Security Engineer / Architect

Introduction:

IT Security and Risk Manager with 7+ years of experience in risk management, IT security consulting, audit, and governance. Expertise in performing security assessments, ISO 27001 compliance, IAM system integration, and security architecture design. Managed ISMS implementation, conducted security audits, and oversaw incident response planning. Led IAM implementations, defining security policies, access controls, and compliance frameworks. Provided consultancy for disaster recovery, business continuity, and regulatory compliance in critical infrastructure. Delivered IT security architecture reviews, risk assessments, and GRC strategies for financial and corporate clients. Experience in SOC operations, vulnerability assessments, and security policy enforcement. Specialized in security frameworks, cloud security, and regulatory compliance. Adept at identifying risks, implementing mitigation controls, and optimizing IT security workflows. Passionate about cybersecurity innovation and ensuring organizational resilience.

Responsibilities:

• Risk assessments, security audits, and ISO 27001 consultancy
• Identity and Access Management (IAM) integration and governance
• Security architecture design and compliance framework implementation
• Incident management, disaster recovery, and business continuity planning
• Security operations, vulnerability assessments, and risk mitigation strategies
• Governance, Risk, and Compliance (GRC) implementation and oversight
• Regulatory compliance for financial and critical infrastructure sectors
• SOC operations, security monitoring, and access control policies
• ITGC, SOX, and compliance testing for enterprise security controls
• Cloud security assessments, policy enforcement, and security best practices