Riyadh, Saudi Arabia
I am an accomplished technology and cybersecurity executive with over a decade of leadership experience driving organizations to grow, secure, and innovate at scale. Currently, I serve as CISO, leading enterprise cybersecurity, security operations, and resilience initiatives. My extensive background in IT leadership, digital transformation, and large-scale national programs enables me to effectively blend the roles of builder and protector throughout the technology lifecycle. I am committed to aligning technology with business strategy, championing a "secure by default" philosophy, and leading the responsible integration of AI. My passion fuels my drive to build robust security frameworks that support organizational success.
• Defined and executed an enterprise-wide cybersecurity strategy, ensuring alignment with broader business objectives, executive priorities, and compliance with relevant regulatory requirements and industry standards. • Provided strategic oversight and leadership for cybersecurity operations, including teams of the Security Operations Center (SOC), Incident Response (IR), and Threat Intelligence functions; ensured effective coordination across teams to rapidly respond to incidents, mitigate business impact, and drive continuous improvement in cybersecurity posture. • Revise and enhance cybersecurity functions by revamping technology and optimizing processes, resulting in significant cost savings and improved operational efficiency.
• Led cybersecurity consulting projects from inception to completion, aligning with client objectives and industry best practices. • Provided expert guidance on cybersecurity strategy, risk management, and regulatory compliance to senior stakeholders. • Designed and implemented tailored security architectures, frameworks, and policies to address evolving cyber threats. • Managed cross-functional teams, fostering collaboration, professional growth, and high-quality delivery.
• Spearheaded the development of proactive roadmaps to address evolving threats and regulatory demands in the digital landscape. • Ensured the secure transition, governance, and compliance of critical data assets in digital projects. • Integrated secure-by-design principles into modernization efforts, facilitating seamless adoption of emerging technologies.
• Managed IT projects and digital platforms, ensuring alignment with organizational goals. • Enhanced security protocols to comply with cybersecurity laws, increasing system reliability by 25%. • Optimized operational processes and vendor relationships to align with EXPRO requirements.
• Developed and led the digital transformation strategy, ensuring alignment with organizational goals. • Engaged with senior leadership and key stakeholders to gain support for digital initiatives. • Fostered a culture of innovation and managed organizational change to ensure smooth transitions and minimal disruption. • Identified and evaluated emerging technologies, overseeing their implementation and integration. • Managed the budget and allocated resources effectively to support digital transformation projects. • Established key performance indicators (KPIs) to measure the success of digital initiatives.
• Established and led the Cybersecurity department within the agency, defining roles and responsibilities for all cybersecurity-related projects and departmental activities. • Provided expert guidance and support to the Undersecretary and over 30 departments on cybersecurity matters, ensuring alignment with National Cybersecurity Authority (NCA) frameworks and standards. • Developed and enhanced physical security policies to align with cybersecurity procedures and regulations, ensuring comprehensive security coverage. • Conducted regular security assessments and vulnerability testing to identify and mitigate risks proactively. • Collaborated with cross-functional teams to integrate cybersecurity best practices into all business processes. • Developed and delivered cybersecurity training programs to increase awareness and compliance among employees. • Implemented advanced threat detection and response solutions, enhancing the agency’s ability to defend against cyber threats.