Yasir Hamad Almuqbil
Head Of Cyber Security And Information Audit
Riyadh
Summary
Head of cyber security and IT audit with significant experience in cyber security, audit, leadership, management, project management, Cybersecurity controls to meet national and global practises, team management, third party cyber risk vendor management, network, mobile network, change management, tier 2 fault management, problem management, SLA assurance, HV electrical equipment, prequalification process, PV systems, dealing with cutting edge technologies like CS applications, NB-IOT, 5G etc. looking for a new chance to utilize my current professional and management skills that have been developed during my work at different companies.
Overview
10
10
years of professional experience
15
15
years of post-secondary education
10
10
Certifications
2
2
Languages
Work History
Head of Cyber Security and Information Audit
Ministry of Defense
7 2023 - Current
- Building cyber security and IT audit process.
- Developing policies and procedures for the cyber security and IT audit process.
- Define audit objective, scope and plan.
- Lead the cyber security and IT department to provide an independent and objective assessment of the design and operating effectiveness of IT and Cybersecurity controls by applying the best practices to mitigate risks, provide reasonable assurance to stakeholders and enhance the internal control system.
- Direct, develop and manage the staff level personnel during the execution of IA engagements and ensure that the planning, fieldwork, reporting activities are in conformance with the applicable standards and regulations.
- Leading the establishment of strategy, policies, procedures, and processes for supervisory functions within the MOD.
- Engaging with MOD development program.
Information Security Manager
Bank Aljazira
03.2023 - 07.2023
- Building a new process for the role of Enterprise Information Security Department in the change management process.
- Responsible for all audit observation from the internal auditor and external auditor
- Contribute in the Third Party Cyber Risk Vendor Management to assure suppliers are meeting the Cybersecurity minimum requirements.
- Lead information Security team engagement in the open banking project
- Lead cyber security operation team and provide support in the operation issues
- Lead penetration team and set plan for PT tasks for bank wide
- Implement cyber security controls in Bank Aljazira infrastructure
Cybersecurity Implementation Manager
Stc
12.2020 - 03.2023
- Auditing all cybersecurity controls and their policies inside stc data center for stc data center re-architecture project
- Contribute in the Cybersecurity audit task for old stc data center.
- Engage with executive to provide the Cyber Implementation point of view and experience to be considered in the Cybersecurity strategy for stc.
- Contribute in the Cybersecurity Crisis Management drills within stc.
- Lead the implementation of NAC solution across stc(Data centers and Customer Show Offices).
- Lead and manage migration project for security appliances from old Data center to new Data center.
- Engage and contribute to implement Cybersecurity controls to protect critical servers within stc.
- Lead and Manage several Cybersecurity projects and update stakeholders to ensure that proper Cybersecurity controls and technologies are in place to increase the assurance of protection.
Networks Operations Engineer
Stc
02.2017 - 12.2020
- Working as a SPOC for the general department to engage with cyber security department for compliance tasks and cyber security strategies.
- Auditing all the changes for mobile access network in a daily basis
- Mitigated more than 3000 vulnerabilities within STC network.
- Lead and supervise on vendor teams (Governance Work).
- Responsible to maintain the mobile network performance.
- Apply and configure special request from VVVIP costumers and government.
- Tier 2 Fault management (KPI degradation (CSSR/CDR/HOSR/RAB Assignment/etc) analysis, fault isolation and rectification using industry best practices, Call trace analysis, FFT scan for interference,)
- Configuration management (PCR/Re-homing/Parameter mapping/Re-farming/National roaming /etc).
- Ensure the agreed SLA (Critical, High, Medium and Low) are in compliance and meeting the agreed metrics.
- Implemented the disaster recovery for VVVIP network.
Electrical Transmission Engineer
Saudi Electricity Company
01.2014 - 02.2017
- Write and update specifications for electrical equipment (GIS, Transformers, rectifiers, cables, etc.).
- Apply prequalification process for any electrical manufacturer want to supply our projects.
- The prequalification process takes almost 2 years (depend in the manufacture response) and contain many steps like review production and quality profile, survey visit, type test, routine test, etc.
- Attend and witness type and routine tests for electrical equipment.
- Review and approve technical submittal (ITP-FAT-3rd partly inspector CV).
- Attend technical meeting to review the architecture design.
- Review and validate technical issues.
Education
Master of Business Administration (MBA) - With GPA: 2.88 Out of 4. Very Good
Saudi Electronic University
Riyadh 09.2019 - 12.2021
Bachelor Degree in Electrical Engineering - With GPA: 3.54 Out of 5. Good
King Saud University
Riyadh 04.2001 - 03.2014
Skills
Ability to work under pressureundefined
Achievements
- Establish a cyber security and IT audit manual in internal audit department
- Build cybersecurity change management process in Aljazira Bank
- Impalement NAC solution in STC network
- Lead and manage Data center migration project which was top critical project followed by STC VP.
- Build verification process for mobile change management to ensure that all the daily changes done into the mobile
network are done in correct way and there aren't outages or issues after the change - I was nominated to be a SPOC for mobile access operation to close all vulnerabilities under mobile access department. We close more than 3000 vulnerabilities during 2018-2019
- Contributed in the development of change management procedure
- Contributed in implement and design 5G project
- Contributed in implement and design NB-IOT project
- Qualify Alfanar manufacturer for HV cables
Certification
CompTIA Security+ ce Certification
Personal Information
- Date of Birth: 25/08/1990
- Place of Birth: Riyadh, Saudi Arabia
- Married. I Have 3 Kids (1 girl & 2 boys)
References
Available upon request
Timeline
Information Security Manager
Bank Aljazira
03.2023 - 07.2023
CompTIA Security+ ce Certification
07-2022
Cybersecurity Implementation Manager
Stc
12.2020 - 03.2023
Cyber Hacker Certified CHCv2
10-2020
Master of Business Administration (MBA) - With GPA: 2.88 Out of 4. Very Good
Saudi Electronic University
09.2019 - 12.2021
Intensive Course in Project Management Professional PMP
07-2019
CCNA Routing and Switching certification
06-2019
Introduction to NB-IOT
11-2018
STC Cyber Security program.
07-2018
Networks Operations Engineer
Stc
02.2017 - 12.2020
Attend and witness routine tests for GIS at HHI in South Korea
10-2015
Attend and witness salt spray test for OPGW at Taihan Manufacturer in South Korea
07-2015
Attend and witness type and routine tests for 60 MVA Power Transformer at BEST Manufacturer in Turkey
05-2015
ISO 9001/2008 Auditor / Lead Auditor certification
04-2015
Electrical Transmission Engineer
Saudi Electricity Company
01.2014 - 02.2017
Bachelor Degree in Electrical Engineering - With GPA: 3.54 Out of 5. Good
King Saud University
04.2001 - 03.2014
Head of Cyber Security and Information Audit
Ministry of Defense
7 2023 - Current
Similar Profiles
Ammar AlsudaisAmmar Alsudais
Senior Projects Manager at Ministry of DefenseSenior Projects Manager at Ministry of Defense
Bryan Dov BergmanBryan Dov Bergman
Tech Support Engineer at Ministry of DefenseTech Support Engineer at Ministry of Defense
SARI S.KHAIYATSARI S.KHAIYAT
Section Head of Engineering at Ministry of DefenseSection Head of Engineering at Ministry of Defense