Rayan Omair
Cyber Security Consultant
Riyadh,Saudi Arabia
Summary
With over five years as a Cyber Security Professional, I have led significant SIEM projects and comprehensive penetration testing across diverse platforms, specializing in cloud security and infrastructure strategies using technologies like Kubernetes and Docker , Openshift , Gitops and more, as well as non-cloud environments. My expertise spans penetration testing (PT) and source code reviews to identify and mitigate risks. Collaborating with development teams and Infra adhering to NCA and SAMA standards, I have effectively enhanced security practices and risk management, ensuring robust operational security across all functions.
Overview
5
5
years of professional experience
10
10
years of post-secondary education
9
9
Certifications
Work History
Cloud Security Specialist
SDAIA
Riyadh
01.2024 - Current
- Implemented a DevSecOps framework, automating security in CI/CD pipelines to enhance compliance with NCA standards and streamline development lifecycle security.
- Managed and audited security in orchestration and container environments, enforced NCA compliance, and validated third-party security reports to maintain system integrity.
- Conducted secure code reviews, integrating tools like SAST, DAST, and container security, to ensure all systems adhere to NCA requirements and best practices.
- Oversaw continuous system audits and enhanced orchestration settings, contributing to strategic planning and execution to optimize technical operations and maintain compliance.
Cyber Security Consultant
MOI - Absher Platform
Riyadh
08.2023 - 12.2023
- Collaborated with teams to enhance cybersecurity measures and infrastructure management, ensuring alignment with strategic and operational goals.
- Led comprehensive reviews and monitoring of security systems to maintain performance standards and compliance with international best practices.
- Implemented and supervised DevSecOps processes to optimize security throughout system operations and team performance.
- Managed secure architecture design and policy implementation to protect network systems, data, and service integrity.
Penetration Tester
SAMI
Riyadh
06.2022 - 08.2023
- Worked with 10+ government clients, providing penetration testing services for web, mobile, and network applications.
- Conducted black-box testing for mobile, desktop, and web apps.
- Performed source code reviews to identify and mitigate security risks.
- Collaborated with developers to ensure secure coding practices and improve application security.
Cyber Security Engineer
Saudi National Bank
Jeddah
06.2020 - 06.2022
- Led the implementation of SIEM projects, ensuring effective monitoring and threat detection.
- Conducted penetration testing across web, mobile, and network environments, including black-box testing and source code reviews.
- Performed vulnerability assessments using Tenable to identify and remediate security gaps.
- Strengthened the overall security posture of applications and networks through proactive risk mitigation strategies.
Education
Bachelor of Science - Computer Engineering
Royal Commission For Yanbu Colleges & Institutes
Yanbu 01.2015 - 03.2025
Skills
Policy and Strategy Development
Vulnerability management
Threat management
Third Party Management
Accomplishments
- Speaker at Black Hat 2023, presenting on advanced cybersecurity challenges and solutions.
- Founder of a startup company specializing in developing unique cybersecurity products.
- Reported valid security issues to major companies, including Apple, Google, Yahoo, SAP, HackerOne, and Bugcrowd.
- Discovered and reported zero-day vulnerabilities, holding multiple CVEs.
Certification
Cisco Certified Network Associate Cyber Ops
Timeline
CKA: Certified Kubernetes Administrator
12-2024
DevSecOps Practitioner
09-2024
Certified DevSecOps Professional (CDP)
09-2024
Cloud Security Specialist
SDAIA
01.2024 - Current
Cyber Security Consultant
MOI - Absher Platform
08.2023 - 12.2023
OffSec Certified Professional (OSCP)
11-2022
Penetration Tester
SAMI
06.2022 - 08.2023
OffSec Offensive Security Web Expert (OSWE)
01-2022
EWAPTx V2
05-2021
EWAPT
02-2021
Cyber Security Engineer
Saudi National Bank
06.2020 - 06.2022
Cisco Certified Network Associate Routing and Switching (CCNA)
02-2020
Cisco Certified Network Associate Cyber Ops
12-2019
Bachelor of Science - Computer Engineering
Royal Commission For Yanbu Colleges & Institutes
01.2015 - 03.2025
Similar Profiles
Marwa Mahmoud Al-FattaniMarwa Mahmoud Al-Fattani
AI Strategic Studies Department Section Head at SDAIAAI Strategic Studies Department Section Head at SDAIA
Saad AlShafiSaad AlShafi
COOP Trainee at SDAIACOOP Trainee at SDAIA
Fahad AlsulaimanFahad Alsulaiman
Development Manager at SDAIADevelopment Manager at SDAIA