Cyber Security

Cyber Security
ID : 1454
Education level  : Master's degree
Work experience level  : Expert- (more than year 7)
Work experience in total  : Years
Job type  : Online
Job time  : Maandelijks
Last date of registration :
Profile description

Proven Cybersecurity experience over 20 Years of providing Information Security/ Cybersecurity Solutions and Implementations, in developing Information security/Cyber security strategies, programs, risk management, security policies, procedures & standards in technically demanding global environments. Act as a Change agent with a proven history of building, deploying and enforcing comprehensive information/cyber security programs that exceed business needs with minimal overhead costs in multiple industry verticals, including Big-4, Banking & Finance , Telecommunications, Software houses, Manufacturing, F & B, Airlines, Oil & Gas etc

Work experience In details :
Job position
Job description

Manager  Governance and Compliance in Cyber Security - Dialog Axiata PLC - (May 2016 – To Date)                                                                                 Manager  IT Strategy and Services - Dialog Axiata PLC -  (2016 – 2020)


  • Sri Lanka’s flagship telecommunications service provider in the country’s largest mobile network and being the first and only company in Sri Lanka to achieve a market capitalization of USD 1 billion.
  • Be responsible for governing the implementation of Cyber Security Strategy of Dialog Group in line with Axiata Cyber Security Road map as outlined by the Axiata Group CISO/ GCRC / Board.
  •  Ensure to maintain the maturity of NIST CSF framework and ISO 27001, PCI DSS within the Dialog.
  •  24x7 delivery across global Security Operations Centres (SOC) with SIEM solution and ensure all SOC activities are in line with cybersecurity governance framework.
  • Directs global team of senior security investigators/ Forensic professionals to hunt threats using advanced threat intelligence, security telemetry, and advanced analytics.
  •  Technical consultation of procuring, evaluating, and implementing the cybersecurity solutions such as IAM, GRC tool, DLP, TVM risk prioritization, Minimum security baseline, EDR, etc.
  •  Architecture review board to represent the cybersecurity governance approvals.
  •  Risk Management/ assessments including Vendor and Third-party risks.

Manager  Information Security Officer - AHL Business Solution - (January 2012 – April 2016)


  • AHL Business Solution is a subsidiary of Goodhope Asia Holdings Singapore Incorporated in Singapore, is a holding company with investments in Indonesia, Malaysia & India.
  • Strategic Guidance and planning on Information Security strategy & risk management for the Group.
  •  Successfully Implemented and certified the ISO 27001, ISO 2000 for the Group Data centre, DR Location and the Business Process Outsourcing unit at Colombo & Planning for regional office in
    Singapore , Malaysia , Indonesia and India.
  •  Information security reviews and audits for ERP systems such as JD Edwards, Oracle Finance, Oracle HRM, Hyperion, OBIEE, and bespoke applications.
  •  Penetration testing, host-based security assessment, firewall, wireless and mail server security reviews and network infrastructure security reviews across the group.
  •  IT security liaison for various regional functions covering Risk Management, and Data Protection
  •  Product evaluation (i.e. wireless solution, firewall, IPS/IDS ,SCADA , data archival etc).
  •  Advisor to a continuous improvement program in group-wise information security.
  •  IT security liaison for various regional functions covering Risk Management and Data Protection.

Manager  IT Advisory - KPMG - (January 2006 – December 2011)

KPMG is a professional services firm, providing Audit, Tax & Advisory services to both public and private sector clients. During my tenure, I worked in the IT Advisory team and some of the key responsibilities and tasks included,

  • Managing teams which conducted Information Security Reviews and IS Audits which include Application & Post Implementation, Network and Architecture, ERP Systems, and Project Risk Management in various industry segments with may IT and systems projects.
  •  Review of KPMG Sri Lanka’s policies and procedures in-line with KPMG Global IT security requirements as well as local government regulatory requirements.
  •  Consultation, development support and reviews on IT Governance Frameworks, IT security strategy, policies, procedures and DRP.
  •  Implementation support and deployment of ISO 27001 framework for clients (E.g. Review all deliverables such as ISMS policies , procedures and standards, risk assessment, user training, DRP/BCM.
  •  Performed internal network security evaluations, internal and external penetration testing and Database and application(oracle,DB2 etc) reviews.
  •  Performed firewall security reviews for Cisco Fix and ASA, Net screen and Checkpoint, etc.
  •  Hands-on experience with information security tools such as CORE Impact, Qualiys Guard, Symantec ESM, Nessus, GFI Land Guard etc
  •  Represented KPMG at meetings with client senior management on IT security review findings.
  •  Develop and review deliverables (e.g. Management letters with practical recommendations).

