Loay Zahran
About
My name is Loay Zahran, and I am an experienced Information Security Officer currently working at Si-Vision since August 2022. I specialize in creating and maintaining security policies and procedures, conducting risk assessments, and implementing vulnerability management. I hold a CISSP certification and have extensive experience with ISO 27001 and PCI-DSS standards.
Previously, I worked as a Blue Team Consultant at Cysiv, where I developed security programs and performed technical vulnerability assessments. Before that, I served as a Security Program Manager at Orange Business Services, managing security change requests and resolving network-related security incidents.
I hold several certifications, including AWS Certified Cloud Practitioner, Cisco Cyber Security Ops, CEHv9, CCNA Security, and Zscaler Certified Cloud Administrator. I am proficient in tools like Nipper, Nessus, and Wireshark, and I have strong skills in incident handling and network troubleshooting.
Education
Work & Experience
Created and maintained security policies and procedures. Conducted risk assessments and developed mitigation plans. Reported to upper management on security posture. Implemented vulnerability management. Developed and maintained information security policies and procedures.
Developing security programs based on PCI-DSS & ISO-27001 Performing technical vulnerability assessments for Firewalls, Antivirus, IPS, Wireless Controllers, Domain Controllers
Manage security change requests on our perimeter. Help to the resolution of internal network related security incidents. Hands on (FortiGate - BlueCoat - McAfee ePO - Nessus - Check Point Tracker - Wireshark)
Provide Technical Point of contact for customers incidents. Own the resolution responsibility of the reported customer incident solely or with help of other teams. Document all troubleshooting and incident management actions via the electronic incident management system in a timely manner.