Riyadh, Saudi Arabia
➨ 📶 With over 20 years in the Technology Domain of Leading Telecommunication Organizations in the MENAP region, my last 15 years were focused on fortifying the Cyber Security of Mobile Network Operators. ➨ 🕵️♂️ In my current assignment, I lead a team of Telecom Cyber Security Experts specializing in Threat Intelligence and Offensive Security of 2G, 3G, 4G, and 5G mobile networks. We work on: ▪ Intelligence Gathering, Analysis and Connecting the Dots. ▪ Securing Signaling (SS7, Diameter, GTP, SIP), Voice, SMS/MMS, Mobile Internet (GPRS), Roaming, Interworking, SIM, Devices, Submarine Cables, and more. ▪ Investigating Signaling and Spoofing Attacks, SIM Swap, Smishing, Vishing, Fraud, Scam, Impersonation, Interception and related threats. ▪ Conducting Security Assessments and Design Vulnerability Analyses. ▪ Pioneering the development of Telecom Cyber Security Services and Tools. ▪ Countering Social Engineering Threats, with a focus on Social Networks like LinkedIn, Facebook and WhatsApp. ▪ Comprehensive Intelligence and Security Assessment Reports, including those tailored for C-Level Executives. ➨ 🌍 My engagement with GSMA includes: ▪ Deputy Chair of GSMA Middle East Fraud and Security Group (MEFASG). ▪ Global Governance Team Member of GSMA T-ISAC (Telecommunication Information Sharing and Analysis Center). I had the distinction of being the first member chosen from outside Europe. ▪ Active member of GSMA Fraud and Security Group (FASG). ➨ 💡 Patent: An Intelligent Security System to Protect from Harmful SMS (Short Message Service) ➨ 🎙️ Privileged to deliver over 40 impactful talks at diverse forums in 8 countries, including: ▪ GSMA Mobile World Congress (MWC) and M360 ▪ ETSI Security Conference ▪ Black Hat MEA ▪ Global Cybersecurity Forum (GCF) ▪ GSMA T-ISAC Summit and Meetings ▪ GSMA FASG, MEFASG, AFASG, FSAG and FSIG Meetings ▪ CST and Mobile Operators in Saudi Arabia ▪ stc Group (Saudi Arabia, Bahrain and Kuwait) ▪ OWASP ▪ Universities, Colleges and Schools ➨ Honored to have received various awards and recognitions, including: 🥇 GSMA T-ISAC Individual Recognition Award 2024 🥇 Cybersecurity Excellence Award 2024 🥇 stc Brainiac Award 2023/24 🥇 stc Group CTO Innovation Award 2023 ➨ ✍️ Author: Basil Khan and The Secret of the Heritage Clock Mystery Novel ➨ In my spare time, I like to: ▪ Develop Innovative Ideas and Participate in Hackathons. 🥇 Winner of 6 Hackathons. ▪ Participate in Global Events. 🥇 Participant in 14 Guinness World Records. ▪ Work on Charity Projects.
In an era where mobile networks are recognized as critical national assets, my role as Deputy Chair of the GSMA MEFASG is to facilitate and foster a culture of collaboration, intelligence sharing, proactive defense and members’ empowerment to stay ahead of threats. The group focuses on the dynamic threat landscape in the Middle East, by leveraging on the distinct expertise available with the members of this region. Looking forward to the pivotal role this group will play in safeguarding the integrity of the mobile ecosystem for all.
As a Global Governance Team Member of GSMA T-ISAC (Telecommunication Information Sharing and Analysis Center), my role is to facilitate and shape the future of threat intelligence sharing among 150+ mobile operators and vendors from all over the globe. I advise on the strategic direction and development of the Strategic, Tactical, Operational and Technical Threat Intelligence, targeting Mobile Users and Mobile Operators/Telecom Networks. GSMA T-ISAC is the only Mobile Telecommunications Industry specific ISAC, with unique insights into Telco Specific Threats like Signaling Attacks (SS7, Diameter, GTP, SIP), SIM Swap Attacks, Spyware, Surveillance, Mobile Malware, Smishing, Vishing, Rishing and more. 🥇 Recipient of the prestigious GSMA T-ISAC Individual Recognition Coin, presented during the esteemed Mobile World Conference (MWC) 2024 in Barcelona, Spain. 🥇 I had the distinction of being the first member chosen from outside Europe. I was selected from over 200 members and I represent the whole MENA region in the team. ▪ stc LinkedIn: https://lnkd.in/et2uR4_Q ▪ GSMA LinkedIn: https://lnkd.in/e8tWRXfG ▪ My LinkedIn: https://lnkd.in/efGp9GB4
➨ Leading a team of Telecom Cyber Security Experts specializing in Threat Intelligence and Offensive Security of 2G, 3G, 4G, and 5G mobile networks. My responsibilities include: ▪ Intelligence Gathering, Analysis and Connecting the Dots. ▪ Securing Signaling (SS7, Diameter, GTP, SIP), Voice, SMS/MMS, Mobile Internet (GPRS), Roaming, Interworking, SIM, Devices, Submarine Cables, and more. ▪ Investigating Signaling and Spoofing Attacks, SIM Swap, Smishing, Vishing, Fraud, Scam, Impersonation, Interception and related threats. ▪ Conducting Security Assessments and Vulnerability Analyses. ▪ Pioneering the development of Telecom Cyber Security Services and Tools. ▪ Countering Social Engineering Threats, with a focus on Social Networks like LinkedIn, Facebook and WhatsApp. ▪ Comprehensive Intelligence and Security Assessment Reports, including those tailored for C-Level Executives. ➨ My engagement with GSMA includes: ▪ Governance Team Member of GSMA T-ISAC (Telecommunication Information Sharing and Analysis Center). I had the distinction of being the first member chosen from outside Europe. We are at the forefront of shaping the future of telecom threat intelligence sharing. ▪ Active member of GSMA Fraud and Security Group (FASG), GSMA Fraud and Security Intelligence Subgroup (FSIG) and GSMA Middle East Fraud and Security Group (MEFASG). ➨ Privileged to deliver talks at diverse forums, including: ▪ Black Hat MEA ▪ GSMA T-ISAC Summits and GT Meetings ▪ GSMA FASG, AFASG, FSIG and MEFASG Meetings ▪ Communications, Space and Technology Commission (CST), Saudi Arabia ▪ Mobile Operators in Saudi Arabia ▪ stc Group (Saudi Arabia, Bahrain and Kuwait) ➨ Honored to have received various awards and recognitions.
