Speakers
2nd CISO 360 Middle East Congress – 2019

Graduated with BSc. in Accounting, and a second BSc. in Finance from George Mason University, USA. Worked as an Auditor at KPMG & as a Financial Analyst at Riyad Bank Asset Management Dept., and then as a Credit Officer at the bank’s Analytical Unit in the Corporate Banking Division.

Moved to the UK where I converted my academic field and obtained an MSc. in Informatics at the School of Computer Science in the University of Manchester (the home of the world’s first computer memory program), then a PhD in Computer Science in 2015 with specialization in Risk Estimation & Fraud Detection & Authentication for Mobile Financial Systems also at the University of Manchester. I did a Graduate Internship at Riyad Bank – London Branch as a Consultant in two projects one in Liquidity Risk & then in an Anti-Money Laundering & a Fraud Detection project. Now at Alhamrani University Company, I work as a Sr. Manager of R & D & New Businesses with expertise in various sectors including Fuelling Systems. The United States Patent & Trademark Office (USPTO) granted & published a patent for Dr. Alnajem on 19 February, 2019 and was recently referenced by important &/or giant firms. I have two kids, a boy and a girl. I like travelling and meeting people from all different cultures.

More than 25 years of professional experience in audit, assurance, risk management, consulting and business advisory with large and international organizations in the Middle East. Prior to his current role he worked as Group VP – Internal Audit at Al Ghurair Investment Group further he worked for many years in Assurance and Business Advisory Services at PwC , KPMG in UAE and Egypt.

Nominated as Global CISO Finalist @ Global CISO Forum 2014, Atlanta.
Jury @ GISEC Awards – 2014 & 2015 (Biggest Security Event in MENA region)
Prominent GRC & cybersecurity expert in MEA region with overall Experience of over 20 years in Strategy, Transformation, Information Security & Risk Management and Advisory Services.
Delivered various large scale transformation, security and service management projects in large organizations providing specialized leadership insight and best practices in technology strategy, enterprise architecture and implementation of Risk Management, Information Security, Business continuity management and Compliance frameworks
Expertise in Information Security, GRC. IT Risk management, BCM/DR, ISO 27001, ISO 20000, PCI-DSS, SOX, ISO 22301 (BS25999) and ISO 9000.
Experience includes managing technology and information security teams in IT Managed Services provider and Government Entity.

Achievements:
– Chief Architect for CGMS (Corporate Governance Management System) and ITGMS (IT Governance Management System) covering Risk Management, IT Governance, Information Security and Business Continuity.
– Successfully implemented SIEM, GRC and Vulnerability Management solutions
– ISO 27001 & ISO 20000 Certification for major government and public enterprises
– Successfully managed and delivered more than 20 large scale consulting assignments with relevant reviews and certifications.
– Contributed in establishing a governance framework to execute and monitor IT projects worth up to US$ 50 Million for the financial year.
– Implemented ISO 27001, ISO 20000 and ISO 9001 for a leading service provider.
– Successful BS-25999 Implementation for business continuity management.
– Key contributor in new data-center design and virtualization technologies and cloud computing.

Specialties: Security Strategy, Infosec Programs, GRC & Secure Software Lifecycle and Business Conitnuity, IT Risk Management

Well-qualified and talented professional with almost 20 years (around 10 Years in Oil and Gas Field) of experience in various Information Systems fields encompassing, Business Continuity Management, Information Security Management, IT Operations Management, Systems administration, programming, System Analysis, Project management, training users-team members and developing solutions for clients. Expert in Management Systems and has supervised and directed more than 300+ projects including government, semi-governments, multinationals and local organizations in UAE and across the Middle East. These projects focuses on QMS, EHSMS, OHSMS, ISMS, ITSM, BCMS, Project Management and various other Management Systems. Possesses excellent analytical, communication and interpersonal skills.

First Female President of ISACAUAE. Trained more than 300 Senior Management Engineers/Officers at various levels and functions in the domain of Occupational Health, Safety, Environment, Quality Assurance, Quality Control and conducted numbers of Skill Development workshops. Managed, Conducted, and supervised numbers of certifications and surveillance for IMS Audits by different Certification bodies at different corporate establishments in GCC and non-GCC countries.

Edvinas Pranculis is a business management professional, who has helped a number of local and international companies develop new lines of business, penetrate new markets and ensure strong business growth. With 15+ years of experience in IT service and information security management he has repeatedly demonstrated his qualities of a pragmatic problem solver and a critical thinker. Edvinas earned his Master of Management (MM) degree in BI Norwegian School of Management and ISM University of Management and Economics and also holds recognized CISA, CISM, CRISC and ITIL certifications.

