Bayt.com

كلما زادت طلبات التقديم التي ترسلينها، زادت فرصك في الحصول على وظيفة!

إليك لمحة عن معدل نشاط الباحثات عن عمل خلال الشهر الماضي:

عدد الفرص التي تم تصفحها

عدد الطلبات التي تم تقديمها

استمري في التصفح والتقديم لزيادة فرصك في الحصول على وظيفة!

هل تبحثين عن جهات توظيف لها سجل مثبت في دعم وتمكين النساء؟

اضغطي هنا لاكتشاف الفرص المتاحة الآن!
نُقدّر رأيكِ

ندعوكِ للمشاركة في استطلاع مصمّم لمساعدة الباحثين على فهم أفضل الطرق لربط الباحثات عن عمل بالوظائف التي يبحثن عنها.

هل ترغبين في المشاركة؟

في حال تم اختياركِ، سنتواصل معكِ عبر البريد الإلكتروني لتزويدكِ بالتفاصيل والتعليمات الخاصة بالمشاركة.

ستحصلين على مبلغ 7 دولارات مقابل إجابتك على الاستطلاع.


تم إلغاء حظر المستخدم بنجاح
أفنان صديق, Manager IT Governance - AVP

أفنان صديق

Manager IT Governance - AVP·Mobilink Microfinance Bank Limited

باكستان

ماجستير, Masters of Science in Computer Science

الخبرة العملية

مجموع سنوات الخبرة: 7 سنوات, 1 أشهر

Manager IT Governance - AVP

أبريل 2025 - حتى الآن

Mobilink Microfinance Bank Limited

إسلام أباد، باكستان

أبريل 2025 - حتى الآن

• Led the creation and implementation of robust IT governance frameworks, ensuring strict adherence to SBP regulations and key standards like ISO 27001 and PCI-DSS.
• Executed thorough audits and assessments, achieving full compliance with IT security standards and regulatory requirements, significantly reducing potential risks.
• Partnered with ISRM, Compliance, and Audit teams to drive the successful adoption of ISO 27001 and PCI-DSS, markedly improving the organization’s security posture.
• Championed initiatives that fostered a culture of compliance and security awareness across the organization, enhancing overall risk management strategies.
• Developed and delivered training programs on IT governance and security best practices, empowering teams to uphold high standards of compliance.
مجال الشركة:
البنوك
الدور الوظيفي:
البنوك

Senior Manager IT/IS Audit

يوليو 2024 - أبريل 2025

Digitt Plus – AFT (Financial Mobile Wallet)

لاهور، باكستان

يوليو 2024 - أبريل 2025

• Lead the strategic vision and management of the Internal Audit function, ensuring alignment with organizational objectives and regulatory requirements.
• Develop and implement a robust IT audit framework, integrating best practices to enhance data governance and information security.
• Conduct thorough risk assessments, identifying vulnerabilities and recommending actionable solutions to safeguard information assets.
• Foster a culture of accountability and continuous improvement within audit processes, driving efficiency and effectiveness across IT and data governance initiatives.
• Collaborate with cross-functional teams to ensure comprehensive coverage of IT audits, enhancing overall organizational resilience and compliance.
مجال الشركة:
الخدمات المالية
الدور الوظيفي:
البنوك

IT/IS Audit Manager

يونيو 2023 - يوليو 2024

Digitt Plus – AFT (Financial Mobile Wallet)

لاهور، باكستان

يونيو 2023 - يوليو 2024

• Lead thorough evaluations of internal controls and business processes to ensure compliance with regulatory standards and organizational policies.
• Benchmark compliance frameworks against industry best practices to drive operational improvements and efficiency.
• Proactively identify and assess potential risks and vulnerabilities within IT systems, implementing effective risk mitigation strategies.
• Evaluate the feasibility of information security protocols, ensuring the adoption of robust security measures to protect sensitive data.
• Collaborate with cross-functional teams to enhance data governance and strengthen overall audit practices, fostering a culture of continuous improvement.
• Deliver actionable insights and recommendations to executive leadership, contributing to informed decision-making and strategic planning.
مجال الشركة:
الخدمات المالية
الدور الوظيفي:
البنوك

Information Security Analyst II – Escalation Eng.

يناير 2022 - يناير 2023

SDS IT – PayActiv Corp.

