Razwan Qureshi

078******** adxetb@r.postjobfree.com Connect with me on LinkedIn

An experienced Cyber & Information Security professional with 20 years’ experience in Cyber Security and Architecture, Data Protection, Governance, Risk and Compliance. Strong leadership, operational, technical, consultancy and key stakeholder management skills. Looking for an executive role in Cyber & Information Security to be part of an organisation’s long-term journey, growth and embed best practices.

EXPERIENCE

FSCS via Adecco – Head of Information and Cyber Security (Interim); London February 2023 – April 2023

•Oversaw the Information & Cyber Security and SOC teams by adhering to the NIST and ISO27001 frameworks when dealing with information and cyber security incidents.

•Drafted, reviewed and approved information security policies, methods, and processes as necessary.

•Organised and coordinated internal audits and reviews of the Information Security Management System.

•Reported to the FSCS executive board on Information and Cyber Security performance.

•Maintained the ISMS, including compliance with annual reviews to ensure its continuing effectiveness.

Data Tech City – Interim Chief Information Security Officer; Remote March 2022 – Present

May 2020 – May 2021

•Supported a technology startup with their AI, Cyber Security, and Architecture consultancy services.

•Developed new cyber and information security opportunities with SMBs.

•Worked with AI Dizital Solutions Ltd on a Blockchain track and trace product (Trace Pharm), DLT, and Smart Contracts within AWS infrastructure.

London Ambulance Service – Head of Cyber Security Operations; London June 2021 – February 2022

•Managed an outsourced Cyber Security Operations Team (Isystems), responsible for dealing with information and cyber security incidents and data breaches.

•Coordinated the annual pen-testing activity and worked closely with the infrastructure and desktop teams with patch management and hardening activities.

•Accountable for the IT Risks Registers by ensuring risks were mitigated to an acceptable level by implementing robust Cyber Security controls.

MHRA via Allen Lane – Information Security Lead (Contract); London September 2019 – May 2020

•Managing a team of Cyber Security Analysts and providing 1st and 2nd line of defence against the challenging cyber security threat landscape.

•Ensuring the agency adheres to best practices aligned to ISO 27001.

•Worked closely with NTT to provide a managed SOC capability.

Career Break November 2018 – September 2019

Astellas Pharma – EMEA Senior Security Operations Manager (FTC); Chertsey February 2017– November 2018

•Working as part of the Global Information Security Team covering Japan, the US, and EMEA regions.

•Engaged in a Global Information Security Program, consisting of 7 workstreams whilst meeting project deadlines and budgetary constraints.

•Implemented a NIST Cyber Security Strategy across the EMEA region and provided input into the Incident Response process.

IMS Evolve – Head of Security and Compliance (Contract); Milton Keynes June 2016 – September 2016

•Conducted a gap analysis and created a security roadmap of activities aligned to ISO 27001.

•Acting as an SME and Consultant, ensuring security controls are in place for all high-profile projects.

•Ensured IT Audits were closed with relevant, supportive evidence.

Sabbatical Leave March 2015 – February 2016

Close Brothers Group – Information Security Officer (Interim); London April 2014 – March 2015

•Reported to the Head of Information Security, adherence towards information security best practices.

•Developed and assessed the effectiveness of IT controls; mitigated internal audit findings.

•Worked with third parties by ensuring security needs were built into the initial phases of the project life cycle.

du – Senior Information Security, Policy & Awareness Manager; Dubai September 2012 – August 2013

•As the Program Lead, conducted a gap analysis, established the ISMS, implemented information security controls and assisted du in achieving the ISO27001 certification.

•Functioned as the Subject Matter Expert for Information Security and Compliance.

Lebara Group – EMEA Head of IT Security & Compliance; London April 2011 – August 2012

•Devised a corporate policy; obtained approval from the board and senior stakeholders; provided BAU security advice across business units.

•Introduced and shaped an information security and compliance strategy with robust controls globally.

•Developed an Information Security roadmap of activities.

SMC-I – Director of Security & Compliance (Contract); Middle East July 2009 – March 2011

•Pivotal member at this consultancy firm assigned to the Riyad Bank Change Programme.

•Advised the SOC Analyst on the best approach to deal with cyber security incidents and response.

•Successfully obtained PCI DSS and completed security and compliance audits.

Cable & Wireless – Security Services Manager (Interim); Bracknell September 2008 – March 2009

•Managed a security specialist team on high-profile projects including encryption, ISP, and patching.

•Provided Information Security consultancy to internal and external stakeholders.

•Oversaw the operational IT Risk Register and mitigating risks to an acceptable level.

MetLife – EMEA IT Security & Compliance Officer (Interim); Reading September 2007 – July 2008

•Responsible for the UK element of business encompassing a portfolio of financial services accounts.

•Ensured that all businesses adhered to the FCA Compliance, IT corporate Policies, and Standards, and successfully promoted awareness across the business.

•Coordinated and managed IT and Financial audits with the Deloitte team.

BT Wholesale – IT Security & Compliance Lead; London April 2006 – July 2007

•Demonstrated leadership skills when managing a team of 6 IT Security analysts on security initiatives.

•Resolved issues for internal and external clients in a 21st-century network supplier program.

•Managed IT Security & Compliance Managers and conducted Security & Compliance reviews at client sites.

IBM UK – Chief Compliance Officer; London January 2003 – April 2006

•Managed a team of 5 IT Compliance Analysts working on multiple accounts in UK security operations; changed RAG status to green across all sectors.

•Involved with internal/external auditors across the business. Worked on various high-profile accounts, including AstraZeneca, JPMorgan Chase, Boots, and Pfizer.

Various roles: Deputy Team Leader of the SOC, IT Desktop Support, and Senior Analyst 1996 – 2006

EDUCATION

London South Bank University – BSc (Hons) Computer Science 1986 – 1990

Contact this candidate