TENGKU MAHATHIR TENGKU ABDULLAH
riyadh
Summary
Dynamic Cyber Security Application Specialist with a proven track record at Nokia Saudi Limited, excelling in vulnerability management and compliance. Expert in security management and automation, successfully reducing compliance backlogs and enhancing employee awareness through targeted training. Strong analytical skills complemented by effective team leadership, driving significant improvements in security operations.
Overview
25
25
years of professional experience
1
1
Certification
Work History
Cyber Security Application Specialist
Nokia Saudi Limited
10.2024 - Current
- Assess Cybersecurity operation security reference to NIST800-53 mainly in AC,AT,AU,CM and MA and align with client on Cybersecurity requirement
- Responsible in clearing out the over 20,000 Vulnerabilities and incompliance backlogs by working with OSS and R&D to meet up customer CMI.
- Plan and execute Cybersecurity Awareness to Nokia employees through training and monthly program.
IT Security Technical Lead & Automation
PT Huawei Tech Investment
10.2021 - 10.2023
- Designed Security Delivery as per the contract inclusive of firewall, PAM, patching management and remediation.
- Transforming the traditional security delivery to next generation delivery with automation mindset
- Security related automation Use Cases
- CyberArk – OWS trouble ticket module for avoiding unauthorized change
- Ivanti Patching Management – OWS release management ticket and change ticket for auto-create change ticket and auto-patching
- CyberArk automated Use Access Management and license management
- PAM and UAM auto-reporting
- A few more Use Cases towards Zero Touch Security Operations
- Other day-to-day tasks:
- Administered and monitored firewalls and privilege access management system
- Investigated and resolved incidents of unauthorized access to sensitive information
- Regular review for improvements in security systems and processes
- Determine security violations and inefficiencies by conducting periodic audits
- Analyzing network traffic, anti virus logs, and other security logs artifact
- Monitor constantly for attacks and run appropriate defensive protocols if a breach occurs
- Lead the team of 7 members in developing new protocols, layers of protection, and other proactive and defensive systems for remaining ahead of cybercriminals
Solution Consultant
Nova Spectra
11.2018 - 11.2019
- Provide consultant on security technologies and supporting processes for strategic projects
- Provide documentation of security guidelines, procedures, standards, and controls
- Develop organization-wide security measures
- Identifying and fixing vulnerabilities within existing security systems
- Provide technical solutions on as installation of firewall, antivirus, patches and etc.
Business Development Manager
AMK Technology
10.2017 - 10.2018
- Provided business consultation mainly on ICT projects in telecommunication, government agencies, and banking industries
- Explored new business relationships to achieve business targets and meet business objectives
- Developed and maintained established relationship with existing clients by understanding theirs needs and expectations
- Advised technical team in developing technology solutions, blueprints, and roadmaps
- Reviewed end-to-end solution and ensure it meets the business requirement
- Responsible to lead the application solution design for client's biggest ITO deal based in middle east
- Involved in RFP discussion and designed the application solution:
- Network Support System (Monitoring System, Fault Management)
- Customer Facing System (Subscription Management)
- Business Support System (Billing and Revenue Management)
- Decision Support System (Data Warehousing and Big Data)
Chief Security Engineer
03.2016 - 03.2017
- Coordinates the continuous development, implementation and updating of security and privacy policies, standards, guidelines, baselines, processes and procedures.
- Develop and manage the frameworks, processes, tools and consultancy necessary for IT to properly manage risk and to make risk-based decisions related to IT activities.
- Proactive identification and mitigation of IT risks as well as responding to observations identified by third party auditors or examiners while assisting in the development of periodic reports and dashboards presenting the level of controls compliance and current IT risk posture.
- Broaden and deepen knowledge of the business and environment of IT with respect to the delivery of projects, strategic initiatives and systems portfolio to effectively assist manager and staff with risk and compliance management.
- Receives allegations of security incidents and conducts complex investigations; prepares written findings, recommendations and follow up evaluation; and analyzes patterns and trends.
