Post Job Free
Sign in

Cloud Security Risk Management

Location:
Toronto, ON, Canada
Posted:
September 02, 2025

Contact this candidate

Resume:

Executive Profile

Dynamic Cybersecurity Architect & Consultant with 19+ years of global experience designing and securing enterprise environments across the energy, financial services, utilities, and technology sectors in the US and Canada. Specializing in cloud security (AWS, Azure, GCP), enterprise security architecture, AI security, compliance frameworks (NIST, ISO 27001, SOC2, NERC CIP, PCI, HIPAA), and vendor risk management. Proven track record leading multi-million-dollar security initiatives, enabling regulatory compliance, strengthening defenses against evolving threats (including AI/ML-driven attack vectors), and aligning security architecture with business strategy. Recognized for delivering scalable solutions, improving operational efficiency, and mentoring teams to adopt security-by-design and AI-security practices that drive measurable business resilience.

Technical & Professional Skills:

Security Architecture & Design Cloud Security (AWS, Azure, GCP) AI Security & Governance Compliance & Risk Management

SIEM Platforms (Splunk, QRadar, LogRhythm, ArcSight) Threat & Vulnerability Management Zero Trust

IT/OT Security ICS/SCADA Vendor Risk Assessments Penetration Testing (SAST/DAST, AI/ML model security testing)

Network & Application Security Encryption & Secure Protocols Security Operations Regulatory Compliance

Leadership & Consulting C-Level Advisory Security Frameworks (NIST, ISO 27001, SOC2, NIST AI RMF, NERC CIP, PCI, HIPAA)

Work Experience

Wipro Ltd (National Grid) Waltham, MA Dec 2020 – Present

Principal Cybersecurity Architect

Serve as trusted security advisor to National Grid leadership, embedding security-by-design across all major IT/OT initiatives, aligning controls with business needs, and ensuring compliance with NERC CIP, PCI, HIPAA, ISO 27001, and emerging AI security standards.

Architected and implemented enterprise-wide security frameworks that reduced software security risks and established repeatable risk assessment procedures now adopted across multiple business units.

Redesigned cloud vendor evaluation and security posture process, enabling faster onboarding of managed services while ensuring adherence to NIST Cybersecurity Framework and corporate risk appetite.

Identified and remediated critical security design gaps in legacy, cloud, and AI-integrated systems, reducing exposure to high-risk vulnerabilities and improving resilience across IT/OT environments.

Partner with cross-functional project teams to integrate security controls during requirement definition, design, and deployment phases, including AI/ML applications, reducing late-stage remediation costs.

Wipro Ltd (MUFG Bank) New York City, NY Aug 2019 – Nov 2020

Lead Cybersecurity Architect

Performed enterprise-wide cybersecurity risk and compliance assessments, identifying control gaps and designing remediation strategies aligned with regulatory requirements.

Architected and secured cloud services and applications across AWS and Azure, implementing SIEM integration and automating risk metrics.

Directed cross-functional efforts to resolve high-priority security issues, improving incident response efficiency

Developed cybersecurity risk appetite metrics aligned with board-level risk appetite statements, strengthening governance and reporting.

RBC Bank Toronto, ON Mar 2019 – Aug 2019

Senior Cybersecurity Specialist

SME for SIEM platform operations, building correlation rules and tuning alerts to improve detection accuracy.

Performed PoCs for next-gen SIEM technologies (Splunk ES, Azure Sentinel, SumoLogic) to support enterprise adoption.

Defined and validated cloud security control objectives for new applications, improving security compliance across cloud deployments.

Scalar Decisions (PC Bank) Toronto, ON Mar 2018 – Mar 2019

Security Architect – Cloud/SIEM

Architected and deployed enterprise SIEM (LogRhythm) platform, leading full lifecycle from sizing and design to deployment and tuning.

Built use cases, integrated log sources, and developed custom parsers, improving detection coverage for critical business applications.

Enhanced cloud security controls and implemented Tenable vulnerability scanning, reducing patch remediation.

Supported CyberArk design and implementation for privileged access management.

Deloitte Canada Toronto, ON Oct 2016 – Mar 2018

Senior Consultant - Cloud Security and Risk Advisory

Designed and delivered security architectures for clients, ensuring compliance with industry frameworks.

Built and maintained SIEM platforms (ArcSight, QRadar, LogRhythm, Splunk) with custom log parsers and automation integration (Phantom, DeMisto).

Advised clients on AWS and Azure adoption strategies, security blueprints, and cloud security best practices.

Implemented and optimized Azure/AWS web and network Firewalls and NSGs for application segmentation, improving east-west and north-south traffic visibility.

Forsythe Technology Mississauga, ON Apr 2014 – Oct 2016

Information Security Consultant

Delivered SIEM tuning (QRadar, Splunk, McAfee), firewall design, and Symantec DLP.

Investigated and mitigated malicious activity in client environments as part of SOC operations.

Provided Tier 3 security support and collaborated with Cisco TAC for complex issues.

Implemented firewall changes and rule clean-up on Cisco ASA; managed enterprise firewalls to strengthen security posture.

Jacobs Company Edmonton, AB Aug 2012 – Mar 2014

Network Consultant

Designed and supported enterprise networks, firewalls, and VoIP systems (CUCM, Unity, UCS).

Managed migrations and load configurations, improving reliability of enterprise data networks.

Supported wireless, firewall, and Exchange services to maintain business continuity.

Configured and managed Cisco ASA firewalls, implemented rule updates, and performed regular firewall audits.

Remis Information Technology Iran, Tehran 2006 - 2012

Project: Iranian Gas Engineering and Development Company (I.G.E.D.C)

Senior Network Engineer

Managed corporate firewalls, LAN/WAN, and disaster recovery infrastructure.

Performed security audits, applied vulnerability patches, and improved server reliability.

Strengthened security policies, increasing resilience against cyberattacks.

Performed hands-on firewall administration, including Cisco ASA rule changes, policy tuning, and ongoing management.

Education:

Azad University Iran 2000 - 2006

Bachelor’s degree in computer science - Software Engineering

Certifications:

Certified Information Systems Security Professional (CISSP)

AWS Certified Solutions Architect AWS Certified Security

Certified Azure Administrator Certified Azure Security Engineer

ITIL Foundation V3

IBM QRadar

Cisco CCNA & CCNP (Routing & Switching, Security, Voice) CCIE Voice CCDA



Contact this candidate