Summary
Overview
Work History
Skills
Websites
Certification
Languages
Timeline
Generic

Dounya Saidi Saidi

Bridgewater,NJ

Summary

Dynamic Cybersecurity Specialist with a strong foundation in online security research, planning, execution, and maintenance. Demonstrated expertise in training internal users on security protocols and preventive measures, fostering a culture of awareness and compliance. Recognized for exceptional organizational skills and the ability to manage multiple priorities effectively while maintaining a positive attitude. Committed to driving results through strategic planning, analysis, and implementation of robust security initiatives. Seeking opportunities that challenge professional growth and leverage interpersonal and problem-solving abilities.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Deputy Vice President

Industrial and Commercial Bank of China
03.2025 - Current
  • Experience leading risk assessments, audits, policy, governance, and/or reporting, preferably in a financial institution
  • Assist with mapping controls to policies, procedures, and processes and testing of those controls to ensure adequate coverage
  • Establish and maintain security manuals
  • Work with control owners in the remediation and tracking of deficiencies.
  • Assist with increasing the maturity of the Information Security program, strategy and process.
  • Provide security services in identifying, assessing, managing, and tracking remediation of information security risks related to IT infrastructure, applications, platforms and suppliers and drive explicit requirements and timelines in all environments
  • Provide update to the CISO and/or CRO on progress of remediation efforts
  • Qualys scanning for vulnerabilities and baseline configuration compliance monitoring new and existing vulnerabilities and working with IT and users to remediate
  • Daily, Weekly, Monthly, reporting reviewing results of reports and presenting to IT to remediate issues
  • Daily monitoring of system events for malicious activity
  • Tufin Firewall rule review and approval
  • AlienVault SIEM System event monitoring and analysis with follow up if issue is detected
  • Tipping Point IPS Monitoring network for signs of malicious activity or exploitation
  • Trellix EPO + TMS Daily monitoring of Data Loss Prevention tools
  • Manage phishing campaigns, create email templates, perform testing, analyze results, and write report
  • Spirion Create scans to monitor files containing PII and ensure they are destroyed in accordance with data retention policy
  • Privileged Access Management (PAM) and reporting
  • Chair weekly IT meeting to discuss vulnerabilities, patching, and alarms generated by IS tools
  • Threat Intelligence Monitor Qualys Threat Protection Feed and CISA emails for relevant information to protect the network
  • Work with vendors for troubleshooting and maintenance of IS tools
  • Cultivated strong relationships with key stakeholders, including customers, vendors, regulators, and community leaders to promote collaboration and long-term success.
  • Led cross-functional teams for the successful completion of major projects, resulting in increased efficiency and client satisfaction.

Cyber Security officer

UBA America
04.2023 - 05.2025
  • Developed and implemented information security programs, policies, and procedures to protect organizational assets and ensure compliance with regulatory standards.
  • Designed and optimized Data Loss Prevention (DLP) policies to safeguard sensitive data, mitigate leakage risks, and maintain compliance.
  • Managed cloud security, LAN/WAN infrastructure, and firewall protections.
  • Led risk assessments and third-party vendor reviews while delivering continuous threat intelligence to address vulnerabilities.
  • Coordinated incident response, investigated data access violations, and implemented corrective actions to maintain system integrity.
  • Used LogRhythm to monitor logs and alerts for threats, ensuring rapid response.
  • Leveraged CrowdStrike for endpoint protection and real-time threat detection.
  • Oversaw Identity and Access Management (IAM), enforcing proper access controls and resolving user security issues.
  • Conducted security awareness training and monitored systems to prevent unauthorized access.
  • Regularly updated the cybersecurity framework, led audits, and recommended improvements to strengthen system defenses.
  • Managed WSUS patching to deploy critical updates and used Languard to monitor patch status and identify vulnerabilities.
  • Administered Brivo for physical access control, ensuring secure entry and monitoring for suspicious activity.

Cybersecurity Analyst

Santander
01.2020 - 04.2023
  • Develop, implement, and enforce DLP policies that align with the organization's data protection requirements and industry regulations.
  • Monitor DLP alerts and incidents to identify potential data breaches, policy violations, or other security threats.
  • Investigate data security incidents and policy violations, determining the root cause and implementing remediation actions.
  • Configure and manage DLP tools and technologies to ensure they effectively prevent data loss across various channels (email, web, endpoints, etc.).
  • Develop and deliver training programs to educate employees on DLP policies, best practices, and the importance of data protection.
  • Maintain documentation of DLP policies, incident details, investigations, and remediation actions for future reference and analysis.
  • Collaborate with IT teams to enforce DLP policies across different platforms, networks, and storage systems.
  • Generate regular reports on DLP activities, incident trends, policy effectiveness, and compliance status. Provide insights and recommendations to management.
  • Detecting cybersecurity events in Realtime & address them as quickly & effectively as possible (SOC/ISOC) team
  • Analyzed network traffic and system logs to detect malicious activities.

Jr DLP Analyst (Intership)

Santander
10.2019 - 12.2019

Skills

  • Team leadership
  • Documentation and reporting
  • Compliance monitoring
  • Internal auditing
  • Vendor risk management
  • Governance frameworks
  • Problem-solving aptitude
  • Problem-solving abilities
  • Decision-making
  • Adaptability and flexibility
  • Third-party assessments
  • Cybersecurity best practices
  • Risk assessment

Websites

Certification

  • [PCEP-30-02] PCEP – Certified Entry-Level Python Programmer
  • ISO/IEC 27001:2022 Lead Auditor
  • Google Cybersecurity Certificate
  • CISSP Certified Information Systems Security Professional
  • PECP 30-02: Python Certified Programmer

Languages

Spanish
Native or Bilingual
French
Professional Working
English
Full Professional
Arabic
Full Professional

Timeline

Deputy Vice President

Industrial and Commercial Bank of China
03.2025 - Current

Cyber Security officer

UBA America
04.2023 - 05.2025

Cybersecurity Analyst

Santander
01.2020 - 04.2023

Jr DLP Analyst (Intership)

Santander
10.2019 - 12.2019

Similar Profiles

  • SIDDHI RAJ KANDALKAR

    SIDDHI RAJ KANDALKARSIDDHI RAJ KANDALKAR

    Senior Manager at Industrial and Commercial Bank of China (ICBC)Senior Manager at Industrial and Commercial Bank of China (ICBC)

  • JIA XU

    JIA XUJIA XU

    Internal Auditor at Industrial and Commercial Bank of China (Canada)Internal Auditor at Industrial and Commercial Bank of China (Canada)

  • Travis Kwok

    Travis KwokTravis Kwok

    Business Manager - Mortgage at Industrial and Commercial Bank of China (Canada)Business Manager - Mortgage at Industrial and Commercial Bank of China (Canada)

  • CHERISE SUMBA

    CHERISE SUMBACHERISE SUMBA

    Teacher’s Assistant at St Andrew's School TuriTeacher’s Assistant at St Andrew's School Turi

  • FRANCIS WILLIAM SCHIANO

    FRANCIS WILLIAM SCHIANOFRANCIS WILLIAM SCHIANO

    Senior Client Service Associate at Premier Inc.Senior Client Service Associate at Premier Inc.

CREATE PROFILE
Dounya Saidi Saidi