notable success in planning, analysis and implementation of security initiatives. Strengths in providing comprehensive network design and security frameworks. Passionate in aligning security architecture plans and processes with security standards and business goals. Versed in robust network defense strategies. Demonstrated skill identifying business risks and compliance issues and designing proactive IT solutions. Extensive background in designing and implementing layered network security approaches. An active organized team player and dependable candidate successful at managing multiple priorities with a positive attitude. Willingness to take on added responsibilities & working under pressure to meet team planned goals utilizing my interpersonal skills, time management & problem-solving skills.

Overview

9
9
years of professional experience
4
4
years of post-secondary education
9
9
Certifications

Work History

Information Security Officer

Ministry of Labour
Muscat
09.2013 - Current
  • Handling daily information security operations, follow monitor of entire ministry's IT infrastructure and investigate on abnormal & suspicious activates, make sure to secure IT systems and web applications
  • Active member of a team organized by ITA (MTCIT) works on standards ISO 27001:2013 and applying thesestandards as network policies at organization
  • A selected expert by the HEAD Department to be a representative of Ministry at ITA (MTCIT)
  • Leading meetings and workshops as an expert trainer of employees and assigning best employees to take duties of inspector for departments
  • Awarded three times with Sultan Qaboos Award for Excellence in eGovernment
  • Following up with duties of all sections of IT department as a supervisor
  • Managing & reviews privileges on Active Directory for all employees of Ministry
  • Creating forms of information security as ISO standards
  • Working on standards policy ISO 27001:2009, Auditing, IS awareness, Incident reporting, monitoring access & manage risk assessment
  • Monitoring MPLS lines for more than 40 branches, data traffic & network control
  • Implement and configure IBM Q-radar SIEM solution, and daily monitoring and analysis all activities in ministry's entire IT infrastructure
  • SOC team Head follow daily monitoring of logs and events, investigate on suspicious activities using available tools and solutions like firewalls, WAF, End point protection
  • Security review of firewall, servers, network devices and web applications
  • Configure and run security assessment tools like Rapid7, Acunetix and Nessus
  • Conduct VAPT on the internal IT infrastructure, prepare and write the VAPT report
  • Handling the Symantec End Point Protection
  • Using kali Linux and the open-source tools in information security assessments and cybersecurity analysis
  • Good knowledge in windows servers' management
  • Conduct cybersecurity analysis on daily IT operations and activates
  • Digital forensic investigation in information security incidents
  • Representative of Ministry of Labour in local and global IT and information security events
  • Part of implementation team of ISMS based on ISO27001:2013 in the IT Department of Ministry
  • Play kay role in development and implementation of information security policies, procedure, process, forms and other related documents
  • Help in develop and implement the information security Risk Management Framework in the ministry based on best practice and international as well as local standards
  • Develop and conduct Information Security programs for different type of audience to increase there awareness level
  • Incident Management: develop and implement incident management process
  • Team member for new projects leading IT infrastructure for network cabling & switches & a main facilitator on delivering the information security services and initiatives
  • Focal point of planing, design and audit policies and procedures of access to systems and electronic information in order to guard information against accidental or unauthorized modification, destruction or disclosure with a weekly report of given authorizations.
  • Identify and develop areas where information security policies and procedures require creation or update; confer with management, developers, auditors, facilities and other business unit personnel to identify and security for data, software applications, hardware, telecommunications, and computer installations.
  • Develop, implement and monitors a strategic, comprehensive enterprise information security and IT risk management program to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed.

Information Management & Technology Intern

Petroleum Development Oman, PDO
09.2012 - 11.2012
  • Worked along with supervisor of IT department and followed daily tasks of networking & IT
  • Handled variety of tasks in different departments including, monitoring MPLS lines, troubleshooting, cabling, frequency, and microwave
  • Developed networking plans to ensure high performance in company’s departments

Education

Bachelor of Science - Electronics & Telecommunications

Coventry University
01.2009 - 08.2012

Skills

Information Security InvestigationIT Information Security ManagementEnterprise & IT Risk Management

Vulnerability Management & Networking Development

Information Security Incident Management

Project & Time Management

Active player with leadership skills

Passionate & working under pressure

Installation, maintenance and administration of Windows 2003/2008/2012/2016 R2 Servers

Configuration of Domain Controller, DNS, DHCP, Group Policy ManagementManaging Sophos Enterprise & Symantec End-protection & do penetration testing

Users web surfing Monitoring & Blue Coat- data traffic analyzer

IBM Qradar, STEALTH WATCH (Lancope), BlueCoat, F5

Symantec Endpoint Protection

Designing security controls

Implementing security programs & Data Security

Developing security plans

Detailed-Orinted

Excellent Written & Verbal Communication Skills

Teamwork and Collaboration

Training and Development

IT Maintenance and Repair

Multitasking Abilities

Problem Solving & Critical thinking Skills

Negotiation and empathy with Emotional Intelligence

Creativity & Businesses Development

People management and co-ordinating with peers

Ethical Hacking

Certification

CISSP - Certified Information System Security Professional

Timeline

CISSP - Certified Information System Security Professional

06-2019

CISA - Certified Information Systems Auditor

05-2019

Certified Ethical Hacker

02-2019

System Vulnerabilities to Cyber Attacks

02-2019

SIEM Deployment & OPS

02-2019

Networking course (A+, N+,CCNA, MCSA Windows Server 2012 & ITIL Fundamentals

02-2017

SWITCHv2.0

11-2015

TRN-ROUTE-2.0 – Implementing Cisco IP Routing (ROUTE)

10-2015

Information Security Officer

Ministry of Labour
09.2013 - Current

CCNA Exploration: Network Fundamentals

01-2013

Information Management & Technology Intern

Petroleum Development Oman, PDO
09.2012 - 11.2012

Bachelor of Science - Electronics & Telecommunications

Coventry University
01.2009 - 08.2012

Similar Profiles

CREATE PROFILE
KHALID ALSHUKAILI Information Security Officer