syedtabs
About Candidate
Experienced IT Security- GRC Manager with a strong technical foundation in cybersecurity, risk management, and compliance. Proficient in designing and implementing security architectures, experienced in governance, risk management, and compliance to contribute to the success. Dedicated to enhancing organizational resilience through strategic risk assessment, robust compliance programs, and effective governance frameworks.
Expertise as an ISO 27001 Lead Auditor to ensure the highest standards of information security management. Aiming to lead comprehensive audits, identify compliance gaps, and provide actionable recommendations to enhance data protection and regulatory adherence. to support sustainable growth and operational excellence. Well-versed in regulatory requirements such as GDPR, HIPAA, and PCI DSS. Seeking a challenging role to leverage technical expertise and strategic vision in enhancing organizational security posture and resilience.
Location
Education
Information System
Electronics and Communication
Work & Experience
- Creating business value & Managing vendor relationship - Developing & Establishing IT policies, strategies, and standards - Conduct comprehensive security assessments of client’s requirement and advice - Enhancing cybersecurity & Ensuring data accessibility by Performing security audits - Overseeing system reliability Ensuring that technology supports and improves business - Assist businesses in adhering to national and international data regulations and policies - Maintaining Data Sensitivity for Public, Private, Confidential and Restricted data. - Approves access rights and oversees the proper usage of the data. - Conducts internal audit to assure classification and adherence to governance policies.
- Investigate suspected security incidents in accordance with the security standard - Work with external stakeholders, internal auditors and Accreditor as required. - Incident investigations and execute department policies as needed. - Reframe Data Governance and corporate data standards as needed - Address and resolve project risks, securing resources to efficiently complete deliverables. - Deployed automatic updates and mentor employees on cyber security best practices, which - reduced risk of attacks by 27% - Manage security team members and all other information security personnel - Provide information security awareness training to organization personnel - Aligning of IT equipment according to industry standard
- Work with internal stakeholders to promote and improve information security. - provide security advice on procurements, projects. - Assist businesses in adhering to national and international data regulations and policies - Work closely with IT, Information Security and stakeholders, delivering progress updates. - Help business to understand and achieve the benefits of governing and managing their data. - Develop and oversee Enterprise Data Strategy and Governance Implementation Plan. - Planning and assisting the Project Plan and scope to align with business expectations. - Provide line management for the Information Governance Officers - Arranging staff training sessions and enforce IT processes with cyber security standards. - Providing training and maintaining a professional demeanor with clients and colleagues.
- Drafted incident response plans and updated technical manuals to enhance system - Assist in the implementation and use of technology and data governance tools to enhance data maturity and ensure compliance. - Develop and deliver Information Security standards. - Ensure system and information security across the enterprise. - Implement, upgrades, improvements information security environment - Monitoring and maintain SolarWinds cyber security & Aviation Information Security - Implementing procedures and addressing non-compliance to IT security - Periodically audits location logic to ensure compliance to policies, and procedures. - State-of-art aviation center with world class IT redundancy & Information Security
