R

Rulisa Alain

CEO

Kigali City, Rwanda3 yrs 1 mo experience
Most Likely To Switch

Key Highlights

  • Led successful compliance initiatives for key security standards.
  • Pivotal role in organizational mergers as Information Security Change Champion.
  • Passionate about bridging cybersecurity with predictive analytics and AI.
Stackforce AI infers this person is a Cybersecurity Expert with a focus on Compliance and Data Protection in the Insurance sector.

Contact

LinkedIn

Skills

Core Skills

Information Security ManagementData ProtectionCompliance ManagementInformation SecurityRisk ManagementInformation Security Engineering

Other Skills

Vulnerability AssessmentsPenetration TestingData Protection Impact AssessmentsCompliance with data protection lawsCybersecurity awareness trainingISO 27001ISO 27701PCI DSSCybersecurity policiesIncident responseUser access reviewsSecurity Operations Center (SOC)Network monitoringISO 27001 complianceweb exploitation

About

With a career spanning the banking, insurance, and tech startup industries, I bring a well-rounded, practical, and forward-thinking approach to cybersecurity and data protection. Currently, I serve as an Information Security Manager and Data Protection Officer in the insurance sector, while also acting as a Senior Cybersecurity Consultant for a dynamic startup tech company. Armed with certifications like CEH, ISO 27001 Lead Implementer, and CRTP, I specialize in: • Leading and supervising Vulnerability Assessments and Penetration Testing (VAPT) • Advising and implementing Security Operations Centers (SOC) • Ensuring compliance with ISO 27001, ISO 27701, PCI DSS, DPP Law, GDPR, PTES • Conducting threat hunting, incident response drills, cybersecurity awareness, and privacy training • Leveraging tools, analytics, and trends to predict attacks and identify anomalies using AI and predictive models 🚀 What drives me? I’m passionate about building strong, resilient cybersecurity foundations using international best practices. My current mission is to bridge the gap between cybersecurity, predictive analytics, and AI, transforming how we detect, understand, and respond to cyber threats—before they happen. 🏆 Notable Achievements • Successfully led compliance initiatives for ISO 27001, ISO 27701, PCI DSS, DPP LAW and other key standards • Played a pivotal role in organizational mergers, acting as the Information Security Change Champion I’m known for my clear communication, strategic thinking, and ability to translate complex security needs into effective, actionable solutions. Let’s connect—whether you’re building your security strategy, improving compliance, or just passionate about where cybersecurity is heading next.

Experience

Sonarwa general insurance

2 roles

IT SECURITY Manager & DPO

Jan 2025Present · 1 yr 2 mos

  • As IT Security Manager & Data Protection Officer (DPO), I am committed to safeguarding our organization's digital assets, ensuring compliance with data protection laws, and fostering a secure operational environment.
  • Key Responsibilities:
  • Conduct comprehensive user access reviews to maintain appropriate access levels and prevent unauthorized access.
  • Oversee endpoint security by implementing robust measures to protect against malware and emerging cyber threats.
  • Perform Data Protection Impact Assessments (DPIA) to evaluate and mitigate privacy risks.
  • Ensure compliance with Rwanda data protection law and other applicable regulations, embedding privacy-by-design principles.
  • Maintain cyber hygiene standards across systems and manage the asset register to monitor and secure IT assets effectively.
  • Develop and lead data protection awareness programs, providing training to all staff on legal obligations and best practices.
  • Serve as the primary intermediary with supervisory authorities on data protection and privacy matters.
  • Conduct regular vulnerability assessments, manage remediation efforts, and produce detailed reports for stakeholders.
  • Deliver engaging cybersecurity and data protection awareness training to employees, reducing risks linked to human error.
  • Review and enforce security policies, ensuring alignment with industry standards and regulatory requirements.
  • Conduct Vulnerability Assessment and Penetration Testing (VAPT) to identify and mitigate security weaknesses.
  • Lead incident response initiatives, coordinating mock drills to ensure organizational readiness for cyber incidents.
Vulnerability AssessmentsPenetration TestingData Protection Impact AssessmentsCompliance with data protection lawsCybersecurity awareness trainingInformation Security Management+1

