Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Work Background
Head | Information Technology and Cybersecurity Governance and Compliance
Confidential (Banking)Head | Information Technology and Cybersecurity Governance and Compliance
Sep. 2024Establish and maintain an IT governance framework to ensure alignment of IT strategy with the bank's business objectives. Create, implement, and monitor IT policies and procedures to ensure compliance with regulatory requirements and industry standards. Identify, assess, and mitigate IT-related risks, including cybersecurity threats, data breaches, and operational risks. Ensure compliance with relevant laws, regulations, and standards (e.g., SBP Regulations,GDPR, PCI DSS). Coordinate internal and external IT audits, ensuring timely and effective responses to audit findings. Contribute to the strategic planning process by providing insights on technological trends, regulatory changes, and risk management. Develop and track key performance indicators (KPIs) to measure the effectiveness of IT governance initiatives and overall IT performance. Communicate IT governance policies and performance metrics to senior management, board members, and other stakeholders. Develop and deliver training programs to promote awareness and understanding of IT governance policies among staff. Oversee the governance of IT service providers and third-party vendors to ensure they meet the bank’s standards and regulatory requirements. Establish and maintain processes for managing IT incidents and ensuring timely resolution and communication. Ensure that IT projects are managed according to best practices and governance frameworks, providing oversight and guidance as needed. Manage the IT governance budget, ensuring efficient allocation of resources to governance activities. Continuously assess and improve the IT governance framework, processes, and policies to adapt to changing business needs and technological advancements. Work closely with other departments, such as risk management, compliance, and internal audit, to ensure a cohesive approach to governance across the bank.
Senior Manager - Information Security
SecureWithSenior Manager - Information Security
Feb. 2024 - Aug. 2024✅ Cybersecurity Strategy & Governance: Develop, implement, and oversee enterprise-wide information security policies, frameworks, and risk management programs aligned with industry standards (ISO 27001, NIST, GDPR, PCI-DSS). ✅ Security Risk Management: Conduct risk assessments, identify vulnerabilities, and implement controls to mitigate cyber threats while ensuring regulatory compliance. ✅ Incident Response & Threat Management: Lead security operations, threat intelligence, and incident response strategies to detect, analyze, and contain cyber threats. ✅ Security Advisory & Consulting: Provide strategic cybersecurity advisory to clients, conducting security assessments, maturity evaluations, and compliance audits. ✅ GRC (Governance, Risk, and Compliance): Ensure adherence to local and global regulatory requirements while integrating security best practices into business operations. ✅ Cloud & Application Security: Oversee security architecture for cloud, applications, and infrastructure to ensure secure digital transformation initiatives. ✅ Stakeholder Engagement: Collaborate with C-suite executives, IT teams, and business units to align security strategies with corporate objectives. ✅ Awareness & Training: Lead cybersecurity awareness programs to enhance the security culture within the organization and client environments. ✅ Vendor & Third-Party Risk Management: Assess and monitor security risks associated with third-party vendors, ensuring compliance with security standards. 🔹 Key Achievements & Impact: 📌 Strengthened enterprise security posture through risk-driven cybersecurity strategies. 📌 Led security transformation projects, improving regulatory compliance and resilience. 📌 Advised organizations on cloud security best practices, securing critical assets and data. 📌 Implemented automated security controls and monitoring frameworks for proactive threat management.
Team Leader | IT Infrastructure and Service Delivery (Project Management, InfoSec, Risk Management)
United Energy PakistanTeam Leader | IT Infrastructure and Service Delivery (Project Management, InfoSec, Risk Management)
Aug. 2021 - Jan. 2024Karachi, Sindh, PakistanDatacenter Design, Operations and Security IT Operations Risk Management IT Governance and Compliance (CIS Controls, ISO 27001) Information Technology Audit and Facilitation (Internal and External) Microsoft Cloud Portfolio Operations and Security Management (Azure, Office365, Sentinel, Defender) Trend Micro Platform Management (APEX, Deep Security, Cloud) Business Continuity and Disaster Recovery Management Cloud Infrastructure Operations and Security (Azure, OCI, AWS) Project Management (SAP, Oracle, BCDR, Veritas, TrendMicro, Dell EMC, HP Flex, VDI, InfoSec) VMware Portfolio Oversight and Management (VMware vCenter 8.0, VMware Horizon) NetApp Infrastructure Management ServiceDesk Management
Team Leader : IT Infrastructure and Service Delivery
United Energy PakistanTeam Leader : IT Infrastructure and Service Delivery
Aug. 2021Karachi, Sindh, Pakistan
Head | IT Operations and Information Security
Indus Motor Company LtdHead | IT Operations and Information Security
Jul. 2018 - Aug. 2021Port Qasim, KarachiProject / Program Management Management of IT Operations at Indus Motor Company. Management of IT Help Desk supporting 2000+ nodes and users. Management of Primary Data Center and DR Site. Departmental budgeting and reporting to management. Assessment and Establishment of Vendor SLA's. Price and Cost Negotiations with Vendor, Consultants and 3rd Parties. Information Security Management
Deputy Manager - IT Infrastructure | IT Operations | Information Security
Indus Motor Company LtdDeputy Manager - IT Infrastructure | IT Operations | Information Security
