An information security professional with 14+ years of experience of managing high value information assets. Possessing skills enabling identification of business impacts, using risk management techniques such as qualitative risk assessment, quantitative risk assessment, Delphi risk analysis, tailored towards applicable industry framework such as ISO 27001/2/5, ISO31000, OWASP SKF, PCI DSS, ISM, IST, ISF, TOGAF, NIST, COSO, COBiT, FMECA, BowTie, Risk IT, GDPR (DPIA), OCTAVE etc.].
Equally with experience required for conducting vulnerability management, auditing information assets, towards meeting
regulatory requirement and achieving clients and stakeholders needs and expectations.
Most importantly, with experience in working with clients towards finding exploring ways and finding the best solution for improving the bottom line.