Consultant/Project Manager - Ceylinco Micro Technologies Limited - (March 2005 - December 2005)

  • Technology leadership and security management consultation in multiple Projects and development and deployment of business continuity planning (BCP) and Disaster Recovery Planning (DRP).

Systems Engineer (Network & Security) - Techno Q W.L.L. Doha Qatar in Middle East - (November  2001 – January 2005)

  • Provided technical and information security expertise in the management, administration, implementation and maintenance of the organizations’ IT Infrastructure, business applications.

Network Engineer - East-West Information Systems Ltd - (January 2000 – Octomber 2001)

  • Installation, Configuring, Troubleshooting and Problem Solving of Networks, Firewall, Operating systems and Anti-Virus IPS/IDS products.

Technical Officer / Engineer - Electronic Training Lab & Manu (Pvt) Ltd - (January  1996 – December 1999)

  • Worked as an administrator for OS, software, hardware, Firewall and Anti-Virus products.
Hard skills
Soft skills
  • Ability to think of the “bigger picture”
  •  Leadership, negotiation, mentoring, coaching and supervisory skills
  •  Interpersonal - excellent working relations and team focus
  •  Communication – verbal and written presentation skills
  •  Problem solving - analytical and trouble shooting skills
  •  Positive, proactive and resilient, adopt a “Hands on Approach”, and have a “Can do” attitude
  •  Flexibility and adaptability - ability to cope with pressure, changing work demands and environments


  • MBA in Information Management from University of Wales & Cardiff Metropolitan University U.K
  •  Member of British Computer Society – BCS-U. K
  •  Certified Information Security Manager (CISM) - Member of ISACA-USA
  •  ISO 27001: 2013 Certified Lead Auditor – DNV
  •  ISO 27001: 2013 Certified Lead Auditor – BSI U.K
  •  ISO 27001: 2005 Certified Lead Auditor – DNV
  •  ISO 27001: 2013 Certified Lead Implementer Professional (IT Security) – BSI U.K
  •  ISO 22301 - 2012 Certified Lead Implementer Professional (Business Continuity) – BSI U.K
  •  ITIL V3 Foundation Certification
  •  Cisco Certified Firewall Specialist (CCFS) Cisco Crop- USA
  •  Cisco Certified Network Associate (CCNA) Cisco Crop-USA
  •  Microsoft Certified Professional (MCP) in Windows-2003
  •  Advanced Diploma in Telecommunication & Electronics Engineering City & Guilds, London
  •  Diploma in Business Administration at the Association of Business Executives (UK).
  •  Reading for Certified Cloud Security Professional (CCSP) exam & completed many LinkedIn Trainings
Special notes

Information Security/ Cybersecurity Solutions and Implementations, in developing Information security/Cyber security strategies, programs, risk management, security policies, procedures & standards in technically demanding global environments.

Meer person

ID : 2042
Associate Software Engineer
Education level: Bachelor's degree
Work experience level: Intermediate- (2-4 year experience)
ID : 2041
System Engineer IT
Education level: Bachelor's degree
Work experience level: Experienced- (4-7 year experience)
ID : 2040
Associate Engineer
Education level: Bachelor's degree
Work experience level: Associate- (1-2 year experience)
ID : 2039
Education level: Bachelor's degree
Work experience level: Beginner- (internship- 1 year experience)
Mis geen enkele belangrijke kennisgeving houd jezelf update
Begin met chatten!
Wij staan u graag te woord!
Hallo 👋
Kunnen we je helpen?