Dr. Hatim Zaghloul, an Egyptian Canadian, is recognized as a visionary leader in the hi-tech community. In 1992, Dr. Zaghloul co-founded Wi-LAN Inc., and under his direction, the two technologies he co-invented with Dr. Michel Fattouche became the heart of many wireless communications standards: WiFi (IEEE802.11a/g/n), 3G (H and H+), LTE and 4G (WiMAX).  Dr. Zaghloul holds a B.Sc. in Electrical Engineering from Cairo University as well as a M.Sc. and a Ph.D. in Physics from the University of Calgary.

Irene is responsible for the execution of the ADSIC Information Security Programme, Security Governance, Risk and compliance to IT Security Policy. She offers 27 years of combined and diverse experience in IT (Security, Operations and Strategy), Quality & Excellence. She has worked in various industries and region and led strategic initiatives in Asia, Middle East, Europe and America. An emerging seasoned speaker on Information and Cyber Security Conferences, Irene has spoken in a number of conferences in Asia, Middle East and Europe.  Irene acquired her Masters of Science in IT from University of Wales, and holds the following certifications: ITIL V3, PMP, ISO (QMS and 27k) Lead Auditor and EFQM Assessor.

Kunal has over 16 years of experience in financial services and IT industries in the Middle East and India. Prior to joining AFS, Kunal worked for various consulting firms such as Accenture, E4E Services and MIEL eSecurities where he led multiple client engagements across financial and telecom industries, helped manage regulatory compliance and the establishment of international frameworks such as PCI DSS, PCI PIN, ISO 27001, 22301, 9001, BASEL II, SOX standards, etc. Kunal has held various roles at AFS including Head of Compliance, Head of Service Quality and is now serving as Group Head of Operational Risk & Information Security. His expertise includes Cyber Security in FinTech and Digital Payment Space, Operational Risk Management, Ecosystem Development for Digital Payments (including infrastructure setup over cloud, merchant acquisitions and promotional marketing). Kunal holds a Master’s Degree in Computer Science, specialized in Cyber Security from Symbiosis International University. He also holds an International Diploma in Compliance, ICA from The University of Manchester and a Bachelor’s Degree in Information Technology from Manipal Academy of Higher Education. Kunal’s professional certifications include: PCI ISA, CISM, ISO 27001 Lead Implementer, CCSA (Checkpoint), CSSA (Sonicwall) and CCNA (CISCO).

Amongst Mahmoud’s professional networking groups are the (ISC)² UAE Chapter – he held the seat of the UAE Chapter President, elected and hired by (ISC)² board members (2013 -2016).  Mahmoud initiated the chapter in the UAE membership of the ISACA COBIT 5 review member group and he has had articles published with InfoSec Island; a reputable group for the information security community. Mahmoud has also had many articles published in ISACA like mobile Security, BYOD hacking 9 magazine. He has contributed to several Information Security related events in the UAE and he is member of various security groups such as the UAE AAA, ISACA, (ISC)² and the Identity Management Institute, just to name a few. Mahmoud has 16 years of experience in the Infrastructure Field, having worked over 10 years as Infrastructure Security Architect for multinational organizations such as Microsoft and Fujitsu.  Mahmoud has a BSE from the University of Cairo and a Masters’ degree in Information Security from the University of Fairfax. During his extensive career Mahmoud has obtained professional certificates such as CISSP, CISA, CRISC, ,C|CISO, CISSPISSA , PMP, COBIT, ITIL, MCSE, ISO27001 2013.

* First Saudi Awarded as the best CISO in the world of the year 2018 Finalist.
* First Saudi Certified CISO instructor in Saudi Arabia.

Eng. Majed is Certified EC-Council Chief Information Security Officer & Licensed MCI IT Consultant has over 19 years in the Information Technology, Digital Transformation, and Information Security Executive line and professional experience at both the senior management and technical hands-on in contracting, banking, retail, Oil & Gas, facility management, engineering, refinery, real estate, hospitality, construction, automotive, insurance, and investment industries. In addition to the business digital transformation along with rich knowledge and expertise in establishing and operating the Information Security businesses. His main aim to provide enterprises with the information technology and insight, enabling businesses, integrate functions, guidance and leadership that will foster a successful digitalized business decision-making platform using the right set of IT secure and credible portfolios starting by the Information Technology/Information Security strategy development all the way down to the technical implementation stage with high-satisfied businesses. More information on LinkedIn: linkedin.com/in/malshodari

