Mohamed Rafiq M Ansari
IT Security Administration
Kuwait City
Summary
Skilled professional with 10+ years expertise in Network Security, Email Security and Endpoint Security using comprehensive security solutions thus by reducing security incidents and enhanced network resilience and protects networked assets through both preventive and reactionary measures.
Overview
18
18
years of professional experience
3
3
years of post-secondary education
Work History
Senior Officer - IT Security Operations
Kuwait Credit Information Network Company
8 2013 - Current
- Firewall Implementation and Administration:Deployed and configured Fortigate, Palo Alto, and Checkpoint Firewalls to secure network perimeters, ensuring the implementation of access controls, VPNs, intrusion prevention, and zero-trust security measures.
Managed firewall rules, policies, and objects to enforce least-privilege principles, segment network traffic, and prevent unauthorized access.
Conducted regular firewall audits and performance tuning to maintain optimal network security and minimize latency.
- Web Application Security:Implemented and administered FortiWeb Web Application Firewall (WAF) to protect against OWASP Top 10 vulnerabilities, including SQL injections, cross-site scripting (XSS), and CSRF attacks.
Configured security policies, monitored web traffic, and deployed threat signatures for real-time protection of critical web applications.
- Network Security Solutions:Engineered and maintained Trellix NX (Network Security) systems, providing advanced threat protection through signature and behavioral-based detection for incoming network traffic.
Deployed Trellix EX Email Security to safeguard corporate email infrastructure from phishing, spam, and targeted attacks, reducing email-borne threats by 95%.
- Endpoint Security and Threat Detection:Led the deployment and administration of Checkpoint Endpoint Security and CrowdStrike for enhanced endpoint protection, implementing advanced threat detection, malware protection, and vulnerability management strategies across distributed endpoints.
Developed incident response playbooks for endpoint security incidents, including threat hunting and forensics using EDR capabilities.
- Network Detection and Response (NDR):Implemented LinkShadow NDR for anomaly detection and behavioral analytics, reducing time to detect and respond to advanced threats within the network.
Conducted periodic threat hunting exercises and vulnerability assessments, leveraging LinkShadow’s AI-driven insights to proactively identify and mitigate network security risks.
- Data Loss Prevention (DLP):Deployed and managed Forcepoint DLP solutions to protect sensitive data, enforce regulatory compliance, and prevent data leaks across the organization.
Configured data loss prevention policies for email, web, and endpoint channels, ensuring real-time protection against unauthorized data transfers and potential breaches.
Worked with key stakeholders to establish data classification schemes and monitor for violations, significantly reducing the risk of accidental or malicious data exfiltration.
- Email and Spam Protection:Configured and managed Fortimail Antispam to enforce anti-phishing, anti-spam, and data loss prevention (DLP) policies, ensuring secure email communications and reducing the spam rate by 80%.
- Security Policy and Compliance:Created and enforced network security policies in alignment with industry standards (e.g., ISO 27001, PCI-DSS, NIST) to ensure compliance and mitigate potential security risks.
Performed security audits and assessments, recommending improvements for incident response plans, data protection measures, and disaster recovery processes.
IT Executive
Bismi Import and Exports Company
04.2007 - 12.2012
- Offered first-line technical support, including password resets, software installations, and system setup for end-users.
- Assisted in managing basic firewall rules for network protection, working alongside senior IT staff to enhance network security.
- Handled backup operations using Veeam, regularly verifying backup status, ensuring data integrity, and executing restoration procedures.
- Performed Windows system updates, managing patch cycles and ensuring system security by keeping operating systems updated with the latest patches.
- Supported network troubleshooting efforts by diagnosing connectivity issues and assisting in the maintenance of security protocols.
- Managed user accounts in Active Directory and Exchange, setting permissions and configuring systems according to user needs.
- Collaborated with the IT team to ensure smooth day-to-day operations and timely resolution of user requests.
Education
Bachelor of Computer Applications -
Bharathidasan University
05.2002 - 04.2005
MCSA Microsoft Certified Solutions Associate – Windows Server 2016Microsoft -
Microsoft
12.2018 - 01.2019
ITIL V3 Foundation- Information Technology Mgmt -
PeopleCert
04.2019 - 06.2019
CNSS Certified Network Security Specialist -
International Cyber Security Institute
04.2001 -
Skills
Network Security
Endpoint Security
Data Security
Threat Detection and Response
Timeline
ITIL V3 Foundation- Information Technology Mgmt -
PeopleCert
04.2019 - 06.2019
MCSA Microsoft Certified Solutions Associate – Windows Server 2016Microsoft -
Microsoft
12.2018 - 01.2019
IT Executive
Bismi Import and Exports Company
04.2007 - 12.2012
Bachelor of Computer Applications -
Bharathidasan University
05.2002 - 04.2005
CNSS Certified Network Security Specialist -
International Cyber Security Institute
04.2001 -
Senior Officer - IT Security Operations
Kuwait Credit Information Network Company
8 2013 - Current
Similar Profiles
Amul TambadeAmul Tambade
Assistant Vice President – Finance at CRIF High Mark Credit Information CompanyAssistant Vice President – Finance at CRIF High Mark Credit Information Company
Sana BuhamraSana Buhamra
Professor at Department of Information Science, Kuwait UniversityProfessor at Department of Information Science, Kuwait University
Ahmad MarafiAhmad Marafi
Electrical Engineer at Kuwait Credit BankElectrical Engineer at Kuwait Credit Bank