Soor Tantawy Email Address

Senior Information Technology Security Specialist

Incorporated in 1977, Kuwait Finance House is one of the leading Islamic banks in the world with a market capitalization of USD$10 billion and total assets of USD$37 billion. KFH operates fully owned and independently functioning banks throughout the region including Turkey, Malaysia, Bahrain, Saudi Arabia, UAE, Singapore and Australia, in addition to establishing significant stakes in numerous Islamic banks both regional and international. Its investment activities span the US, Europe, South East Asia and the Middle East. KFH is positioned at the forefront of the Islamic Finance Industry in terms of international presence, strategic alliances, innovation and spectrum of activities. KFH has also maintained its solid ratings by international agencies which affirm its financial strength, the quality of its assets and its recognition globally.

Certification • Certified Information Security Manager (CISM) * eLeanSecurity Certified Professional Penteration Tester (eCPPT) • CISCO Secure PIX Firewall Advanced (CSPFA) • Microsoft Certified Systems Engineer (MCSE) • CISCO Certified Network Professional (CCNP) • CISCO Certified Network Associate (CCNA) • Microsoft Certified Systems Administrator (MCSA) and (MCSA Messaging) - Adopt a security assessment Activity for all new projects - Recommend security controls which help to elevate the security posture of the systems - Penetration Test to Evaluate the computer System/Network Security - Evaluating new Security Systems/Network/Application Appliances and Software include (Web Application Firewall, IPS, Unified Firewall and Logs coloration and Reporting) - Perform Security assessment and Hardening Systems/Applications include (Web Server, Application, Unix/Linux Server and Microsoft Windows/Exchange/DNSSEC/AD) •Verifying of the Bank current IT and security controls line up with the standards and/or Vendor Best Practices based on international standard. •Verifying of The IT process includes procedures to collect and examine controls which impact the effectiveness and help identify deficiencies in the Information Security Program. Additionally, the examination process includes the ability to archive supporting data, documentation, and evidence that is used to support the conclusions with clear audit trails. •Trace IT and IT Security Audit process that is help evaluate the effectiveness of and adherence to your organization’s Information Security Policy controls such as; Authentication and Access Controls Network/Host/Application Security Physical & Personnel Security Encryption and Data Security Specialties: IT Audit - Information Security Management