About Me
Career Summary and Expertise
A seasoned Information Security Governance, Risk, and Compliance (GRC) professional with over 20 years of experience across BFSI, Petrochemical, Utility, and Telecom sectors. My expertise lies in designing and executing comprehensive cybersecurity programs, threat analysis, risk mitigation strategies, Information Security Management, Privacy Management, and Cybersecurity Architecture. Additionally, I bring strong proficiency in Project Management, ensuring alignment between organizational goals and security initiatives to drive measurable results.
Certifications and Regulatory Excellence
I hold globally recognized certifications, including CISSP, CISM, CRISC, RMP, PMP, CISA, PCIP, CIPT, CDPSE, CEH v8, Business Continuity (ISO 22301), ITIL v4 Foundation, ISO/IEC 27005:2022 and ISO 31000:2018. My expertise extends to compliance with international standards such as ISO/IEC 27001:2022, ISO/IEC 27002:2022, and PCI DSS, as well as Saudi-specific regulations, including the SAMA Cybersecurity Framework (CSF), NCA controls and guidelines, SDAIA, and the Personal Data Protection Law (PDPL). These credentials underpin my ability to ensure regulatory alignment and robust data privacy practices in all my engagements.
Education and Career Milestones
With both Bachelor's and Master's degrees in Cybersecurity, I have held leadership positions at renowned organizations such as Tawuniya, BUPA Arabia, Saudi National Bank, SAMBA Bank, SABIC, Gulf International Bank, and Saudi Electricity Company. My contributions have also extended to dynamic roles at Geidea, Emkan, and SAB Bank, where I led transformative initiatives in cybersecurity and compliance, elevating organizational resilience.
Education and Career Milestones
Beyond technical expertise, I have honed my Communication, Management, Leadership, Analytical, and Interpersonal skills through various professional development courses. A firm believer in giving back, I actively volunteer with The Citizens Foundation, supporting underprivileged students in Pakistan, and contribute to disaster relief and humanitarian efforts in both KSA and Pakistan.
Professional Affiliations
I am an active member of numerous prestigious organizations, including IRM, IAPP, BCS, AIRMIC, CIISec, APM, ISACA, ISC2, PMI, IEEE, FAIR Institute, PECB, ACFE, EC-Council, ISSA, BICSI, AMACOM, KPI Institute, and OWASP Leaders. Through these affiliations, I stay at the forefront of innovation and thought leadership in cybersecurity, GRC, and risk management.
