Desmond Israel

Lead Consultant, Information Security Architects Limited, Accra

img18
    I am a professional with excellent entrepreneurial drive to undertake IT business development projects with keen interest in Enterprise Information/Cyber Security Solutions and Data Protection & Privacy Compliance measures. Ideal corporate candidate for a position requiring drive, competent managerial skills, initiative and responsibility with 10+ years of experience. Certified Specialist - Vulnerability Management Certified Professional - Endpoint Security Implementer Certified Advanced Security Practitioner Experienced Information Technology Professional - Systems/Security Experienced IT Business Developer, IT Subject-Matter Panelist & Public Speaker
    EDUCATION
  • Mountcrest University College, Accra - Ghana (2013 – 2016)
    Bachelor of Laws (LLB)
  • Regent University College Of Science & Tech, Accra - Ghana (2006 – 2011)
    Bachelor of Science in Management with Computing
  • Graduate School of Management, Tottenham – UK (2002 – 2003)
    Advance Diploma in Information Technology
    TRAINING
  • University of Adelaide, Australia - 2016
    edX Verified Certificate for Cyberwar, Surveillance and Security
  • Devry University, Illinios - 2014
    Certificate in Maintaining Cyber Security
  • Kofi Annan Centre of Excellence - Advanced Information Technology Institute -2014
    ITLv3 Foundation, Information Technology Service Management
  • NIIT, 2002 – 2003
    Certificate in eTechnology
    EMPLOYMENT
  • March 2012 – Present
    Information Security Architects Limited, Accra:
    Lead Consultant, Privacy & Security Practitioner
    Role:
  • Formulate strategy and execution of IT infrastructure, privacy & security projects for client organization and oversee technical projects in alignment with their organizational goals and direct the effective delivery of networks, development, and disaster recovery systems and processes. Act as information engineer to find solutions to manage business activities.
  • I act in an advisory role and liaison between the company directors, external partners and blue-chip status clients to serve them with solutions that fit into standards like ISO 27001/2, Internal corporate requirements etc.
  • Frequently supervise a team of workers, while working closely with management, external partners and advisors. I prepare financial budgets and present proposals for capital projects to client senior executives. Other duties included researching and recommending new security solutions, identifying new market opportunities and leading efforts to improve IT processes.
  • January 2007– February 2012
Absolute Intrusion Management Limited, La - Accra
    Head, IT Security Solutions
Role:
  • Communicate regularly with executive management and all clients of information services, systems and security.
  • Manage and develop IT staff, including, training, evaluation, guidance, discipline
  • Develop standard operating procedures and best practices, including providing written protocols and guidance to IT staff and to end-users of clients.
  • Ensure the creation and maintenance of all written documentation, including system and user manuals, license agreements, and documentation of modifications and upgrades.
  • Oversee provision of Endpoint Security Support for 45 companies with over 5000 desktops across the country.
  • Keep current with the latest technologies and determine what new technology solutions and implementations will meet business and system requirements.
  • Manage financial aspects of the IT Department, including purchasing, budgeting, and budget review.
  • Develop and implement all IT policies and procedures, including those for architecture, security, disaster recovery, standards, purchasing, and service provision.
  • Negotiate and administer supplier contracts and service agreements.
  • Supervise the troubleshooting of all technology issues for existing clients
  • Maintain log and/or list of required repairs and support maintenance.
  • June 2005 – December 2006
    Software Marketing Consultancy Limited, Labone – Accra
    Manager, IT Business Development
    Role:
    I acted as the senior sales engineer, recruited, appraised and managed the sales team of the company.
  • I was in charge of developing technical marketing materials, training documentations & proposals.
  • I lead team to server-based implementations for clients with McAfee Network security solutions like Intrusion Prevention Systems, Vulnerability Management, Host Intrusion Prevention and Centralized Management Antivirus and system security solutions.
  • January 2003 – April 2005
    SimplyIT Training Center, Tesano - Accra
