Ahmad M

IT Consulting Supervisor

Talal Abu-Ghazaleh Global • Temps plein

Oct 2025 - Present • 7 mos

- Led comprehensive IT and cybersecurity compliance assessments aligned with frameworks such as ISO 27001, NIST CSF, GDPR, and local regulatory requirements, identifying control weaknesses and recommending corrective actions. - Developed, reviewed, and enhanced IT and cybersecurity policies, procedures, and standards to strengthen governance, risk management, and compliance maturity across client environments. - Managed end-to-end technology audit engagements—risk assessment, planning, execution, and reporting—ensuring adherence to global audit methodologies and best practices. - Supervised and coached audit team members, reviewed workpapers, and ensured high-quality, timely delivery of audit and consulting engagements.

Senior Risk Advisory

PwC • Temps plein

Dec 2022 - Sep 2025 • 2 yrs 9 mos

- Conduct comprehensive internal audits within the technology sector, focusing on IT, cybersecurity, and business continuity for various institutions. - Perform in-depth risk assessments to identify and evaluate potential vulnerabilities and compliance issues, driving strategic improvements. - Review and assess technology controls, ensuring they meet industry standards and best practices for security and efficiency. - Collaborate with cross-functional teams to enhance information security frameworks and business continuity plans. - Provide expert insights and recommendations to senior management on mitigating technological risks and enhancing operational resilience. - Facilitate educational workshops and training sessions for staff on best practices in IT security, risk management, and emergency preparedness, promoting a culture of continuous learning and improvement. - Conduct compliance and maturity assessments across various regional and global standards, including NCA, SAMA Framework, ISO 27001, ISO 22301, COBIT, and ITIL, ensuring organizations meet critical regulatory and best practice benchmarks. - Develop and deliver comprehensive IT and cybersecurity policies and Standard Operating Procedures (SOPs) for diverse institutions, enhancing their security posture and operational efficiency through strategic policy frameworks.

Cybersecurity Consultant

Cyber Guards • Temps plein

Feb 2022 - Nov 2022 • 9 mos

- Provided cybersecurity consulting services to clients in the GCC region, assisting in enhancing their security posture and resilience against cyber threats. - Conducted several gap assessments against national and international standards (i.e. ISO 27001, ISO, 22301, NCA, NDMO, and SAMA Frameworks) - Developed and implemented cybersecurity frameworks, policies, and procedures tailored to client's specific needs. - Assisted clients in incident response planning and conducted investigations to identify the root causes of security incidents. - Conducted cybersecurity awareness training programs for clients' employees to promote a culture of security. - Collaborated with clients' IT teams to develop and implement secure architecture designs and configurations.