IT Security Manager

Apr 2024Jan 2025 · 9 mos

  • As an IT Security Manager at SONARWA GENERAL INSURANCE, I am dedicated to safeguarding our organization's digital assets and ensuring a secure operational environment. My primary focus is on identifying and mitigating security risks to protect sensitive information and maintain regulatory compliance.
  • Key Responsibilities:
  • Conduct comprehensive user access reviews to ensure appropriate access levels and prevent unauthorized access.
  • Manage endpoint security, implementing robust measures to protect against malware and other threats.
  • Maintain the cyber hygiene of our systems and manage the asset register to track and secure all IT assets.
  • Perform regular vulnerability assessments, manage vulnerability remediation, and generate detailed reports for stakeholders.
  • Deliver engaging cybersecurity awareness training to employees, promoting best practices and reducing the risk of human error.
  • Review and implement security policies to align with industry standards and regulatory requirements.
  • Monitor network traffic and security alerts to detect and respond to potential threats.
  • Conduct VAPT (Vulnerability Assessment and Penetration Testing) to identify and address security weaknesses.
  • Lead incident response efforts and conduct mock drills to ensure preparedness for potential cyber incidents.
Vulnerability AssessmentsPenetration TestingCybersecurity policiesIncident responseUser access reviewsInformation Security Management+1

Equity bank rwanda

Information Security Engineer

Feb 2023Apr 2024 · 1 yr 2 mos · Kigali City, Rwanda · On-site

  • As an Information Security Engineer at EQUITY BANK RWANDA, I was committed to protecting the bank's information assets and ensuring compliance with industry regulations. My role involved implementing robust security measures to prevent data breaches and mitigate risks associated with cyber threats.
  • Key Responsibilities:
  • Monitored and maintained the Security Operations Center (SOC), ensuring timely detection and response to security incidents.
  • Conducted regular vulnerability assessments, managed remediation efforts, and generated detailed reports for stakeholders.
  • Implemented and enforced cybersecurity policies and procedures in alignment with industry standards and regulatory requirements.
  • Monitored network traffic and security alerts, identifying and responding to potential threats in real time.
  • Assisted in obtaining and maintaining certifications such as ISO 27001 and PCI-DSS, ensuring compliance with data protection regulations.
  • Utilized advanced cybersecurity tools and technologies to enhance the bank's security posture.
  • With a strong foundation in information security and a commitment to protecting critical assets, I consistently sought to enhance the bank's security measures and stay ahead of emerging threats. My experience at EQUITY BANK RWANDA has equipped me with the skills and knowledge needed to excel in the dynamic field of cybersecurity.
Security Operations Center (SOC)Vulnerability assessmentsCybersecurity policiesNetwork monitoringISO 27001 complianceInformation Security Engineering+1

Education

adventist university of central africa

bachelor's degree — Information Technology

Sep 2018Nov 2023

Stackforce found 100+ more professionals with Information Security Management & Data Protection

Explore similar profiles based on matching skills and experience

Sandeep D Menon

Sandeep D Menon

Senior Security Manager I

at McKinsey & Company

London, United Kingdom9 yrs 3 mos exp
Cloud SecurityCyber Risk ManagementCybersecurityGRCInformation Security Management
Bhavana Maishale

Bhavana Maishale

Security Professional

at IBM

Bengaluru, India9 yrs 1 mo exp
Liridona Cani Raza

Liridona Cani Raza

Business Information Security & Data Protection Officer

at Lufthansa Industry Solutions

Albania10 yrs 3 mos exp
Information SecurityRisk ManagementUniversity Teaching
Sushmita Shrivastava

Sushmita Shrivastava

Regional Data Privacy Officer - Middle East and Africa

at Cigna Healthcare

Dubai, United Arab Emirates9 yrs 7 mos exp
Business DevelopmentData Protection Impact AssessmentGDPR CompliancePrivacy CompliancePrivacy Impact Assessments
Mukesh Kumar

Mukesh Kumar

Head of Information Security

at Confidential

Dubai, United Arab Emirates13 yrs 10 mos exp
Cloud SecurityCyber Security RiskInformation Security Management
Sandeep Agarwal

Sandeep Agarwal

Director, CTO - Security, India and South Asia

at Cisco

Mumbai, India20 yrs 3 mos exp
Vijayashankar Nagarajarao

Vijayashankar Nagarajarao

Chair Professor FDPPI's AI Chair

at FDPPI

Bengaluru, India52 yrs 4 mos exp
Data ProtectionCyber LawCyber Law Education
MS

Murali Sundaramurthy

Head of Technology Risk and Security Compliance, APAC

at Coinbase

Bengaluru, India21 yrs exp
ComplianceIT GovernanceInformation SecurityInformation Security GovernanceOperational Risk Management