    System Administrator & IT Trainer
    Role:
  • I was directly in charge of the entire network of the training institution, managing win2000 server with Active Directory Service, DHCP and DNS for employees and student accounts, shared resources, network stability and security.
  • I was a technical trainer for the following MS SQL 2000 Database (implementation), Network +, Linux and Open Source, JAVA and Corel Draw.
  • I personally promoted open source by implementing a Linux server (with the following FTP, SSH, Apache, Open Office, SAMBA, NIS and Security Implementation) to facilitate the training of students.
    CERTIFICATIONS
  • Foreign Corrupt Practices Act (FCPA) Channel Certification McAfee March 2013
  • Foundstone Certified Vulnerability Assessor McAfee February 2006
  • Cyberoam Certified Network Security Professional (CCNSP) Cyberoam License CP240314/V2.1EL/10482 March 2014 to March 2016
  • QualysGuard Certified Specialist Vulnerability Management QCS-VM Qualys License QCSVM13052014 April 2014
  • WhatsUp Gold Certified Sales Partner Ipswitch, Inc. License 1403273338-54423079 June 2014 to June 2015
  • Monitoring Transmitted Data Certification Udemy License UC-NQ6ZIUA9 July 2014
  • Pentester Certification Udemy License UC-EMIKHFTJ July 2014
  • Project Management Udemy License UC-1HAB4Q71 July 2014
  • CompTIA Advanced Security Practitioner (CASP) CompTIA License COMP001006891378 March 2014
  • Emerging Trends in Threat Intel Cybrary June 2015
    SKILLS & EXPERTISE
  • Management: Risk, Project, Compliance, Change, Business Development
  • Directory Service Management: Windows NT, Active directory, LDAP
  • IDS/IPS: Cyberoam UTM, McAfee I-2700, Cisco IDS 4255
  • Penetration Testing: Backtrack 3 & 4, Kali, SecPoint Penetrator
  • Vulnerability Assessment: Nexpose, Retina, NMap, Nessus, Qualys, SecPoint Penetrator
  • Network Tools: GFI Languard, Wireshark (Ethereal), tcpdump and ManageEngine’s Netflow Analyzer
  • Enterprise Endpoint Security (1000+ Nodes): Kaspersky, McAfee, Avast, eScan, Symantec & Eset
  • Endpoint Security Implementation: Antivirus, Application Control, Device Control, Image Deployment, Patch Management & Systems Management.
  • OS and Directory Services: Win NT to Win8 and Server 2008 – AD and MS Outlook , Linux, Basic Solaris Unix, Mac OS
  • Encryption: SSL Audits, PGP Enterprise (SYMANTEC), Public Key Infrastructure, AES, DES, SHA
  • Data Loss Prevention: McAfee DLP
  • Standards: ITIL, PMP, ISO27001:2005, OVAL, SANS, PCI-DSS
  • Network Documentation: MS Visio
  • Network Management/Monitoring: Solarwinds, Whatsup Gold, HP Openview,
  • Virtualization: VMware
  • VPN: IPSEC, SSL, Open VPN
  • Web Proxy/Acceleration: Bluecoat, Surf Control, Web Marshal, CCProxy
  • Wireless LAN management: WAP and WEP
    PROJECTS
    Security/Privacy Consultant -Data Protection Commission, Ghana
    Privacy Audit Policy Documentation & Guidelines Current
    This a pro bono service through which I offer assistance to the management of the commission in developing frameworks to assist in its operations; this includes contributing and developing documentations in line with privacy audit toolkit and compliance frameworks.
    Security/Privacy Consultant -Halges Limited [Korba ePayment Platform]
    Security Testing & Privacy Policy Current
    This project involved audits (PCI-DSS), vulnerability assessment (OVAL 2) and penetration testing of the mobile payment platform www.korbapay.com which will be going Live in November 2016. My role also involved ensuring regulatory and stakeholder security baselines are met including developing a data protection policy and ensuring compliance from developers, infrastructure and customer experience team.
    Endpoint Security Consultant -Sovereign Bank Limited
    System Security Implementation June 2016
    This project involved the implementation of various systems security controls to ensure mitigation towards IT security attacks, especially randsomware. The controls planned and deployed included the implementation and configuration of Kaspersky Security Center modules:
  • Anti-Malware File Server & Firewall protection
  • Cloud-Assisted Protection Via Kaspersky Security Network
  • Application, Web, Device Control & Whitelisting
  • Mobile Device Management (MDM)
  • Mobile Endpoint Security (for Tablets And Smartphones)
  • AES-256 Whole Disk/File Encryption
  • Advanced Vulnerability Scanning
  • Patch Management [Microsoft Patches & Third Party Software]
    Security/Privacy Consultant -Bankable Frontier/MasterCard FIBR
    Fintech Privacy Assessment Advisory February 2016