- Coordinates information security incident response and reporting for events or exploited vulnerabilities including unauthorized system or network access, denial of service, inappropriate data access, data corruption, and/or collection of private or confidential information.
Regional IT Manager
Wasco Coatings Malaysia
07.2014 - 02.2016
- Managed around 20 engineers based in Malaysia, Indonesia and Norway
- Responsible in restructuring and improving the LAN & WAN network infrastructure including the servers, systems and security policies with the goal of minimizing the manufacturing downtime
- Assessed all network LAN & WAN, sites applications, hardware, servers assets and licensing management, Manufacturing Continuity Plan, Disaster Recovery, Security, Single Point of Failure (SPOF)
- Responsible in reviewing all software and hardware maintenance contract
- Exposed the team and created the understanding of clients' IT environment requirement such as Shell, Petronas, Statoil, and BP
- Below are some of the major projects involved:
- Project/Goals: Minimizing OPEX Details: To optimize the cost of telephone, contract, and leased line Activities and achievements:
- Housekeeping all direct-line numbers which reduced the cost by 35%
- Replaced the analog PABX to fiber leased line which enable to eliminate monthly rental cost
- Reviewed and optimized outsource maintenance contracts including took the decision to insource PABX maintenance support which incurred cost as much as RM48k/year
- Successfully minimized manufacturing systems downtime from high rate frequency 6 hours per week to 3 hours per month (1 hour = USD100k) by fixing the network redundancy and hardware refreshed
- Project/Goals: SAP for Business Details: To ensure successfully implementations of SAP to business Activities and achievements:
- Improved the network reliability and availability for Kuantan site with multiple plan design layouts
- Created the internal process flows to meet SAP guidelines
- Ensured user awareness by providing trainings
- Deployed in-house incident management system for SAP
- Improved VPN connectivity to Datacenter by having leased line redundancy
- Project/Goals: Security Enhancement Details: To refresh network hardware and security appliances Activities and achievements:
- Designed, proposed and installed network switches, firewall and load balancer with replacing Peplink 300 to Peplink 380, Cisco switches C2950 to C2960 & SG300, Juniper Netscreen firewall NS140 to Fortinet Fortigate 600D
- Guided the team from designing stage, proposal, commissioning, testing and production
- Successfully improved WAN utilization issues with 45% decreased from 90% utilization by redefining security policies in switches, bandwidth management boxes, Symantec Web Gateway and firewall.
Regional IT Manager
Huntsman Tioxide
06.2005 - 06.2014
- Managed and acted as interface between Global IT(International) sites
- Managed, reviewed and auditing profit and loss on IT expenditure , OPEX and CAPEX
- Managed project implementations initiated by Global IT such as helpdesk systems, Sarbanes Oxley, security awareness and legal
- Analyzed incidents and problems reported in the systems and escalated to 2nd or 3rd level support
- Responsible in auditing business-owned computer and network to ensure the accurate and secure operation of information processing facilities
- This is to minimize the risk of systems failures by progressive plan and prevention action
- Also to protect the confidentiality, reliability and integrity of software and information
- Maintained Asset Classifications and Control to ensure the information protected by appropriate level of protections
- Below are some of the major projects involved:
- Planned and deployed ITIL frameworks into organization
- Conducted trainings and achieved 100% coverage of users
- Assigned as IT lead panel for Disaster Recovery plan and Business Continuity plan
- Prepared the framework and procedure in the case of emergency and minimizing business interruption
- Involved in global SAP deployment including refreshed 150 end user assets such as desktop and laptop within limited timeframe of two weeks and with minimum manpower
- Improve client operating systems security by implementing bitlocker, NAC authentications for wired and wireless infrastructure
- Review region sites management on Change Management and Project Management
- Review site IT local securities procedure by quarterly assessment to Global Security
- Participate in EHS committee to review site safety works in IT
- And responsible to review all safety performing for IT areas and meets the site regulations.
