RESUME OF BANDAR S. MUNSHI

RESUME OF BANDAR S. MUNSHI  [email protected]  +966-56789-8981 CAREER OBJECTIVE     Looking for a director position to lead my team and mana...
Author: Donald Randall
2 downloads 1 Views 267KB Size
RESUME OF BANDAR S. MUNSHI  [email protected]

 +966-56789-8981

CAREER OBJECTIVE    

Looking for a director position to lead my team and manage the systems and resource effectively and efficiently. Apply the merged management skills with the deep technical and academic knowledge in order make a top ranking model in security management. Import the various good values and corporate cultures I observed and learned from 2 international companies (Saudi Aramco & McAfee) Enhance the weak and broken internal processes to enhance the corporate performance and improve the security stance

PROFESSIONAL EXPERIENCE 13 years plus experience in both network\systems administration and IT security analysis. NETWORK OPS & MNGT DIVISION, NPMG JAN 2013 – PRESENT Network Protection and Management Group Back to my home group were our roles and responsibilities to manage the network security devices like firewall, IPS, proxies, RADIUS, tec. Besides being an IPS consultant, I am currently assumed to be the main administrator for FireEye and the secondary administrator for NAC, Network Admission Control. Key Contributions/Achievements:  Vulnerability Remediation and Project  Compliance coordination Process Enhancement.  IPS Separation Project  IPS upgrade  Assessing the RADIUS operations/security issues  Streamline the FireEye operations.  Helping the internal auditors to conduct their audit for IPS and closing all reported items.  Lean Six Sigma Project for enhance the NAC operations Process.  NAC basic administration and troubleshooting.  Participated in Alcatel Switch Replacement Project with new HP switches and enforcing them for NAC functionality  Managing SBR RADIUS managed devices.

INFO. PROTECTION CENTER DIVISION\ PM&IPMG (SOC) SEP 2012 – DEC 2012 Protection Monitoring & Incident Management Group After Aramco Virus Incident, I was asked to work on 3 months assignment to be main Incident handler at the team since I was a GCIH (GIAC Certified Incident Handler). Also, I was asked to review the current processes and enhance them. A major activity was to be sole and main coordinator for the DDoS (Distributed Denial of Service) protection Drill Exercise to protect Saudi Aramco network. This activity helped learn about DDoS protection service and how to plan and coordinate such an exercise with limited resource, time, and experience. Key Contributions/Achievements:  Helping the team to review the current process, define deficiencies and propose enhancement.  Planned and coordinated DDoS Protection Drill exercise  Coordinate with different entities to improve the DDoS Protection and signing the SLA between them  Managed my shift during the assignment as shift Leader.

1

Be familiar with Business Continuity and Disaster Recovery Plans

MCAFEE INC. (AN INTEL COMPANY) SEP 2011 – SEP 2012 McAfee IPS Tier III Support Engineer Saudi Aramco used to send its employees for internship assignment with international companies where we have some product from them or any other leader institutes that have business related to Aramco operations. The sole purpose of the internship to is to get the consultancy experience in the technologies used in Aramco and also to get exposed to the external world and learn how they are running business. I was assigned to work with the highest level of engineers to do the technical and professional support for the IPS, Intrusion Prevention System, that is tier III which located in McAfee head quarter in Santa Clara, CA, USA. Key Contributions/Achievements:  Helping the team to support the customers worldwide and troubleshooting their tickets.  Reviewing and updating the Ttree (the logical procedures/Flowcharts to troubleshoot the IPS components).  Attending a lot of McAfee courses and some SANS courses (eLearning and instructor-led) .  Passing 2 SANS exams and McAfee IPS exam. The First McAfee IPS certified in Saudi Aramco.  Setting up the QA environment and test lab.  Testing the different types of sensors and manager features.  NETWORK OPS & MNGT DIVISION, NOC 2010 – 2011 Network Support Engineer Worked for almost 15 months as an assignment with Network Operation Center. The purpose of the assignment to troubleshoot the network issues during after working hours, shift based, and to keep the network availability as high as targeted. In NOC I had to troubleshoot the issue and tickets related to the huge implementation of Aeramco network kingdom wide in addition our offices and subsidiary companies worldwide. While working at in NOC I get exposed to various amount and types network devices including routers, switches, load balancer, Wireless devices, firewalls, IPSs and proxies. Some of these listed devices have different model and some other times different Operating Systems. Key Contributions:  Supporting and Troubleshooting al network issues and tickets.  Upgrading the operating system of the network devices as required.  Acting as a shift superintendent for almost 3 months.  Reviewed and enhanced some of the procedures used at NOC.  Setting up the procedures.  Statistical analysis of the IPS tickets in specific and proposed a scientific solution to reduce the down time for the IPS. This includes creating a comprehensive procedure to maintain the IPS for the network engineers.  Knowledge transfer of the IPS technology on how to administer IPS for the network engineers.

