Welcome to my profile !
Securing your business, achieving a security certification for your company, or answering a security questionnaire should not be cumbersome and painful exercises.
A certified senior Governance, Risk, and Compliance consultant and a virtual CISO, specialized in consulting for the implementation and operation of security frameworks ISO 27001, PCI-DSS, SOC2, IEC 62443, NCA, CST, and NIST CSF with a proven record of successful certification projects, as well as solid experience and expertise in data privacy laws (GDPR, HIPAA, CCPA).
I am fluent in English (graduate of an American university) and Arabic.
Some facts to support your decision: ✅ Constant Top-Rated status
✅ Many completed projects
✅ Supporting all time zones (USA, Europe, Middle East, Australia)
✅ Long-term engagements
✅ 17 years of experience
✅ Professional certifications (ISO 27001:2013 Lead Implementer, ISO 27005 Risk Manager, as well as CISSP, CISA, PMP, ITILv3, and DPO)
Some of the services I offer:
✅ Information security management strategy, assessments, action plan,
✅ Participating in calls during client or vendor engagements, representing the company's Security team,
✅ Security framework implementation and certification readiness (ISO 27001, SOC 2, NIST CSF, PCI-DSS)
✅ Industrial Cyber Security standards audit and assessment and readiness (IEC 62443)
✅ Data privacy assessments and readiness (GDPR, ISO 27701, CCPA)
✅ Part-time DPO
✅ Risk assessment, management, treatment plan, remediation tracking ✅ Answering and filling security assessment questionnaires
✅ Information security policy and procedure creation/update/review
✅ Cyber Security plans and roadmaps ✅ Unique, company-specific tasks
✅ Internal IT and Cyber Security audit, gap assessments
✅ Filling security and compliance questionnaires
✅ Consulting
Thank you for checking my profile!
Ps: Silicon Valley and US-based references are available upon request.More...