Bayt.com

Submitting more applications increases your chances of landing a job.

Here’s how busy the average job seeker was last month:

Opportunities viewed

Applications submitted

Keep exploring and applying to maximize your chances!

Looking for employers with a proven track record of hiring women?

Click here to explore opportunities now!
We Value Your Feedback

You are invited to participate in a survey designed to help researchers understand how best to match workers to the types of jobs they are searching for

Would You Be Likely to Participate?

If selected, we will contact you via email with further instructions and details about your participation.

You will receive a $7 payout for answering the survey.


User unblocked successfully
Afnan Siddique, Manager IT Governance - AVP

Afnan Siddique

Manager IT Governance - AVP·Mobilink Microfinance Bank Limited

Pakistan

Master's degree, Masters of Science in Computer Science

Work experience

Total years of experience: 7 years, 1 months

Manager IT Governance - AVP

April 2025 - Present

Mobilink Microfinance Bank Limited

Islamabad, Pakistan

April 2025 - Present

• Led the creation and implementation of robust IT governance frameworks, ensuring strict adherence to SBP regulations and key standards like ISO 27001 and PCI-DSS.
• Executed thorough audits and assessments, achieving full compliance with IT security standards and regulatory requirements, significantly reducing potential risks.
• Partnered with ISRM, Compliance, and Audit teams to drive the successful adoption of ISO 27001 and PCI-DSS, markedly improving the organization’s security posture.
• Championed initiatives that fostered a culture of compliance and security awareness across the organization, enhancing overall risk management strategies.
• Developed and delivered training programs on IT governance and security best practices, empowering teams to uphold high standards of compliance.
Company industry:
Banking
Job role:
Banking

Senior Manager IT/IS Audit

July 2024 - April 2025

Digitt Plus – AFT (Financial Mobile Wallet)

Lahore, Pakistan

July 2024 - April 2025

• Lead the strategic vision and management of the Internal Audit function, ensuring alignment with organizational objectives and regulatory requirements.
• Develop and implement a robust IT audit framework, integrating best practices to enhance data governance and information security.
• Conduct thorough risk assessments, identifying vulnerabilities and recommending actionable solutions to safeguard information assets.
• Foster a culture of accountability and continuous improvement within audit processes, driving efficiency and effectiveness across IT and data governance initiatives.
• Collaborate with cross-functional teams to ensure comprehensive coverage of IT audits, enhancing overall organizational resilience and compliance.
Company industry:
Financial Services
Job role:
Banking

IT/IS Audit Manager

June 2023 - July 2024

Digitt Plus – AFT (Financial Mobile Wallet)

Lahore, Pakistan

June 2023 - July 2024

• Lead thorough evaluations of internal controls and business processes to ensure compliance with regulatory standards and organizational policies.
• Benchmark compliance frameworks against industry best practices to drive operational improvements and efficiency.
• Proactively identify and assess potential risks and vulnerabilities within IT systems, implementing effective risk mitigation strategies.
• Evaluate the feasibility of information security protocols, ensuring the adoption of robust security measures to protect sensitive data.
• Collaborate with cross-functional teams to enhance data governance and strengthen overall audit practices, fostering a culture of continuous improvement.
• Deliver actionable insights and recommendations to executive leadership, contributing to informed decision-making and strategic planning.
Company industry:
Financial Services
Job role:
Banking

Information Security Analyst II – Escalation Eng.

January 2022 - January 2023

SDS IT – PayActiv Corp.

Islamabad, Pakistan

January 2022 - January 2023

• Spearheaded the design and development of secure web applications using C# and various technologies, ensuring compliance with ISO 27001 standards for information security.
• Conducted thorough penetration testing and code reviews, effectively identifying and mitigating security vulnerabilities, which significantly improved software integrity and compliance.
• Provided specialized training and support to development teams on secure coding practices and information security best practices, fostering a culture of security awareness and proactive risk management.
• Collaborated with cross-functional teams to align security measures with internal audit processes, enhancing overall governance and compliance frameworks.
• Developed and implemented audit strategies to assess information security controls, ensuring adherence to regulatory requirements and industry standards.
Company industry:
Financial Services

Research Assistant - Information Security Analyst I

January 2019 - April 2022

National Center of Cyber Security (NCCS)

Islamabad, Pakistan

January 2019 - April 2022

• Skilled in implementing Intrusion Detection and Prevention Systems to protect organizational assets and mitigate risks.
• Conduct thorough internal audits to assess information systems, pinpointing vulnerabilities and strengthening overall security posture.
• Investigate and evaluate cutting-edge strategies for enhancing network security against cyber threats and compliance issues.
• Facilitate training workshops for employees on security best practices, promoting adherence to security policies and fostering a culture of compliance.
• Collaborate with cross-functional teams to ensure alignment with IT governance frameworks and regulatory requirements, enhancing organizational resilience.
Company industry:
IT Services