    This project involved an advisory role of providing the team with the needed guidelines on the role that privacy and data security plays in enhancing Fintech start-up business and relating that to the Ghanaian perspective ensuring an understanding of the Data Protection Laws Ghana, its 8 Principles vis a vis industry standards like ISO 27001, PCI-DSS among others. Ultimately an alignment of the Data Protection Act 2012 and other stated industry standards was required, business impact analysis from the point of view of data breach as a risk factor to start-up Fintech was the final outcome of my role.
    IT Security Consultant -Bui Power Authority
    IT Risk Management Project Aug 2015
    This project involved the Planning, Analysis, Design and implementation of an IT Risk Management framework targeted at ensuring IT Security Compliance, Network Security, Availability, Reliability and Scalability. The project saw the implementation of technical and logical security solutions for the corporate environment. Development of enterprise IT/Security policies, network & systems security was enhanced with anti-malware solutions, AES-256 full disk encryption, vulnerability assessment engines, patch management and a perimeter unified threat management appliance.
    IT Security Consultant -CAL Bank Limited
    Vulnerability Assessment November 2014
    This project involved the Planning, Analysis, Design and implementation of an onsite real-time vulnerability assessment solution; The choice solution was the best-breed NEXPOSE 1000 appliance, successful implementation included the classification and prioritization of digital asset base on impact and risk, providing the patch management cycle for critical patches and identified and training on vulnerability management to ensure the bank mitigates disruptions from cyber-attacks.
    Project Team Lead -Goldfields Ghana (CIL Plant Processing)
    ISO27001 Audit & Vulnerability Assessment March 2014
    A Network Security Vulnerability Assessment (NSVA) of GFG. The NSVA was performed to assist in formulating a more proactive approach to security management. The NSVA was executed by ISA’s Industrial IT Solutions in an attempt to help GFG, CIL Plant Processing better understand their current Network security situation, the potential risks associated with that current status, and a proposed path forward to remediate any issues.
    Endpoint Security Consultant -Fidelity Bank Limited
    System Security Implementation November 2013 to-date
    This project involved the implementation of various systems security controls to ensure mitigation towards IT security attacks, especially ransomware. The controls planned and deployed included the implementation and configuration of Kaspersky Security Center modules;
  • Anti-Malware & Firewall protection
  • Cloud-Assisted Protection Via Kaspersky Security Network
  • Application Control & Whitelisting
  • Web & Device Control
  • File Server Protection
  • Mobile Device Management (MDM)
  • Mobile Endpoint Security (for Tablets And Smartphones)
  • AES-256 Whole Disk/File Encryption
  • Advanced Vulnerability Scanning
  • Patch Management [Microsoft Patches & Third Party Software]
    CURRENT KNOWLEDGE TRANSFER & SPEAKING ENGAGEMENTS
  • Panelist
    11th Audit, Risk and Governance Africa 2016
    MIS|TI Training Institute
  • Speaker & Panelist (Ransomware)
    IT Audit, Information Security & Risk Insights 2016
    ISACA Accra Chapter
  • IT Audit, Information Security & Risk Insights 2017
    ISACA Accra Chapter
  • Speaker & Panelist (Threat Vulnerability Management | CaseDemo: External Blue Exploits)
    Maiden Data Protection Conference 2016
    Data Protection Commission of Ghana
  • Data Protection Conference 2017
  • Data Protection Commission of Ghana
  • Facilitator
    Emerging Trends in Data Privacy: For Students of Takoradi Polytechnic 2016
    Data Protection and Archivist: For Members of Records Management/Archivist Association 2016
    Data Protection Commission of Ghana
    PROFESSIONAL MEMBERSHIPS
  • CYBER SECURITY Forum Initiative (CSFI)
  • Association of Information Technology Professionals (AITP)

About Us

The Africa Mobile & ICT Expo is an assembly of captains, investors and enthusiasts of the ICT industry as well as all things and everything technology. Mobile technology lovers, students and professionals, device manufacturers, telcos, regulators and policy makers converge in Accra Ghana for 3 days of conferences, seminars, product and app launches, and discounted products exhibition by 100+ quality brands.

Weekly News

Posted 17 Aug 2013
Posted 13 Sep 2013
Posted 11 Jul 2013

Address

Mobex Center
Trassaco Valley
East Legon, Accra - Ghana
P: (233) 303-960669

Be the first to know!