Mohammad Aburayya

Head Of Cyber Risk Controls Section in Information Security Department.
roles and responsibilities:
• Designing and implementing information security strategy
• Developing and Maintaining of IT security policies, architecture, procedures,
solutions and standards
• Working closely with IT infrastructure teams to install and manage firewalls,
log collectors, endpoint protection and intrusion detection systems
• Ensuring compliance with the latest regulations and compliance
requirements such as PCI-DSS, COBIT and GDPR etc.
• Work closely with the Chief Information Security Officer to deliver and
execute our cyber security strategy
• Communicating with key stakeholders about IT/information security threats
and related business risks
• Being informed about the latest security technologies and trends
• Lead the security Operation Center (SOC) team, and Refining Security
Incident Response
• Providing security advice and technical support for development teams
• Developing and implementing business continuity plans
• Work on determining acceptable risk levels for the enterprise and ensuring
the IT environments are adequately protected from potential risks and threats

Jordan Islamic Bank March 2016 — March 2019
Eastnets Jun 2014 — Feb 2016
Builders Solutions company January 2013 — June 2014
Printing development
company (Heidelberg Jordan)
November 2011 — January
2013

Computer Engineering 2006 — 2011
Tafila Technical University
Bachelor degree in Computer Engineering , with estimation Good

Qualifications
•2021 Certified Information Systems Auditor (CISA) – ISACA, Certificate.
•2020 ISO 27001 Lead Auditor - Information Security Certification -
BSI, Certificate.
•2020 ISO 27001 Lead Implementer - Information Security Certification -
BSI, Certificate.
•2017 COBIT 5 Foundation -ISACA,Certificate.
•2017 Certified Ethical Hacker -EC-Council,Certificate.