Education

Bahria University

August 2019

August 2019

Master's degree, Masters of Science in Computer Science

Pakistan

GPA (point): 3.45 out of 4

GPA (point): 3.45 out of 4

Thesis Topic - Ontology Framework for Web Application Languages

Bahria University

January 2016

January 2016

Bachelor's degree, Bachelor of Science in Computer Science

Pakistan

GPA (point): 2.76 out of 4

GPA (point): 2.76 out of 4

Skills

IT Risk
Expert
IT Risk
Expert
Information Security Policy
Expert
Information Security Policy
Expert
Risk Management Consulting
Expert
Risk Management Consulting
Expert
IS Security
Expert
IS Security
Expert
IT Audit
Expert
IT Audit
Expert
Information Security Management
Expert
Information Security Management
Expert
GRC
Expert
GRC
Expert
ISO 27001
Expert
ISO 27001
Expert
Microsoft Excel
Expert
Microsoft Excel
Expert
INFORMATION TECHNOLOGY
Intermediate
INFORMATION TECHNOLOGY
Intermediate
GOVERNANCE
Intermediate
GOVERNANCE
Intermediate
COMPLIANCE MANAGEMENT
Intermediate
COMPLIANCE MANAGEMENT
Intermediate
IT GOVERNANCE
Intermediate
IT GOVERNANCE
Intermediate
ISO IEC 27001
Intermediate
ISO IEC 27001
Intermediate
PAYMENT CARD INDUSTRY PCI DATA SECURITY STANDARDS
Intermediate
PAYMENT CARD INDUSTRY PCI DATA SECURITY STANDARDS
Intermediate
BUSINESS RISK MANAGEMENT
Intermediate
BUSINESS RISK MANAGEMENT
Intermediate
COMPLIANCE RISK
Intermediate
COMPLIANCE RISK
Intermediate
ETHICAL HACKING
Intermediate
ETHICAL HACKING
Intermediate
Information Security
Expert
Information Security
Expert
IT Security
Expert
IT Security
Expert
Auditing
Expert
Auditing
Expert
Internal Audit
Expert
Internal Audit
Expert
Risk
Expert
Risk
Expert
Microsoft Office
Expert
Microsoft Office
Expert
Management
Expert
Management
Expert
CYBER SECURITY
Intermediate
CYBER SECURITY
Intermediate
GOVERNANCE RISK MANAGEMENT AND COMPLIANCE
Intermediate
GOVERNANCE RISK MANAGEMENT AND COMPLIANCE
Intermediate
COMPUTER SYSTEMS
Intermediate
COMPUTER SYSTEMS
Intermediate
AUDITING
Intermediate
AUDITING
Intermediate
COMPLEX PROBLEM SOLVING
Intermediate
COMPLEX PROBLEM SOLVING
Intermediate
STRATEGIC PLANNING
Intermediate
STRATEGIC PLANNING
Intermediate
INFORMATION SECURITY MANAGEMENT
Intermediate
INFORMATION SECURITY MANAGEMENT
Intermediate
INFORMATION SECURITY MANAGEMENT SYSTEMS
Intermediate
INFORMATION SECURITY MANAGEMENT SYSTEMS
Intermediate
RISK GOVERNANCE
Intermediate
RISK GOVERNANCE
Intermediate
COMPLIANCE AUDITING
Intermediate
COMPLIANCE AUDITING
Intermediate
Penetration Testing
Intermediate
Penetration Testing
Intermediate
Information Security Management
Expert
Information Security Management
Expert
Cybersecurity Audits
Expert
Cybersecurity Audits
Expert
ISO 27001 Auditing
Expert
ISO 27001 Auditing
Expert
GRC (Governance, Risk & Compliance)
Expert
GRC (Governance, Risk & Compliance)
Expert
Vulnerability Assessment
Expert
Vulnerability Assessment
Expert
Risk Management
Expert
Risk Management
Expert
Penetration Testing Tools (Nessus, OpenVAS, Metasploit)
Intermediate
Penetration Testing Tools (Nessus, OpenVAS, Metasploit)
Intermediate
ISO 27001
Expert
ISO 27001
Expert
Internal Controls
Expert
Internal Controls
Expert
Firewalls
Intermediate
Firewalls
Intermediate
Cyber Security
Expert
Cyber Security
Expert
Security Tools (Splunk, Wireshark)
Intermediate
Security Tools (Splunk, Wireshark)
Intermediate
Risk Assessment
Expert
Risk Assessment
Expert
Compliance and Regulatory Auditing
Expert
Compliance and Regulatory Auditing
Expert
Visual Studio
Expert
Visual Studio
Expert
Adobe Photoshop
Expert
Adobe Photoshop
Expert
Teaching
Expert
Teaching
Expert
MS Office tools
Expert
MS Office tools
Expert
.NET
Expert
.NET
Expert

Social profiles

Personal Website
Personal Website

URL removed due to policy violation. Please contact support for further information.

Languages

English
Intermediate
Urdu
Native Speaker
Punjabi
Native Speaker

Training and Certifications

Certifications
Cyber Security Course
Cyber Security Risk Management
Digital and Social Engineering Investigation
Cloud Networking with Amazon Web Services (AWS) VPC (Training)
ISO 27001: 2022 Lead Auditor – CQI
Certified Ethical Hacker V13
ISO 27001:2022 Lead Auditor
Sep 2024
Show credentials
Certified Ethical Hacker
May 2025 - Jun 2026
Show credentials
ISO/IEC 27001 Information Security Associate
May 2021
Lean Foundations Professional Certification™ (LFPC™)
Sep 2024
Show credentials
Cybersecurity Awareness Professional Certification - CAPC™
Sep 2024
Show credentials
Training
ISO 27001 - Information Security Management System
Udemy
Jun 2021
Show credentials
Certified Information System Security Professional - CISSP
Digi Pakistan
Jan 2022
Show credentials