HAIFA ALORAINI

• Enhanced network security by conducting regular system checks and identifying vulnerabilities.
• Developed comprehensive reports for improved cyber threat awareness.
• Streamlined incident response with development of effective protocols.
• Monitored security systems to detect suspicious activity and potential threats.
• Conducted thorough system audits, ensuring proper security measures in place.
• Recommended security controls for risk mitigation.
• Authored comprehensive reports detailing findings post-assessments.
• Collaborated with IT team to rectify identified vulnerabilities.
• Excelled in communicating technical data to non-technical stakeholders.

• Ensured system security by implementing effective cyber protection measures.
• Conducted risk assessments for identifying potential vulnerabilities.
• Improved company's data protection with regular network scanning and updates.
• Developed comprehensive cyber security strategies to enhance digital safety.
• Liaised with various teams, ensuring smooth implementation of security protocols.
• Enhanced safety protocols by conducting comprehensive risk assessments.
• Identified potential hazards for minimising workplace accidents.
• Managed to optimise the health and safety policy with regular risk assessment reviews.
• Conducted training sessions, improving staff understanding of risk procedures.
• Developed strategic business plans by analysing market trends and evaluating competitive landscape.
• Conducted comprehensive SWOT analyses for simplified decision-making process.
• Streamlined operational processes with implementation of effective strategies.
• Led cross-functional teams to achieve project objectives within deadlines.
• Facilitated productive client meetings, ensuring satisfaction and loyalty.

NCA Cybersecurity Assessment Review based on ECC and OTCC frameworks.

●Conduct meetings/interviews with relevant Information Security teams to understand the scope and execution of the NCA-ECC and OTCC assessment and analyze/review the NCA-ECC and OTCC assessment report.

●Test of Design – Review all relevant documentation, processes, procedures relating to NCA-ECC and OTCC assessment.

●Test of Implementation – Review and Assess the implementation along with relevant evidences for each control with regards to controls related to NCA-ECC and OTCC assessment.

●Test of Operating effectiveness – Assess whether the key Performance Indicators (KPIs) were verified to ensure that the processes are periodically monitored and reported.

●Review the mitigation plans or actions in progress.

Submit a draft of filled in NCA-ECC and OTCC assessment gaps and recommendations and obtain agreement with respective stakeholders.

● Develop the Implementation roadmap where it will be discussed with stakeholders and the central management of the entity affiliate to include their conclusion in the final report.

●Develop a roadmap that aims to uplift the entity cybersecurity capability and controls in addition to upscaling its cybersecurity posture against NCA ECC and OTCC frameworks.

●Identify activities, sourcing strategy, constraints, risks, performance measures and deliverables for each strategic initiative

●Develop awareness training material for the entity's employees to understand the IT/OT Cybersecurity transformation and uplifting journey.

The business objective of the project was to develop new regulations of the military industry sector.

The overall scope of the project was to work on over 4 phases starting with an assessment of the current situations of the industry, its needs, and an initial recommendations report.

The process for information collection included a series of meetings with key stakeholders and industry main players This phase resulted in a comprehensive As Is Assessment Report. Followed by a benchmark study of 5 leading international organizations in this field, and 2 successful local models.

The third phase was about writing the initial draft of the regulations' provision, the glossary.

The final phase included finalizing the glossary and regulations with key stakeholders after providing their feedback and creating the press release statement.

• Employee Onboarding Process:
• Conducting comprehensive induction program for new hires
• The program aims to ensure smooth integration of the new employee into
• KPMG by providing them with information about KPMG’s core activities, people policies and work environment
• Preparing colleagues for the new employee
• Preparing contracts
• Making sure your new employee has access to all necessary programs
• Preparing access cards, raising IT tickets.
• Cultivated relationships with industry leaders and within company to share tips and information.

• Vacancy
• Sourcing and screening
• Interviewing and selecting
• Job offering

• I used SAP system (enterprise resource planning software) to get things done and so I have a working knowledge of it.
• Monitored compliance and filing requirements in conjunction with staff and management.
• Troubleshot data-related problems and coordinated maintenance or modifications to correct defects.
• Conducted system analysis and implementation to maintain and improve computer systems.