A seasoned IT leader with 15+ years track record of transformation Technology, Informa- tion, Security, Projects, building ground up IT departments in start up organizations and delivering complex and challenging IT Solutions and projects. Served multiple very large government organizations with technology oriented and aligned with business need to accelerate the future and shaping the future government. Highly motivated with a proven ability to lead, manage and develop IT teams. Adept in aligning IT Department with organization’s Business goals and creating value for stakeholders. Expertise in defining IT strategy, tactical direction and governance framework for making IT as business enabler to deliver targeted results

An experienced Senior Leader & Corporate Executive, Security & Risk Professional, Ray is a globally acknowledged and well-known thought leader; recognised and highly respected as someone who delivers. Ray has sat on global programmes for the World Economic Forum on Cyber Resilience and the Advisory Board for the Information Security Forum. Ray has held Group CiSO/CSO & EVP roles for BT, National Grid, Interoute, Redwood Technologies and Airbus UK.  He has been fortunate enough to have held global accountability, ranging from consultancy, through to design, build and run of managed services; including full profit and loss ownership for multiple business lines, while combining this experience with protection of Critical National Infrastructure in the Energy and Communications industries.

Dr. Sally Leivesley, Director, Newrisk Ltd and Co-Founder, TEG7 Group LLP – advises companies and governments on catastrophic risk where losses to companies and governments may involve critical functions essential for operations and reputation. She runs exercises to stress test critical function failures and resilience capability. Dr. Leivesley is known for her appearances on aviation terror attacks, ISIS, Al Qaeda, Al Shabaab and other international terrorism, cyber breaches, CNI protection and government policy on the BBC World Service, ITV This Morning and other UK based media and European, Middle East and Australian media. She raised the forensic importance of the risk of cyber hijacking of flight MH370 which was the subject of a Discovery Channel documentary and has been a commentator on the risks relevant to Donald Trump economic, terror and nuclear influences during his Presidential campaign and on his election. Dr Leivesley works in conjunction with The Exercise Group7 (TEG7) a London based group of companies that specialise in resilience operations for cyber-attacks, international terrorism and nation state threats and solutions for business and government-critical infrastructure.  The focus is on testing through exercises, assurance and pen tests using an integrated approach to all hazards including social factors.  (www.Teg7.co.uk) In the UK she has been a member of the technical committee for the first IET (formerly IEE) guidance document on Resilience and Cyber Security of Technology in the Built Environment which was supported by the Centre for the Protection of National Infrastructure. She is also a member of the British Register for Security Engineers and Specialists established to advise at a strategic level on terrorist and other extreme threats to critical infrastructure. She interfaces with a USA company to extend exercising for aviation and energy industries.  Dr Leivesley originally trained as a Scientific Advisor with the British Home Office. She is a specialist in CBRN.

Shafiullah Ismail is the Information Security professional (cloud security Expert) working with Mubadala Business Management Services in Abu Dhabi. BMS is a shared services company offering IaaS and SaaS to government and Mubadala group companies. During his 13 years in the cyber security industry, Mr. Shafiullah has worked with many technologies in different positions from technical to management. He is an experienced information security strategist and has managed a portfolio of mission critical projects and initiatives. He poses strong skillset in both strategic security functions and cloud architecture. Shafiullah holds a Computer Science degree and CISSP, CISA, CISM, TOGAF9, Azure Associate, COBIT5, CEH.

Tim joined Barclay Simpson, a governance recruitment company,  in 1991 and has gained immense experience in governance recruitment across all sectors. Tim is responsible for Barclay Simpson’s Middle East Division which recruits across all areas of governance including security and resilience, internal audit, compliance and risk.  Tim has an in-depth understanding of the market for governance professionals in international markets and is able to draw on both an extensive network of contacts built up over twenty five years and the experience to advise on the most effective approach to any recruitment challenge. He undertakes both local and global searches and has placed a diverse range of corporate governance executives into the middle East region.

Tamer is currently the Group Chief Information Security Officer and Global Head of Business Resilience for one of the largest Middle East based privately owned groups with diversified business activities in 30 countries, with a focus on the Middle East, North Africa and Turkey region. Tamer holds a Bachelor of Engineering and MSc in Advanced Manufacturing Systems, in addition to successfully completing several MIT related courses in the field of Artificial Intelligence and Block chain technologies. Tamer has been an (ISC)² EMEA Advisory Council member since 2014. Tamer has held a number of roles for leading Banks in Dubai and Kuwait including Mashreq Bank, Kuwait Finance House and the National Bank of Kuwait as a CISO and Head of Operational Risk. Tamer was the head of security and continuity services for KPMG, he joined the Middle East practice from London to help define and establish one of the first security practices in the Middle East, previously Tamer previously worked for Intel and Computacenter in the UK, he also sits on the advisory board of several technology based companies.