HATIM LOTFEY EISSA
SHARJAH
Summary
Strategic and results-driven Information Security Professional with over 14 years of experience in safeguarding organizations against cyber threats. Proven track record in leading cross-functional teams, managing complex projects, and aligning security strategies with organizational objectives. Adept at risk management, policy development, and fostering a culture of security awareness. Seeking to leverage extensive InfoSec expertise to drive strategic initiatives and lead a high-performing security team.
Overview
19
19
years of professional experience
1
1
Certification
Work History
Senior Infrastructure & Security Engineer
Sharjah Broadcasting Authority
12.2021 - Current
- Co-Leads IT Integrated Management System for InfoSec & business continuity.
- Co-Directs SBA’s data management & governance framework.
- Co-Manages SBA’s security infrastructure policies & controls, including vendor negotiations and contracts.
- Provides strategic insights for new infrastructure solutions and refined existing systems.
- Continuously researching and integrating emerging technologies to meet SBA’s business requirements.
Achievements:
- Achieved ISO 27001 & 22301 certifications for Information Security & Business Continuity for three consecutive years.
- Directed multiple security infrastructure upgrades, including SBA’s Security Operation Center.
- Delivered consultations and awareness programs, fostering a secure work environment.
Broadcasting Technology Engineer (Compliance & Security Infrastructure), Media Asset Manager
Sharjah Media Corporation
05.2014 - 11.2021
- Coordinated entity’s compliance efforts with Information Assurance standards & regulations.
- Managed security infrastructure controls and provided strategic consultations for IT infrastructure security.
- Audited production workflows, ensuring compliance with security standards and regulations.
- Managed media content lifecycle, retention, and restoration processes.
Achievements:
- Established a robust security monitoring system using open SIEM and metrics collection.
- Implemented risk management and change management procedures, enhancing operational security.
- Developed and enforced operational policies for media asset management and handling.
Information Security Specialist
Egyptian Financial Regulatory Authority (EFRA)
03.2009 - 05.2014
- Managed IT security policies and guidelines as part of the information security program.
- Directed the management and maintenance of IT Security infrastructure and systems.
- Performed security assessments, analysis, and testing, providing strategic recommendations.
- Conducted IT audits and inspections for compliance with EFRA’s regulations.
- Achievements:
- Contributed to the development of the Information Security program, driving organizational compliance.
- Led major IT security infrastructure upgrades, acting as a technical project manager.
- Served as a technical investigator in IT-related security incidents.
E-Security Engineer (Pre-Sales)
GNSE Group
06.2008 - 03.2009
- Managed product portfolios and conducted client presentations and demonstrations.
- Responded to technical and financial RFPs, providing strategic solutions.
- Implemented installations and designed solutions for security products.
- Provided post-sales technical support, ensuring client satisfaction.
Systems Administrator/IT Support
The Egyptian Armed Forces
02.2006 - 03.2007
- Administered the facility’s IS network from domain administration to network infrastructure management.
- Maintained the facility’s information security aspects and systems.
- Provided support for the facility’s client computers and devices.
Education
Post Graduate Diploma - Information Security
Information Technology Institute
Cairo, Egypt05.2008
Bachelor Degree - Computer Engineering
Al-Azhar University
Cairo, Egypt07.2005
Skills
Technical Skills
1 Cybersecurity and Risk Management:
- Information Security Management Systems (ISMS)
- Risk Assessment and Mitigation
- Incident Response and Management
- Security Operations Center (SOC) Management
2 Compliance and Standards:
- ISO 27001 (Lead Auditor)
- ISO 22301 (Business Continuity)
- Compliance with Information Assurance standards and regulations
3 Security Infrastructure:
- Network Security (Firewalls, IPS, IDS)
- Endpoint Security Management
- Security Information and Event Management (SIEM)
- Data Encryption and Protection
4 Technical Project Management:
- Security Infrastructure Upgrades
- IT Security Audits and Assessments
- Change Management Procedures
- Media Asset Management
Management Skills
1 Strategic Planning:
- Aligning Security Strategies with Business Objectives
- Strategic Insight into Emerging Technologies
- Policy Development and Enforcement
2 Team Leadership:
- Leading Cross-Functional Teams
- Mentoring and Developing Junior Staff
- Vendor Negotiations and Contract Management
3 Communication and Collaboration:
- Stakeholder Engagement and Consultation
- Effective Communication of Security Risks and Solutions
- Training and Awareness Programs
4 Decision Making:
- Risk-Based Decision Making
- Crisis Management and Response
- Prioritizing Security Initiatives
Certification
- CISM: In Progress
- Coursework: Data Governance Fundamentals
- Coursework: Cybersecurity Threat Hunting for SOC Analysts
- Coursework: OSINT - Open Source INTelligence
- CISSP: Certified Information Systems Security Professional (CN#: 493773)
- ISO/IEC 27001 Lead Auditor (IRCA A17279 Training & Examination)
- C|EH: EC-Council Certified Ethical Hacker (ID# ECC929263)
- Cisco-SNPA: Securing Network using PIX & ASA. (CCSP Partial)
- Cisco-SND: Cisco Securing Network Devices. (CCSP Partial)
- Cisco-CCNA: Cisco Certified Network Associate.
- MCP: Microsoft Certified Professional (MS Windows Vista)
Affiliations
- (ISC)2: CISSP – Dec2015
- EC-Council: CEH – Feb2009
Languages
Arabic
English
References
Available upon request
Timeline
Senior Infrastructure & Security Engineer
Sharjah Broadcasting Authority
12.2021 - Current
Broadcasting Technology Engineer (Compliance & Security Infrastructure), Media Asset Manager
Sharjah Media Corporation
05.2014 - 11.2021
Information Security Specialist
Egyptian Financial Regulatory Authority (EFRA)
03.2009 - 05.2014
E-Security Engineer (Pre-Sales)
GNSE Group
06.2008 - 03.2009
Systems Administrator/IT Support
The Egyptian Armed Forces
02.2006 - 03.2007
Post Graduate Diploma - Information Security
Information Technology Institute
Bachelor Degree - Computer Engineering
Al-Azhar University
- CISM: In Progress
- Coursework: Data Governance Fundamentals
- Coursework: Cybersecurity Threat Hunting for SOC Analysts
- Coursework: OSINT - Open Source INTelligence
- CISSP: Certified Information Systems Security Professional (CN#: 493773)
- ISO/IEC 27001 Lead Auditor (IRCA A17279 Training & Examination)
- C|EH: EC-Council Certified Ethical Hacker (ID# ECC929263)
- Cisco-SNPA: Securing Network using PIX & ASA. (CCSP Partial)
- Cisco-SND: Cisco Securing Network Devices. (CCSP Partial)
- Cisco-CCNA: Cisco Certified Network Associate.
- MCP: Microsoft Certified Professional (MS Windows Vista)
Similar Profiles
Saeed AlsuwaidiSaeed Alsuwaidi
Central Warehouses Department Manager at Sharjah Broadcasting AuthorityCentral Warehouses Department Manager at Sharjah Broadcasting Authority
Mohammed Althaf SayedMohammed Althaf Sayed
Instrument Engineer at Sharjah Electricity, Water & Gas Authority (SEWA)Instrument Engineer at Sharjah Electricity, Water & Gas Authority (SEWA)
Krishnadas KochathKrishnadas Kochath
Accounts Assistant at Sharjah Airport International Free Zone Authority, SAIF ZoneAccounts Assistant at Sharjah Airport International Free Zone Authority, SAIF Zone