NETWORK OPS & MNGT DIVISION, NPMG 2008 – 2010 Network Protection and Management Group Network Protection Management Group, NPMG, is responsible for securing the corporate security by deploying and managing different technology and platforms. Among these technologies and tools are the Firewalls, Intrusion prevention Systems (IPS), proxies, web filtering and socks. As per the organizations realignment, I was moved with the IPS function to NPMG where I became the main administrator for both the Juniper and McAfee IPS. The IPS administration tasks include installing and configuring the ISM servers and sensors, upgrade them, updating the ISM SW, sensor’s images, pushing the latest signatures set and policies, managing users and access control and others. The FW and proxies administration are also among the assumed tasks. Key Contributions:  Streamline the IPS operations.  Upgraded the IPS infrastructure.  Deploying new IPS sensors.  Managed to close most of the IPS Audit Items and coordinated the rest.  Arranged the training and transferred the knowledge of McAfee IPS to NPMG.  Enabling Juniper IDP functionality  Administering Juniper IDP operations.

2

   

Participated in the FW administrations. Participated in the Proxies and Web Sense administrations. Deployed and secured the KAUST Inauguration Ceremony event. Assignment with NOC, Network Operation Center, to support and troubleshoot network problems as well supporting network security devices like Firewall, proxies and IPS.

INFORMATION PROTECTION CENTER, PMG 2004 – 2008 IT Security Trend Analysis After working for more than two years and half in UNIX Administration, I moved to a new established division which takes care of keeping up the IT network and systems secure. I joined the team that is responsible for monitoring the IT infrastructure. The main purpose of this team is to make sure that Aramco environment is free from Viruses, spyware and P2P and verify that all traffic are legal. Hacking and scanning activities should be monitored and reported as incidents. Also, PMG is responsible for administering and maintaining all the systems used by the team. Key Contributions:  Installing and Configuring Juniper IDP Project.  Daily security Monitoring.  Incident analysis Reporting and Follow up.  Installing, configuring, and supporting Security tools, like IDS, IPS, e-Security, Console, IntilleShield, BigBrother, Nagios and Juniper FW/IDP.  Setting up the procedures.  IDS Expansion Project (Local & International).  IDS QA setup.  eSecurity Deployment  SIEM POC evaluation to replace eSecurity.  Extranet Expansion Project.  Extranet review.  Participated in BS7799 Project  Building PMG Quality Assurance Environment

SAP COMPUTING CENTER, SAP Systems 2001 – 2004 Systems Analysis and Administration Recruited to analyze and administer the SAP platforms which are running the UNIX Solaris OS. The scope of the servers covers more than 500 servers with various size of computing. The primary role was to do the daily administration and participate in the required projects. UNIX administration include: installation, configuring and upgrading OS, Application support, Network setup, user account management, File system and storage management, maintaining clustering and HA. Key Contributions:  DOB training School  SSMD/ Explorer SW upgrade  SAP HW inventory and Big Picture  E15K preparation  Installation Procedure  JumpStart Environment  Solaris 9 Live Upgrade  Installing Patches  R&D Lab  Security and JASS  Storage Firmware Upgrade (T3).  Terminal Concentrator.

3

CORE COMPETENCIES: knowledge and experience about world-wide, including Aramco, used operating systems (MS Windows & Unix). Having a good awareness of the IT operations in Aramco. The considerable public relations I have within IT Departments can facilitate the inter-communications between them. Willingness to work under demanding environment and deliver individual throughput or within a team. Managerial skills gained from the academic studies like setting goals and planning, hard decision making, economics, project management, etc.

* Platforms: UNIX (Solaris on Sun SPARC), Microsoft Windows® operating systems from 95 on, Linux (Red Hat), Mac OS. * Networking: TCP/IP, ISO/OSI, Ethernet, VPN, SSH, SecureID. * Languages: UNIX Shell Scripting, VB Script, C, Basic, Fortoran, HTML, XML, ASP. *Systems and Tools: eSecurity, McAcfee IntruShield IPS, IntelliShield, ISS RealSecure, ISS Internet Scanner, LANguard Network Security Scanner, McAfee/Norton Virus Protection Utilities, BigBrother, Nagios, WhatIsUp, Veritas Volume Manager, BMC Patrol, MicroMuse NetCool, Microsoft Office System (including Microsoft Word, Microsoft Excel, Microsoft PowerPoint®, Microsoft Access, and Microsoft Outlook®), Microsoft Project, and Microsoft FrontPage®, Juniper FW and Juniper IDP, BlueCoat and Web Sense.McAfee Web Gateway, FireEye, STRM (SIEM),

Assignments  Internship assignment with McAfee at Santa Clara (1-year)  NOC: Network Operation Center (15 month)  KAUST Inauguration Ceremony. (3-months)  Chain Management on Remedy. (3 months)  Deploying eSecurity with Amro Sherbini from IPD  Deploying IDS Real Secure in International locations with Khalid Qahtani from IPD.  Professional English Language Program. (3 months)

