Profiles search

Kal Perwaz

Cyber Security and GRC Consultant
St Albans, Hertfordshire, England, United Kingdom
View resume Unlock resume

Skills

Cybersecurity Strategy, GRC (Governance, Risk, and Compliance), Information Security Management, Risk Management, Incident Response, Data Privacy, Data Protection, Cloud Security (AWS), Third-Party Risk Management, Security Controls Implementation, Security Compliance (ISO 27001, GDPR, PCI DSS), IAM (Identity and Access Management), PAM (Privileged Access Management), SIEM (Security Information and Event Management), Vulnerability Management, Security Assessments, Cyber Risk Assessments, Audit Management, Security Policies and Procedures, Penetration Testing, Security Frameworks (NIST, COBIT, ISO), Business Continuity Planning, Disaster Recovery, Cloud Native Applications, AI Governance, SOC 2 Compliance, Incident Management, Executive Communication, Stakeholder Management, Cloud Security Posture Management, Data Classification, Secure Software Development Lifecycle (SDLC), Cybersecurity Transformation, Compliance Reporting, Information Assurance, Security Remediation, Security Governance, Regulatory Compliance, Cybersecurity Metrics and Reporting, Secure Architecture, Cybersecurity Audits, Security Penetration Testing, Security Automation, Risk Remediation, Project Management, Business Analysis, AI Risk Management, Cybersecurity Incident Analysis, Security Control Audits, Client Engagement, AI Risk and Compliance, Security Operations, Security Reporting, Leadership and Team Management, Data Analysis, Cyber Threat Intelligence, Crisis Management, Security in Financial Services, Security in Government and Defence Sectors, Security in Highly Regulated Environments, DevSecOps, ISO27001 Lead Auditor, CISM, CISSP, CRISC, Cybersecurity Training and Awareness.

About

Cybersecurity professional with 20+ years of experience in leading security initiatives for global organisations across multiple sectors, including financial services, telecommunications, and government. Specialises in aligning security strategies with business objectives, implementing risk management frameworks, and ensuring compliance with industry standards such as ISO 27001, SOC 2, and GDPR. Proven ability to lead security governance, manage incident response, and oversee risk mitigation at a strategic level. Adept at aligning cybersecurity initiatives with business objectives, managing complex risk environments, and fostering cross-functional collaboration to achieve enterprise-wide security resilience. Proven success in consulting, building security roadmaps, leading cybersecurity transformation programmes, and driving risk management strategies.