I was responsible for the Threat Intelligence, Vulnerability Assessment and Penetration Testing of 2G, 3G, 4G and 5G networks under Cyber Defense. That included security assessment of protocols like SS7, Diameter, GTP and SIP. I have been involved in projects like: - Signaling (SS7, Diameter, GTP) Attacks Analysis and Security Assessment for stc Group (stc KSA, stc Bahrain and stc Kuwait) and MVNO (Virgin Mobile) - Spoofing (Sender ID, Caller ID, GT) Attacks Analysis and Security Assessment - SMS Interception, Fraud, Scam, Smishing, Spam, DoS Attacks Analysis - SIM Swapping/ Hijacking Attack Analysis and Security Assessment - GSMA and 3GPP Security Guidelines and Compliance Analysis and Implementation - Network Design Vulnerabilities Assessment - 5G Threat Landscape and 5G MEC Security Analysis - 4G and 5G CPE SMS Security Analysis - Dark Web Threats Analysis - Malicious URLs/Domains Analysis - Impersonation Cases Analysis - Phishing Attacks Analysis - Ransomware Analysis Being an active member of GSMA Fraud and Security Group (FASG), I protected stc from newly discovered and upcoming cyber threats like: - Pegasus and HLR Lookups - GPRS Encryption Algorithm GEA-1 Vulnerability - FluBot Smishing Campaign - Simjacker Vulnerability - Noncompliance as Deviant Behavior Vulnerabilities - Syniverse Data Breach - LightBasin Threat I used various security tools to gather/generate intelligence and to investigate and analyze security incidents: - Huawei SmartCare CEM SEQ Analyst - Positive Technologies TVS - AdaptiveMobile Security Signaling (SS7, Diameter and GTP) Firewall - Mavenir SMS Firewall and SpamShield - Anomali ThreatStream - ZeroFOX - RiskIQ - VirusTotal - Mandiant
I led the team of SMS Firewall Experts and Engineers in RTAC (Roaming Technical Assistance Center) under Network Operations. I was responsible for OPEX of SAR 2 Million per annum, which involved Analytics, Operations, Maintenance, Performance, Optimization, Reporting, Auditing, Customer Experience (CEX), Business Continuity / Disaster Recovery (Contingency Plans), BPM (Business Process Management), Cyber Security and Complaints Management of the SMS Firewall platform. I also supported in Planning, Design, Implementation, Integration and Testing of the NewNet Lithium SMS Firewall platform. I advised Wholesale, Enterprise and Consumer Business Units on SMS business. Based on the blocking strategies we developed, Wholesale and Enterprise Business Units were able to multifold SMS Revenue. In addition to that, I helped Consumer, Regulatory and Technology Special Requests (TSR) Business Units to be Compliant with Telecom Regulatory Authority (CITC) and Ministry of Interior (MOI) requirements. I advised Cyber Security and Revenue Assurance departments on Fraud and Scam SMS. I also supported in Budgeting (CAPEX/OPEX), Vendor Management (Procurement) and Resource Hiring (HR). My responsibilities also included developing my team by guiding, mentoring and training my team members, assigning responsibilities and tasks, managing workload and paving a culture to bring out the innovation and creativity. • We Blocked more than 1 Trillion spam SMS over the course of 9 years. • We detected, blocked and reported highly sophisticated SMS Fraud cases. • We took care of highly sensitive and confidential data for 9+ years without a single breach, incident or compromise. • We developed first of its kind SMS Firewall Reporting module to harness the power of SMS Firewall generated data. • We developed first of its kind SMS Firewall Handbook. For more details on my initiatives and accomplishments, plz refer to the "Projects" section below.
As a Subject Matter Expert (SME) in Safeguarding Future Networks & Emerging Technologies, a Global Knowledge Community by the Global Cybersecurity Forum (GCF), I have contributed to key research and publications, including the whitepaper “Silencing the Voice Imposters” and the flagship report “The Threat in Signals.” My role involves ongoing research and the development of further publications to advance our understanding and security of Future Networks & Emerging Technologies. Global Cybersecurity Forum (GCF) Intro: https://youtu.be/2ErWR0Rkllw?si=o4RxE6_xRXepMBeY
Developing the World's First SIM Cloning Detection Solution.
Guidance and Charity - The focus of The Clear Evidence project is Human. The aim is to spread wisdom and help people in need. Each and every content has been handpicked and has been categorized for easy navigation and reference. You can subscribe to receive notifications about the new posts using various methods present at the bottom of every page. Any feedback to help grow this project is highly appreciated. Observe, Reflect, Be Wise.