Mohammed Mohsinoddin
Riyadh
Summary
Accomplished cybersecurity professional with 15 years of experience in establishing ISO27001-compliant policies that fortify security frameworks. Expertise in leveraging advanced solutions such as Fortinet, Proofpoint, SentinelOne, and Cisco Umbrella to enhance network and endpoint security across diverse locations. Proven track record in leading NCA regulation implementations, conducting thorough risk assessments, and facilitating external audits to ensure compliance and mitigate vulnerabilities. Committed to driving security initiatives that align with organizational objectives and optimize risk management strategies.
Overview
24
24
years of professional experience
1
1
Certification
Work History
Information Security Principal
Al-Khorayef Group
Riyadh
05.2018 - Current
- ISO27001-Compliant Security Framework: Extensive experience in developing and enforcing cybersecurity policies aligned with ISO27001 standards, establishing a comprehensive and robust security framework for organizational protection.
- Enhanced Perimeter and Endpoint Security: Led the deployment of Fortinet solutions across 35 branch offices to fortify perimeter security, while implementing advanced tools like Proofpoint, SentinelOne, and Cisco Umbrella to bolster email, endpoint, and network protection.
- Regulatory Compliance Leadership: Led the implementation and assessment of National Cybersecurity Authority (NCA) regulations, ensuring strict adherence to local cybersecurity standards and achieving compliance across the organization.
- Proactive Risk Management: Conducted thorough risk assessments to identify vulnerabilities and implemented effective mitigation strategies, ensuring the ongoing security and resilience of IT systems.
- Executive-Level Cybersecurity Strategy: Provided senior management with comprehensive, high-level cybersecurity updates and insights, enabling informed decision-making and strategic direction for organizational security initiatives.
- External Audit Facilitation: Led and facilitated external cybersecurity audits, ensuring all required documentation and evidence were provided in compliance with industry standards and regulations, enhancing transparency and trust in security practices.
- Audit Preparation and Remediation: Coordinated with internal teams to prepare for external audits, identifying and addressing potential vulnerabilities or non-compliance issues, ensuring a smooth audit process and swift remediation of any findings.
Senior Information Security Engineer
Saudi Public Transport Company (SAPTCO)
Riyadh
09.2014 - 05.2018
- Comprehensive Network Security Framework: Extensive experience in implementing and managing next-gen firewalls (Fortinet UTM 301E and 3000D), including advanced features like IPS, application control, and DoS protection to safeguard critical infrastructure across multiple locations.
- Advanced Threat Detection and Mitigation: Proficient in deploying and managing cutting-edge threat detection solutions such as Trend Micro Deep Discovery Inspector for APT detection and Trend Micro’s ScanMail, IMSVA, and DDEI for securing email communication against advanced persistent threats (APTs) and malware.
- Robust Endpoint Protection Strategy: Expertise in securing endpoints across diverse environments using solutions like Trend Micro OfficeScan for PCs and Deep Security for servers, ensuring complete protection against malware, ransomware, and other cyber threats.
- Web and DNS Security Enhancement: Skilled in integrating Websense for web filtering and deploying Cisco Umbrella for DNS security, improving web traffic management, preventing malicious access, and reducing exposure to external threats.
- Secure Remote Access Solutions: In-depth experience implementing SSL-VPN solutions using Pulse Secure and integrating dual-factor authentication (DUO Security), ensuring secure and reliable remote access for users while maintaining organizational security standards.