NODC Operations Manager
HICOM Communications
Kuala Lumpur, Malaysia
07.2003 - 07.2005
- Company Overview: Within DRB HICOM
- Responsible to lead Data Center and NOC team
- Managed internal clients' servers and leased line network connectivity
- Helped in maximizing the profits through efficiency in managing the manpower, systems, policies and SLA/KPI
- Worked closely with the pre-sales team in preparing technical proposals
- On-site and off-site support to customers for professional IT service
- Reviewed the systems security policies in quarterly basis to avoid hacking and intrusion from internal and also external
- Managed vendors and involved in new products and technologies POC
- Below are some of the major projects involved:
- HICOM Suzuki – Implemented Juniper Firewall NS25 by migrating from the old Iptables firewall
- HICOM Communications – Involved in ISO9001 data center certification including developed all documentations and procedure to meet certification requirements
- Automotive Corporation – Configured leased line and ISDN to enroll into MPLS network
- HICOM Mobil – Implemented Juniper RA-500
- HICOM BMS – Involved in planning and implemented the telecommunications systems for Bali Airport, Indonesia
- PUSPAKOM – Involved in implementation of MPLS network connectivity for PUSPAKOM sites nationwide
- EON Bank – Supervised, organized and planned network infrastructure on credit card network systems
- Bank Pembangunan – Implemented security enhancement project to have multi-level security structures in order to meet Bank Negara policies (BNIM1)
- Within DRB HICOM
System Engineer
Huntsman Tioxide
07.2000 - 06.2003
- Troubleshoot hardware, software, printer, network and servers
- Assisted senior engineer in IT projects for plant and manufacturing systems
- Managed SMS server for software deployment and hardware reimaging
- Consolidated AS400 data and migration into SAP
Education
Diploma - Computer Science
University Technology of MARA
05.2000
Skills
- Security Management and Delivery
- Network Security Management
- Secure Access – Firewall & Proxy
- Data Governance & Security
- Router & Switches
- Automation – Business Analyst
- Operation Risk Assessment
- Pythons
Certification
- Effective Communication Skills, NeutonLab Singapore
- Certification of IT Manager
- Checkpoint CCSA & CCSE
- Cisco CCNA
Skills
Excellent, Excellent, Excellent, Excellent, Excellent, Excellent, Very Good
Timeline
Cyber Security Application Specialist
Nokia Saudi Limited
10.2024 - Current
IT Security Technical Lead & Automation
PT Huawei Tech Investment
10.2021 - 10.2023
Solution Consultant
Nova Spectra
11.2018 - 11.2019
Business Development Manager
AMK Technology
10.2017 - 10.2018
Chief Security Engineer
03.2016 - 03.2017
Regional IT Manager
Wasco Coatings Malaysia
07.2014 - 02.2016
Regional IT Manager
Huntsman Tioxide
06.2005 - 06.2014
NODC Operations Manager
HICOM Communications
07.2003 - 07.2005
System Engineer
Huntsman Tioxide
07.2000 - 06.2003
Diploma - Computer Science
University Technology of MARA
Similar Profiles
Tamer Ahmed IsmailTamer Ahmed Ismail
FTK Project Manger at Nokia Saudi Arabia LtdFTK Project Manger at Nokia Saudi Arabia Ltd
Vinayak Jagannath PatilVinayak Jagannath Patil
L3 Integration Engineer at Nokia Solution and Networks Pvt. Ltd. Payroll-Sterlite Technologies LimitedL3 Integration Engineer at Nokia Solution and Networks Pvt. Ltd. Payroll-Sterlite Technologies Limited
Anup TiwariAnup Tiwari
DevOps Engineer at Nokia Solutions & Networks private LimitedDevOps Engineer at Nokia Solutions & Networks private Limited
MOHAMMED RAHAMATHULLAMOHAMMED RAHAMATHULLA
Technical Specialist at HCL Technologies ltdTechnical Specialist at HCL Technologies ltd
Nawaf Nasser AlotaibiNawaf Nasser Alotaibi
Nursing intern in KSMC at Registered nurseNursing intern in KSMC at Registered nurse