Umar Khalid

Umar Khalid Email and Phone Number

Chief Information Security Officer | Architecture | Engineering | GRC | Privacy | FinTech | CISSP | CISA | CISM | CRISC | CDPSE | ITILv3 | ISO 27001:2013 @ MobilityOne Sdn. Bhd.
Umar Khalid's Location
Lahore District, Punjab, Pakistan, Pakistan
About Umar Khalid

Incisive, quality-driven cybersecurity and privacy professional offering 13 years of expertise in delivering robust security programs and services to safeguard government and private enterprises at every touchpoint. A visionary who translates ever-evolving cyber risks into innovative business roadmaps while continually honing the entity’s security maturity and excelling at synergizing people, processes & technology around proactive defenses.CORE COMPETENCIES- Proactive Leadership & Problem Solving- Teamwork, Quality Assurance & Maturity- Security Architecture & Engineering- Identity & Access Management- SecOps, VAPT (On-premise/Cloud)- Governance, Risk, Compliance (ISO 27K, SOC2, PCI, GDPR)- Network Security- Program Management- Data Privacy & Security- Secure SDLC, DevOps & Security integration- Cloud Security- Incident ManagementTECHNICAL SKILLS- MS Office, Windows, RHEL, CentOS, AWS, Azure, GCP, Alibaba Cloud, JumpCloud, Google Workspace- Data Classification, DLP, SIEM, EDR, NGFWs, Web/Email Security- IAM & PAM- Threat Modeling, VAPT- ISO27k, ISO27701, HIPAA, GDPR, SOC2, PCI DSS, CIS v8, OWASP Top 10, ITIL v3, PayNet, SWIFT, Bank Negara Malaysia- Application & Network Security TestingACCOMPLISHMENTS- Led 6 teams and effectively implemented a proactive incident management program within record 6-month duration.- DPIAs for 8+ profitable projects.- Completely & efficiently managed external audits (SOC, ISO, HIPAA, GDPR) for 10+ customers with 100% passing rate (SP360).- Made, reformed and employed actionable security best practices for customers’ on-premise and cloud infrastructures counting AWS, Azure, GCP, Office365, JumpCloud and Google Workspace resulting in 95% visibility and improved security posture, consequently, enabling the customers to pitch their newly ripened security program as a valuable sales enablement tool (SP360).- Successfully created and implemented an internal due care and due diligence client assurance audit program within Afiniti while enhancing the current security posture visibility of Afiniti by 95% to CSO.- Efficiently identified vulnerabilities with 95% accuracy, which enabled internal application development team at WASL UAE to mitigate critical risks within Software Development Lifecycle.- Provided centralized, comprehensive dashboards and reporting to Abu Dhabi Municipality UAE’s management against the software risk in an organization. - Aided Saudi Aramco’s management in translating the business requirements into functional technical policies within DLP system with 100% success.

Umar Khalid's Current Company Details
MobilityOne Sdn. Bhd.

Mobilityone Sdn. Bhd.