Senior Network & Information Security Engineer
King Abdulaziz and his Companion Foundation for Giftedness & Creativity (Mawhiba)
Riyadh
05.2007 - 09.2014
Regional I.T. Administrator
Coca-Cola Bottling Company of Saudi Arabia
12.2004 - 05.2007
Network Administrator
Saudi Electricity Company (SEC)
05.2003 - 04.2004
Network Engineer
R-Tech IT Solutions
Hyderabad
09.2001 - 08.2002
System Administrator
M2 ACT Limited
Hyderabad
08.2000 - 07.2001
Education
Bachelor of Science (B.Sc. – IT – Distance Education) - IT
JRN Vidyapeeth University
IndiaDiploma in Computer Engineering -
State Board of Technical Education & Training
IndiaSkills
- Firewall/IPS: Fortinet 3000D/1500D//301e/240D, Sophos/Astaro UTM & Cisco ASA
- Web Security: Forcepoint (Websense) 82/84, Bluecoat, MS-TMG 2010
- Mail Security: Proofpoint, Trend Micro IMSVA & Mail Inspector & Intel security
- Network APT: Trend Micro Deep Discovery Inspector
- End-Point Security: Sentinelone (EDR Solution), TrendMicro, Symantec & MacAfee
- VPN: Fortinet SSL-VPN, Juniper SA 2500, Astaro VPN & Microsoft VPN
- NAC: Ivanti (Juniper/Pulse Secure)
- Router: Cisco 2800 & 3800 series, Linksys ADSL Router
- Switches: Cisco Core 6500, 4500, 3560 & 2950
- Wireless: Aruba & Cisco
- Load Balancer: A10 Load balancer – Application Delivery
- Operating System: Windows 2008, Windows 2003, Windows 2000 & Windows NT
- Virtualization: VMWARE & Microsoft Hyper-V
- Messaging: MS-Exchange Server 2010, 2007 & 2003
Certification
- CISM (Certified Information Security Manager)
- Certified CISO (EC-Council)
- Certified Ethical Hacker (CEH – Version 9)
- NSE 4 (Fortinet – Network Security Professional)
- NSE 7 (Fortinet – Network Security Architect & Troubleshooter) – Enterprise Firewall
- Cisco Certified Internetwork Expert (CCIE – Security) – Written
- CompTIA Security+ Certified (Candidate ID: sr6959601)
- Astaro Certified Administrator Ver.7 & 8 (Unified Threat Management) currently Sophos
- ITIL V3 Foundation ITIL ID: 4628478
- A10 Certified Engineer (ID: 1510SA24)
- Microsoft Certified IT Professional (Windows 2008) MCP ID: 2634219
- VMware Certified Engineer VCP 4.0 (VCP ID: VCP108820)
- Cisco Certified Network Associate (CCNA) Cisco ID: CSCO10536631
- Certified in Network & Host Security Conducted by ITS² - Riyadh, KSA
- Microsoft Certified Technology Specialist – Exchange 2007
- Microsoft Certified System Engineer (MCSE Windows 2003/2000)
- Pursuing CISSP
Languages
- English
- Arabic
- Urdu
Personal Information
- Father's Name: Mohammed Waheeduddin
- Dependents: Wife with 3 kids
- Date of Birth: 08/27/81
- Nationality: Indian
- Driving License: Valid Saudi and Indian Driving License
- Marital Status: Married
Timeline
Information Security Principal
Al-Khorayef Group
05.2018 - Current
Senior Information Security Engineer
Saudi Public Transport Company (SAPTCO)
09.2014 - 05.2018
Senior Network & Information Security Engineer
King Abdulaziz and his Companion Foundation for Giftedness & Creativity (Mawhiba)
05.2007 - 09.2014
Regional I.T. Administrator
Coca-Cola Bottling Company of Saudi Arabia
12.2004 - 05.2007
Network Administrator
Saudi Electricity Company (SEC)
05.2003 - 04.2004
Network Engineer
R-Tech IT Solutions
09.2001 - 08.2002
System Administrator
M2 ACT Limited
08.2000 - 07.2001
Bachelor of Science (B.Sc. – IT – Distance Education) - IT
JRN Vidyapeeth University
Diploma in Computer Engineering -
State Board of Technical Education & Training
Similar Profiles
Ziad TantawyZiad Tantawy
Project accountant at Working at Al Khorayef Water and Energy TechnologyProject accountant at Working at Al Khorayef Water and Energy Technology
MUHAMMAD SHAHZAIBMUHAMMAD SHAHZAIB
Auto mechanic at Al khorayef Water & Power TechnologiesAuto mechanic at Al khorayef Water & Power Technologies
Masum AnsaryMasum Ansary
Logistics officer at Saudi Parts Center (Al khorayef Groups)Logistics officer at Saudi Parts Center (Al khorayef Groups)
Wassal AhmedWassal Ahmed
Regulatory Affairs Pharmacist at AxantiaRegulatory Affairs Pharmacist at Axantia
Afroze SherifAfroze Sherif
ERP Specialist & IT Specialist at Alfaraa Arabia & Unibeton ReadymixERP Specialist & IT Specialist at Alfaraa Arabia & Unibeton Readymix