2. About me
• Experienced Information Security
Professional
• Graduated with honors in Computer
Science
• CISSP and ITILv3 certified
3. Professional Experience
Bombardier Aerospace November 2010 to present
Information Security Advisor, Global 7000/8000 aircraft program
Responsibilities and Accomplishments
o Primary responsible for Information Security for the new Global business jet aircraft program.
o Elaborate an Information Security aircraft program strategy.
o Ensure appropriate follow-up for all active projects for Global aircraft program.
o Development of collaboration requirements for partners working on aircraft programs.
o Ensure that IT Security projects are aligned with Business requirements and Strategic Plan.
o Ensure that projects risks are managed effectively and appropriate mitigation plans are
implemented.
o Successfully managed client expectation.
4. Professional Experience (cont.)
Bombardier Aerospace December 2005 to November 2010
Information Security Analyst
Responsibilities and Accomplishments
o Ensure that projects comply with corporate policies and directives and advise on required security controls.
o Contract review to ensure that security clauses were included.
o Deliver Information Security Awareness material to new hires to inform them about the company policies and
sensitize
o them regarding the threats that the company faces related to information security. Over 2000 new employees trained.
o Development and implementation of the Information Security policy exception process to ensure that exception to
policies are properly documented.
o Develop & launch of the on-line Information Security Awareness training program deployed to more than 15 000
employees.
o Involved in regulatory compliance projects such as: SOX/OSC, PCI, ITAR and Export Control.
Bombardier Aerospace June 2005 to December 2005
Information Security Analyst
Responsibilities and Accomplishments
o Technical support for an Information Security online training
o Monitoring for non-compliant email and Internet activities and data leaks.
o Investigations for several business units
o Developed security processes documentation
5. Specialties
• Project Security
o Ensure compliance with Information Security policies
o Advise on required security controls to protect enterprise systems,
applications and data
o Serve as an advisor to multiple projects to provide authoritative advice
and guidance on the requirements for security controls
• Architecture and Solution Design
o Participation in the high level designs to support business and
technical requirements
6. and many others
Policy and Standard Audit and Compliance
Risk Management
Security Awareness
Monitoring and investigation
Vulnerability Management
Risk Management
Application Security
Change management
Access Management
Operational Processes
Network Security Business continuity planning
7. Strenghts
Project management
Customer orientation
Leadership and team work
Communication & presentation
Business acumen Third party and vendor alliances
Problem solving
8. Interests
Professional Information Technologies
• Governance • Cloud computing
• Risk Management • Mobile devices
• Audit and Compliance • Web applications
• Leadership position • Web 2.0
9. 10 reasons to hire me
1. Experienced - Several years as Information Security professional
2. Rigorous - Deliver high quality work on-time
3. Client-oriented - Ability to cultivate relationship
4. Business-oriented - Maximise return on security investments
5. Qualified - Certified security professional
6. Personality - Excellent interpersonal skills
7. Team player - Will integrate and motivate people
8. Professional - Objective and ethical approach
9. Analytical mind - Ability to view the “big picture”
10. Eager to learn - Ever expanding skill set