Cyber Leader, Senior Manager, Cyber Risk and Strategy
Deloitte; CISO Advisory - Cybersecurity Strategy and Technology Consultancy Services 3. Voith Group
Keywords
Skills
A seasoned and certified CISO with over 15 years of experience in leading and managing information security programs and projects for various organizations. Skilled in developing and implementing security strategies, policies, standards, and best practices that align with business objectives and regulatory requirements. Experienced in conducting risk assessments, audits, compliance reviews, and security awareness training. Proficient in using various security standard and frameworks such as NIST, ISO 27001, COBIT, OWASP, etc. Skilled in leading and collaborating with diverse teams to achieve common IT security goals and mitigate risks. Certified in CCISO, CISSP, CCSP, CSSLP, CISA, CISM, CGEIT, CRISC, CDPSE, PMP. Seeking to leverage my expertise and skills to help clients achieve their security goals and protect their assets.
Project history
04/2019
-
Present
* Serving clients in horizontal and vertical integration of cybersecurity into new digital industrial
products, processes, and technologies such as Industry 4.0, Industrial Internet of Thing (IIoT),
Operational Technologies (OT), Critical Infrastructures, Cloud, and Business Blockchain.
* CISO Advisory - Cybersecurity Strategy and Technology Consultancy Services
3. Voith Group , Heidenheim, Germany. April, 2017 - March, 2019
Designation: Head of Cyber Security & Privacy (CISO) Reports to the Board of Management
* Offering internal and external digital transformation strategy consultancy advice and
practical assistance on cybersecurity strategy, risk, and control matters throughout the
organization and promoting the commercial advantages of managing Cybersecurity, Risks,
Privacy, & Compliance more efficiently and effectively.
* Directly contribute to the strategic decision making related to enterprise, group division,
digital/4.0 product, and IIoT platform security strategies to develop more robust and secure
business capabilities.
* Accountable for the end-to-end Information Security, Governance and Risk Management
including Compliance, Education and Training.
products, processes, and technologies such as Industry 4.0, Industrial Internet of Thing (IIoT),
Operational Technologies (OT), Critical Infrastructures, Cloud, and Business Blockchain.
* CISO Advisory - Cybersecurity Strategy and Technology Consultancy Services
3. Voith Group , Heidenheim, Germany. April, 2017 - March, 2019
Designation: Head of Cyber Security & Privacy (CISO) Reports to the Board of Management
* Offering internal and external digital transformation strategy consultancy advice and
practical assistance on cybersecurity strategy, risk, and control matters throughout the
organization and promoting the commercial advantages of managing Cybersecurity, Risks,
Privacy, & Compliance more efficiently and effectively.
* Directly contribute to the strategic decision making related to enterprise, group division,
digital/4.0 product, and IIoT platform security strategies to develop more robust and secure
business capabilities.
* Accountable for the end-to-end Information Security, Governance and Risk Management
including Compliance, Education and Training.
12/2014
-
03/2017
Product and Solution Security Officer
Siemens AG
* Manage and drive the implementation of the internal business and development processes
in compliance with IT security standards, regulatory requirements, and where necessary,
with reference to client requirements.
* Creation and support of Security, Threats, Risk, and Vulnerabilities assessment framework; in
compliance with the Enterprise Risk Management (ERM), Risk & Internal Control (RIC), Asset
Classification & Protection (ACP), and other related business processes.
in compliance with IT security standards, regulatory requirements, and where necessary,
with reference to client requirements.
* Creation and support of Security, Threats, Risk, and Vulnerabilities assessment framework; in
compliance with the Enterprise Risk Management (ERM), Risk & Internal Control (RIC), Asset
Classification & Protection (ACP), and other related business processes.
03/2009
-
11/2014
Information Security Researcher & Group Manager
Fraunhofer AISEC - Applied and Integrated Security
* Design, evaluate, and implement a range of effective information security services.
* Assess, Implement information security processes with strong orientation on IT risk
management and controls.
* Provide consultancy on global security regulation and compliance issues to ensure the
organizations are competitive whilst maintaining security, and privacy objectives.
* Assess, Implement information security processes with strong orientation on IT risk
management and controls.
* Provide consultancy on global security regulation and compliance issues to ensure the
organizations are competitive whilst maintaining security, and privacy objectives.
06/2007
-
02/2009
Security Engineer, Application
Robert Bosch GmbH
* Project: Control and Construction of Bayesian Network for Automobiles
11/2004
-
05/2007
Scientific Research Assistant
University of Braunschweig
* Network, Communication, Software, and Semiconductor Technologies
Local Availability
Open to travel worldwide
100%
