Mar 2021 – Aug 2022 · 1 yr 5 mos · Dubai, United Arab Emirates · On-site

• Led Information Security Governance and strengthened compliance posture for a federal entity.
• Enhanced security controls and developed integrated incident response and awareness programs.
• Directed implementation of advanced security tools and frameworks to protect critical assets.
• Received Certificate of Appreciation for outstanding contributions to service excellence.

Nov 2019 – Feb 2021 · 1 yr 3 mos · Abu dhbai · On-site

• Ensured compliance with FANR, SIA, and ISO 27001 requirements for nuclear sector operations.
• Directed enterprise-wide information security risk management activities and closure of all audit findings.
• Led Information Security Awareness Programs for ENEC and NAWAH, strengthening the culture of security.
• Supported cloud adoption strategy during COVID-19 to ensure operational continuity.

Apr 2017 – Nov 2019 · 2 yrs 7 mos · Dubai, United Arab Emirates · On-site

• Managed the cybersecurity portfolio for 22 group entities across the UAE, ensuring consistent governance, compliance, and risk management practices.
• Established enterprise-wide information security governance frameworks and deployed risk-based controls aligned with ISO 27001 and business needs.
• Conducted security audits and compliance reviews, achieving successful ISO 27001 certification and strengthening regulatory posture.
• Enhanced cyber resilience by streamlining vulnerability management, incident response, and awareness programs across diverse business units.
• Partnered with executive management and IT leadership to align security strategy with group-level business objectives.

Dec 2015 – Mar 2017 · 1 yr 3 mos

• Delivered strategic cybersecurity consulting for government entities and large enterprises across UAE, Qatar, Oman, Jordan, and Hungary, covering sectors such as banking, oil & gas, airports, real estate, and ministries.
• Implemented endpoint security, vulnerability management, and risk assessment frameworks, strengthening client cyber resilience.
• Directed and supported ISO 27001, ISO 22301, NESA, ISR certification and security program rollouts for multiple organizations, ensuring regulatory and audit readiness.
• Conducted security assessments and compliance engagements for critical infrastructure clients, aligning controls with international standards and regional regulations.
• Provided advisory on incident response planning and governance frameworks, enabling enterprises to improve operational readiness against emerging threats.

Oct 2014 – Nov 2015 · 1 yr 1 mo

Aug 2013 – Sep 2014 · 1 yr 1 mo

Mar 2013 – Jul 2013 · 4 mos · New Delhi · On-site

• Managed information security governance and compliance for the Aadhaar project (India’s national identity program), ensuring alignment with security standards and regulatory frameworks.
• Conducted risk assessments, policy reviews, and compliance monitoring to safeguard sensitive citizen data.
• Collaborated with stakeholders to design and implement information security controls that supported the scale and sensitivity of the Aadhaar ecosystem.

Mar 2012 – Feb 2013 · 11 mos · Mumbai, Maharashtra, India · On-site

• Implemented ISO 27001 and ISO 22301 frameworks for a large multinational corporation in India, strengthening information security and business continuity governance.
• Conducted compliance audits for MNCs against ISO 27001 requirements, identifying gaps and recommending remediation plans.
• Delivered security assessments and contributed to risk management programs, supporting enterprise-wide compliance and resilience initiatives.