Teaching, Mentoring, and Community Service  The Kingdom Merit Medal for donating blood for 20+ times  Transferred the Knowledge of IPS administration by teaching both NPMG and NOC analysts IPS installation and configuration  Mentored and inspired new PDPs and non-graduate hires to learn my group’s tools and function of my group besides helping to plan their career.  As a president of computer club and a manager of the Annual Computer Exhibition (ACE) at KFUPM, I managed the club members to deliver over than 30 technical courses to university students and a lot of seminars for the exhibition’s visitors. Courses and Training The following list shows most of the courses that I have attended in the past. Most of them are related to IT. The rest are related to management and Human Development. e-Learning website and Self Training materials were utilized to increase the learning capacity.  Certified Information Systems Security Professional  Certified Ethical Hacking Course v8.  Windows Security.  Lean Six Sigma (Green Belt)  McAfee Web Gateway  McAfee FoundStone course  McAfee ePO AV course.  McAfee IntruShield Fundamental and Advance Administration Courses  FoundStone Ultimate Hacking wireless course

4



                                                

5

FireEye Malware Protection System SANS SECURITY 504: Hacker Techniques, Exploits and Incident Handling. SANS SEC401: Security Essentials Bootcamp Style

SANS MGT305: Technical Communication and Presentation Skills for Security Professionals Unix Solaris Administration (Admin I & Admin II in B2050) Network Administration for the Solaris 9 Operating System, in London. Shell Scripting for System Administrators, in London. Sun Fire 15K Server Administration in B2050. Sun StorEdge Volume Manager Administration, in London. ISS Intrusion Detection System, IDS. eSecurity (Installation/Configuration and Agent Building). BMC Patrol. MicroMuse (Netcool /OMNIBus Administration & Configuration) Juniper, NetScreen, IPS & FW. SCNP Network Security Fundamentals in New Horizon, Dammam MCSE 2272 in Al-Jihat Training Center, Dammam MCSE 2151, MCSE 2272, MCSE 2273, MCSE 2274, MCSE 2276, MCSE 2277, MCSE 2278, MCSE 2279, MSE 2830, and MCSE 2824 in Saudi Aramco B2050. CCNA (Both Intro. And ICND) in Saudi Aramco, Communications Training Center. Introduction to Java Programming Introduction to Wireless Networks and Plants Applications Certified Wireless Network Administrator (CWNA)

SAP Basic Skills Neuro Linguistic Programming , NLP The Secrets of Personal Power Diploma of Power Human Energy Introduction To Shared Values Business Ethics & Corporate Values Time Management Business Presentation PDP Analyze & Solve Problems PDP Initiative Action Link Effective Writing. Speed Reading course and Photo Reading course. Interpersonal Communications. The 3rd e-Services Symposium. Effective Aramco Supervisor. And End User: Sharek. Cisco: Building Scalable Cisco Internetworks (BSCI) Cisco : Building Cisco Multilayer Switched Networks (BCMSN) Cisco :Implementing Secure Converged Wide Area Networks (ISCW). Cisco: VoIP Configure Juniper Networks Firewalls/IPSec VPN Products Implementing Intrusion Detection & Prevention Products Blue Coat Certified Proxy Administrator Blue Coat Certified Proxy Professional Introduction to JUNOS Software JUNOS Routing Essentials JUNOS Security Platforms Configuring Juniper Networks Routers Deploying HP ProCurve Switches CRM, Customer Relationships Management.

EDUCATION AND CREDENTIALS Bachelor of Science Degree in Computer Engineering KING FAHD UNIVERSITY OF PETROLEUM AND MINERALS – KSA, Dhahran GPA is 3.53 on 4.0 scale Master Degree Engineering Management KING FAHD UNIVERSITY OF PETROLEUM AND MINERALS – KSA, Dhahran GPA is 3.25 on 4.0 scale Expected to graduate in December 2014 Master of Science in Information Security GEORGIA INSTITUTE OF TECHNOLOGY – USA, Atlanta, Georgia Expected to graduate in May 2016

PROFESSIONAL CERTIFICATIONS CISSP: Certified Information Systems Security Professional (ID# 496293 ) CISM: Certified Information Security Manager (In Progress) CISA: Certified Information Security Auditor (In Progress) MCPS-NSP :McAfee Certified Product Specialist- Network Security Platform GCIH :GIAC Certified Incident Handler GSEC :GIAC Security Essential Certified MCP, Microsoft Certified Professional CCNA: Cisco Certified Network Associate SCSA: Sun Certified System Administrator MCSA2003 +Security: Microsoft Certified Systems Administrator + Security MCSE2003 +Security: Microsoft Certified Systems Engineer + Security JNCIA-IDP: Juniper Networks Certified Internet Associate – Intrusion Detection & Prevention JNCIA-M: Juniper Networks Certified Internet Associate – M-Series router network JNCIA-FWV: Juniper Networks Certified Internet Associate – Firewall and VPN

PROFESSIONAL AFFILIATIONS Member – Institute of Electrical and Electronics Engineers, IEEE, Computer Society. Member – Arabian Society of Human Resources Management, ASHRM. CERT.SA – Computer Emergency Response Team. Saudi Arabia Qudwa

REFERENCES Personal references are available upon request

6