Mar. 2015 - Jul. 2018Port Qasim, KarachiIT Operations Management Data Center Management Corporate Governance of IT Project Management for IT and Plant Infrastructure Projects Risk Management and Mitigation Strategies Information Security and Risk Management Facilitation for Internal Information System Audit Application Security and Conformity Management Security Incident and Event Management Information Security Awareness Programs Incumbent Interviews and Assessment Vendor Selection and PNC's Management Reporting to C-Level Executives and Board Annual Departmental Budgeting and Expense Planning Vendor Procurement and Review for Approvals Company Representation at Group and Technology Conferences
Founder and CEO | Information and Cybersecurity, GRC, IT Audit, Cybersecurity Trainings
InfiniSecureFounder and CEO | Information and Cybersecurity, GRC, IT Audit, Cybersecurity Trainings
Jan. 2015Karāchi, Sindh, PakistanInformation Technology Governance, Risk and Compliance Management. Information Security Framework and Policies. Information Technology Governance Regulatory and Statuary Compliance Specialist Business Continuity and Disaster Recovery Planning. Application/API Security. Datacenter Design, Development and Security. Project Management. Information Security Awareness Trainings Cloud Infrastructure Security (IAAS, PAAS, SAAS, DAAS) Information Technology Audits and Assessments. Vulnerability Management. Forensic Analysis and Fraud Detection/Prevention. Kubernetes, Dockers Security. Network Infrastructure Security (NGFW, IPS, IDS, Web Gateways) Endpoint Detection and Response (EDR), Extended Detection and Response (XDR)
Assistant Manager - IT Infrastructure and InfoSec Advisory
KPMGAssistant Manager - IT Infrastructure and InfoSec Advisory
Jan. 2015 - Feb. 2015Karachi, PakistanInformation Security & Risk Assessments for KPMG clients. Threat Analysis and Vulnerability Assessments Business Continuity Planning and Disaster Recovery Planning Information Security Awareness Trainings and Demos Information System Audits Intrusion Detection and Prevention Strategies Data Centre, Network Infrastructure, WAN Security Reviews
Manager - Information Systems and Security
Techno ChannelsManager - Information Systems and Security
Jun. 2014 - Dec. 2014KarachiIT Operations Management Project Management Vendor Coordination and Negotiations Information Security GRC Information Security Policies and Procedures Information Security Risk Assessment and Management Information Security Management and Compliance Risk Assessment and Management
Technology Consultant - Information Systems & Security
Mazars in PakistanTechnology Consultant - Information Systems & Security
Jan. 2013 - Jun. 2014Karachi, PakistanIT Operations Management Project and Program Management Information Systems and Security Risk Management and Mitigation Strategies Business Continuity and Disaster Recovery Management Vendor Coordination and Negotiations Data Center Infrastructure Management Network Operations Management Email Infrastructure Management Compliance to Information Security Standards ISO27001 Internet Gateway and Policy Management Information Systems and Security Management Microsoft Hyper-V and VMware Infrastructure Management Facilitation of Internal Audits for IT Infrastructure and Controls Organizational Business Continuity and Disaster Recovery Management Information System, Risk and Vulnerability assessment procedures and planning. Information Security and Risk Awareness Program Information Security Policies and Procedures Drafting
Assistant Manager - Information Systems and Security
EFU Life Assurance Ltd.Assistant Manager - Information Systems and Security
Oct. 2008 - Jan. 2013Karachi, PakistanData Center Infrastructure Management Network Operations Management Email Infrastructure Management Compliance to Information Security Standards ISO27001 Internet Gateway and Policy Management Information Systems and Security Management Microsoft Hyper-V and VMware Infrastructure Management Facilitation of Internal Audits for IT Infrastructure and Controls Organizational Business Continuity and Disaster Recovery Management Information System, Risk and Vulnerability assessment procedures and planning. Information Security and Risk Awareness Program Information Security Policies and Procedures Drafting
Systems Engineer
EphluxSystems Engineer
Apr. 2008 - Oct. 2008Karachi, PakistanInfrastructure and Server Administration Networking Administration and Management Internet Gateway and Proxy Management VPN Management Backup and Recovery Management Business Continuity and Disaster Recovery Management Microsoft VSS Management Microsoft Hyper-V and VMware Management
Senior Systems and Information Security Engineer
ProtocolXSenior Systems and Information Security Engineer
May. 2005 - Dec. 2007Karachi, PakistanInfrastructure and Server Administration Networking Administration and Management Firewall and DMZ Management Help Desk Operations Management Internet Gateway and Proxy Management VPN Management Backup and Recovery Management Business Continuity and Disaster Recovery Management Microsoft VSS Management Microsoft Hyper-V and VMware Management
Senior Systems and Information Security Engineer
Playdium Corporation, PakistanSenior Systems and Information Security Engineer
Feb. 2002 - May. 2005KarachiInfrastructure and Server Administration Networking Administration and Management Internet Gateway and Proxy Management VPN Management Backup and Recovery Management Business Continuity and Disaster Recovery Management Microsoft VSS Management Microsoft Hyper-V and VMware Management
Confidential (Banking)
Confidential
Intch is a Professional Networking App for the Future of Work
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
📝
Get Recommended to New Customers
👋
Connect with Like-Minded People
💸
Raise Capital
🚀
Find a side project
😎
Reach Top Niche Experts
Find Jobs on a Hidden Market
💼
Find a Perfect Co-Founder
🙌
Find a Trusted Mentor
🤝
Hire Top Global Professionals
See more people like Mirza on Intch
IT
1026939 people
19
CEO @ Al Intisar Solutions (Private) Limited
21
Unit Head HR Off boardings and Services @ Faysal Bank
17
SQA Engineer @ Shyld AI
ITProject Manager
273551 people
19
CEO @ Al Intisar Solutions (Private) Limited
21
UX Designer & Researcher
16
Principal Software Engineer