Mujmmil Shaikh

Acted as Business Security Architect(Cyber) multi geopolitical territories including international waters. Information security initiatives including policy creation, endpoint security hardening, and internal audits aligned with International Organization for Standardization Geneva. Artificial Intelligence ethical usage and safe transactions on virtual international borders. I have NDA signed for this role so only thing I can say that It was high Ultra profile multi Govt. role

Acted as CISO, leading organizational-wide information security initiatives including policy creation, endpoint security hardening, and internal audits aligned with ISO 27001 . Unified scattered communication channels into a single secure platform, reducing communication delay by 80%. Assessed and remediated endpoint security risks through third-party validation and tuning. Built and delivered firewall and IDS/IPS baseline configurations using CIS standards—raising security maturity by 70%.

Spearheaded security architecture consulting for a national bank, collaborating with stakeholders including RBI, CISOs, and CFOs. Developed and enforced an enterprise-level incident management policy across all IT verticals. Designed a high-performance supercomputing solution for SWIFT transactions with global failover support. Led security assessments and audits (ISO 27001, SOC2, PCI-DSS, GDPR), elevating governance from 40% to 90%

Served as the primary security advisor to Executive Leadership (CEO, CFO), translating technical risk into business terms. Implemented cybersecurity policies organization-wide, delivering 60% reduction in operational rework. Directed ISO 27001 and GDPR readiness across regions, achieving zero non conformities in external audits. Authored a unique security proposal that generated €30M in new business and earned CEO recognition.

Led multi-regional Penetration Testing Program across EU & APAC with advanced methodologies (Black, White, Gray Box). Designed and deployed SOC architecture including SIEM, IDS, IPS, WAF, EDR, and DLP—ensuring 24/7 visibility and protection. Executed ISO 22301-based Business Continuity Plans (BCP) and successful DR drills across time zones. Delivered security awareness training, reducing phishing incidents and raising company-wide threat preparedness.

Deployed end-to-end vulnerability management solutions across clients using Nessus, Qualys, IBM AppScan, Metasploit, and more. Drafted Statements of Work and conducted Executive-level reporting via monthly dashboards. Implemented phishing attack simulations and solutions, significantly reducing susceptibility. Consistently recognized for exemplary client service and delivery—achieved 90% reduction in reported vulnerabilities.