Fahad Al-Summan
Cybersecurity Specialist
I build secure systems and automate cybersecurity workflows. Currently creating innovative security solutions at DYNEX Arabia, with expertise in penetration testing, governance frameworks, and compliance automation for Saudi Arabia's evolving cybersecurity landscape.
.png&w=3840&q=75)
> Experience
Building secure systems and helping organizations navigate the complex landscape of cybersecurity compliance
Cyber Security Specialist
- ▹Initiated and led the creation of "Security Edge," an innovative cybersecurity and compliance management platform that automated all procedures related to risk assessment, GRC, incident response, and employee awareness
- ▹Transformed manual cybersecurity tasks into automated digital workflows, improving accuracy, audit readiness, and compliance tracking across NCA ECC, ARAMCO CCC, and PDPL frameworks
- ▹Mitigated two critical risks by executing remediation actions and verifying control effectiveness through ServiceNow workflows
- ▹Enforced MFA and deployed key defense mechanisms (WAF, IDS/IPS, SPF)
Technologies:
Frameworks & Standards:
Cyber Security Consultant
- ▹Performed offensive security/penetration testing engagements to emulate real-world attacker techniques and validate defensive controls
- ▹Executed end-to-end testing: reconnaissance, vulnerability discovery, exploitation, post-exploitation validation, and cleanup
- ▹Discovered and validated critical vulnerabilities, produced reproducible PoCs, and prioritized fixes based on business impact
- ▹Produced clear, actionable technical and executive reports with remediation steps and risk ratings aligned to NCA and PDPL requirements
Technologies:
Frameworks & Standards:
Cyber Security Analyst
- ▹Monitored and triaged SIEM and IDS/IPS alerts, reducing incident response time by 30%
- ▹Executed vulnerability assessments and penetration testing to uncover and mitigate threats
- ▹Investigated 3+ high-severity security incidents in coordination with SOC2 and DevOps teams
- ▹Resolved 15+ security tickets monthly, ensuring SLA compliance
Technologies:
Frameworks & Standards:
Info Security Analyst Associate
- ▹Performed vulnerability scans using Nessus and maintained risk registers
- ▹Integrated job portal APIs to automate job listing and candidate workflows
- ▹Documented incident tickets, timelines, and root cause analyses
- ▹Automated security scans cut manual effort by 40%
Technologies:
Frameworks & Standards:
PHP Developer
- ▹Developed a secure, user-friendly CMS platform with file upload features
- ▹Integrated a job portal API to automate job listings and candidate management
- ▹Conducted post-launch security testing and patched discovered vulnerabilities
Technologies:
Frameworks & Standards:
Systems Analyst Intern
- ▹Gathered and documented user requirements through interviews and surveys
- ▹Contributed to improving the Student Registration portal speed by 35%
Technologies:
Frameworks & Standards:
> Certifications
Industry-recognized credentials demonstrating expertise in offensive security, defensive strategies, and governance frameworks
eWPTX
eLearnSecurity
Web Application Penetration Tester eXtreme
eJPT
eLearnSecurity
Junior Penetration Tester
ISC2 CC
ISC2
Certified in Cybersecurity
> Featured Projects
Building innovative security solutions that automate compliance and strengthen cybersecurity posture
Security Edge
Comprehensive GRC & Risk Management Platform
In-house cybersecurity platform automating risk assessment, GRC workflows, incident response, and employee awareness training. Built to streamline compliance with NCA ECC and PDPL requirements for Saudi organizations.
▹Key Features
▹Technology Stack
Want to see more of my work?
> Get In Touch
I'm always open to discussing cybersecurity projects, consulting opportunities, or just having a chat about security. Feel free to reach out!
Direct Contact
Secure Communication
Need to send sensitive information?