View
Chief Information Security Officer | Architecture | Engineering | GRC | Privacy | FinTech | CISSP | CISA | CISM | CRISC | CDPSE | ITILv3 | ISO 27001:2013
Umar Khalid Work Experience Details
  • Mobilityone Sdn. Bhd.
    Chief Information Security Officer
    Mobilityone Sdn. Bhd. Jul 2022 - Present
    Bukit Jalil, Kuala Lumpur, My
    ✓ Lead Compliance, Certification & Audit activities pertaining to Information Security.✓ Develop and implement a strategic, long-term information security strategy and roadmap to ensure that MobilityOne’s information services and assets are adequately protected as per company’s risk appetite.✓ Identify, evaluate and report on information security risks, practices and projects to the C-Suite and the GRC Steering Committee, and provide expertise on security standards, regulations and best practices (e.g., SOC II, PCI, ISO 27001, NIST, CIS, Bank Negara Malaysia etc.).✓ Develop, mentor, and manage a high performing staff of information security professionals.✓ Ensure that the security management program is in compliance with applicable laws, regulations, and contractual requirements.✓ Act as the champion for the enterprise information security program and foster a security-aware culture.✓ Oversee the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.✓ Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and regulations.✓ Build and oversee enterprise-wide strategic and tactical programs for:• Incident and Breach Management, IAM, Architecture and Engineering, Operations, Assessments, GRC, DevSecOps✓ Develop business metrics to measure the effectiveness of the security management program✓ Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action to maintain acceptable cyber risk posture.✓ Liaise with the law enforcement and other advisory bodies as applicable by Bank Negara Malaysia to ensure that the organization maintains a strong security posture.✓ Oversee and lead the creation, communication and implementation of a process for managing vendor risk and other third-party risk.
    View
  • Securepoint 360 (12 Tech Llc.)
    Security Risk Manager
    Securepoint 360 (12 Tech Llc.) Aug 2021 - Jul 2022
    - Planning, developing, executing, and tracking the effectiveness of security measures to protect information, computer systems, and network and cloud infrastructure across customers.- Designing security strategies and engineering comprehensive cybersecurity architectures for on-premise and/or cloud environments.- Performing manual penetration tests for web applications, servers, networks, and cloud environments.- Performing security reviews for cloud services, including AWS, Azure, GCP, Office365, JumpCloud and Google Workspace etc.- Researching infrastructure and architecture weaknesses and finding ways to counter them.- Identifying, defining, and documenting security requirements and recommending solutions.- Installing/configuring solutions that monitor systems and networks for security breaches and intrusions.- Monitoring systems for irregular behavior and setting up preventive measures.- Educating and training customers on information security “best practices”, as well as implementation in customer’s environment.- Performing incident response activities to support and coordinate efforts during ongoing cybersecurity incidents.- Finding cost-effective solutions to cybersecurity problems.- Performing risk assessments and manage GRC using proven methodologies.
  • Afiniti
    Client Assurance Project Manager - It Auditor
    Afiniti Jun 2019 - Aug 2021
    Hamilton, Bermuda, Bm
    - Develop a good understanding of Afiniti business processes, Afiniti application and deployment process.- Responsible for due care and due diligence audits for Afiniti.- Schedules and plans audits; initiates project planning, assess risk and develops audit direction.- Participates in development, implementation and maintenance of policies, objectives, short-and long-range planning; develops and implements projects and programs to assist in accomplishment of established goals.- Support in third party IS assessment process for Afiniti. Conduct internal IS audit for customer deployment before the initiation of customer IS audit.- Highlighting contractual requirements for different business units of Afiniti. Understanding of ISO 27001, SOC2, ITGC and PCI DSS standards.- Supporting GRC team in policy modification, procedure development of ISO 27001, PCI DSS, SOC2, ITGC and internal security baselines as per emerging business requirements.- Participation in awareness session, developing awareness for different internal teams on security requirement for evidence gathering on ISO 27001, SOC2, ITGC and PCI DSS audits.
    View
  • Kualitatem Inc.
    Senior Information Security Engineer
    Kualitatem Inc. Dec 2018 - May 2019
    New York, Us
    - Manage 3rd party Governance, Risk, Compliance, perform risk assessments and audits, technical security assessments of applications and infrastructure as well as security design reviews.- Perform application and infrastructure penetration tests, as well as physical security review and social engineering tests.- Review and define requirements for information security solutions.- Perform security reviews of application designs, source code and deployments as required, covering all types of applications (web application, web services, mobile applications, thick client applications, SaaS).- Participate in Security Assessments of networks, systems and applications.- Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets.
    View
  • Abm Info Tech (Pvt.) Ltd.
    Information Security Consultant
    Abm Info Tech (Pvt.) Ltd. Oct 2013 - Nov 2018
    Karachi, Sind, Pk
    Oversee the creation and management of security governance strategies, policies and standards. Achieve risk management objectives as per organizational risk appetite. Execute projects constituting information security programs (control design and development). Steer risk assessments as well as security audits, and perform incident management for public and private business customers. Bolster Information security awareness among new/existing business clients by devising innovative and specific training regimens.
    View
  • Abm Info Tech (Pvt.) Ltd.
    Information Security Engineer
    Abm Info Tech (Pvt.) Ltd. Nov 2010 - Oct 2013
    Karachi, Sind, Pk
    Appointed to develop, implement and document formal security programs for domestic and international customers including Tier-II technical support for enterprise-security products, evaluate new security products including proofs of concept and pre-sales support for various accounts.
    View

Umar Khalid Skills

Firewalls Gap Analysis Information Security Itil It Security Audits It Risk Management Endpoint Security Information Risk Compliance Incident Management Security Architecture Design Team Management Team Leadership Information Assest Classification Information Systems Audit Security Solution Architect Strategic Planning It Security Program Manager Team Player Risk Assessment Cyber Security Business Continuity Network Security Critical Thinking Disaster Recovery Information Security Management Project Planning Threat And Vulnerability Management Iso 27001 Business Impact Analysis It Governance Project Management It Security Application Hardening Vulnerability Assessment Web Security Server Hardening Security Solution Implementer Information Security Reviews Email Security Business Continuity Planning Data Loss Prevention

Umar Khalid Education Details

  • Virtual University Of Pakistan
    Virtual University Of Pakistan
    Computer Science

Frequently Asked Questions about Umar Khalid

What company does Umar Khalid work for?

Umar Khalid works for Mobilityone Sdn. Bhd.

What is Umar Khalid's role at the current company?

Umar Khalid's current role is Chief Information Security Officer | Architecture | Engineering | GRC | Privacy | FinTech | CISSP | CISA | CISM | CRISC | CDPSE | ITILv3 | ISO 27001:2013.

What schools did Umar Khalid attend?

Umar Khalid attended Virtual University Of Pakistan.

What skills is Umar Khalid known for?

Umar Khalid has skills like Firewalls, Gap Analysis, Information Security, Itil, It Security Audits, It Risk Management, Endpoint Security, Information Risk Compliance, Incident Management, Security Architecture Design, Team Management, Team Leadership.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.