إسلام أباد، باكستان

يناير 2022 - يناير 2023

• Spearheaded the design and development of secure web applications using C# and various technologies, ensuring compliance with ISO 27001 standards for information security.
• Conducted thorough penetration testing and code reviews, effectively identifying and mitigating security vulnerabilities, which significantly improved software integrity and compliance.
• Provided specialized training and support to development teams on secure coding practices and information security best practices, fostering a culture of security awareness and proactive risk management.
• Collaborated with cross-functional teams to align security measures with internal audit processes, enhancing overall governance and compliance frameworks.
• Developed and implemented audit strategies to assess information security controls, ensuring adherence to regulatory requirements and industry standards.
مجال الشركة:
الخدمات المالية

Research Assistant - Information Security Analyst I

يناير 2019 - أبريل 2022

National Center of Cyber Security (NCCS)

إسلام أباد، باكستان

يناير 2019 - أبريل 2022

• Skilled in implementing Intrusion Detection and Prevention Systems to protect organizational assets and mitigate risks.
• Conduct thorough internal audits to assess information systems, pinpointing vulnerabilities and strengthening overall security posture.
• Investigate and evaluate cutting-edge strategies for enhancing network security against cyber threats and compliance issues.
• Facilitate training workshops for employees on security best practices, promoting adherence to security policies and fostering a culture of compliance.
• Collaborate with cross-functional teams to ensure alignment with IT governance frameworks and regulatory requirements, enhancing organizational resilience.
مجال الشركة:
خدمات تكنولوجيا المعلومات

التعليم

Bahria University

أغسطس 2019

أغسطس 2019

ماجستير، Masters of Science in Computer Science

باكستان

المعدل التراكمي (نقاط): 3.45 من 4

المعدل التراكمي (نقاط): 3.45 من 4

Thesis Topic - Ontology Framework for Web Application Languages

Bahria University

يناير 2016

يناير 2016

بكالوريوس، Bachelor of Science in Computer Science

باكستان

المعدل التراكمي (نقاط): 2.76 من 4

المعدل التراكمي (نقاط): 2.76 من 4

Skills

IT Risk
Expert
IT Risk
Expert
Information Security Policy
Expert
Information Security Policy
Expert
Risk Management Consulting
Expert
Risk Management Consulting
Expert
IS Security
Expert
IS Security
Expert
IT Audit
Expert
IT Audit
Expert
Information Security Management
Expert
Information Security Management
Expert
GRC
Expert
GRC
Expert
ISO 27001
Expert
ISO 27001
Expert
Microsoft Excel
Expert
Microsoft Excel
Expert
INFORMATION TECHNOLOGY
Intermediate
INFORMATION TECHNOLOGY
Intermediate
GOVERNANCE
Intermediate
GOVERNANCE
Intermediate
COMPLIANCE MANAGEMENT
Intermediate
COMPLIANCE MANAGEMENT
Intermediate
IT GOVERNANCE
Intermediate
IT GOVERNANCE
Intermediate
ISO IEC 27001
Intermediate
ISO IEC 27001
Intermediate
PAYMENT CARD INDUSTRY PCI DATA SECURITY STANDARDS
Intermediate
PAYMENT CARD INDUSTRY PCI DATA SECURITY STANDARDS
Intermediate
BUSINESS RISK MANAGEMENT
Intermediate
BUSINESS RISK MANAGEMENT
Intermediate
COMPLIANCE RISK
Intermediate
COMPLIANCE RISK
Intermediate
ETHICAL HACKING
Intermediate
ETHICAL HACKING
Intermediate
Information Security
Expert
Information Security
Expert
IT Security
Expert
IT Security
Expert
Auditing
Expert
Auditing
Expert
Internal Audit
Expert
Internal Audit
Expert
Risk
Expert
Risk
Expert
Microsoft Office
Expert
Microsoft Office
Expert
Management
Expert
Management
Expert
CYBER SECURITY
Intermediate
CYBER SECURITY
Intermediate
GOVERNANCE RISK MANAGEMENT AND COMPLIANCE
Intermediate
GOVERNANCE RISK MANAGEMENT AND COMPLIANCE
Intermediate
COMPUTER SYSTEMS
Intermediate
COMPUTER SYSTEMS
Intermediate
AUDITING
Intermediate
AUDITING
Intermediate
COMPLEX PROBLEM SOLVING
Intermediate
COMPLEX PROBLEM SOLVING
Intermediate
STRATEGIC PLANNING
Intermediate
STRATEGIC PLANNING
Intermediate
INFORMATION SECURITY MANAGEMENT
Intermediate
INFORMATION SECURITY MANAGEMENT
Intermediate
INFORMATION SECURITY MANAGEMENT SYSTEMS
Intermediate
INFORMATION SECURITY MANAGEMENT SYSTEMS
Intermediate
RISK GOVERNANCE
Intermediate
RISK GOVERNANCE
Intermediate
COMPLIANCE AUDITING
Intermediate
COMPLIANCE AUDITING
Intermediate
Penetration Testing
Intermediate
Penetration Testing
Intermediate
Information Security Management
Expert
Information Security Management
Expert
Cybersecurity Audits
Expert
Cybersecurity Audits
Expert
ISO 27001 Auditing
Expert
ISO 27001 Auditing
Expert
GRC (Governance, Risk & Compliance)
Expert
GRC (Governance, Risk & Compliance)
Expert
Vulnerability Assessment
Expert
Vulnerability Assessment
Expert
Risk Management
Expert
Risk Management
Expert
Penetration Testing Tools (Nessus, OpenVAS, Metasploit)
Intermediate
Penetration Testing Tools (Nessus, OpenVAS, Metasploit)
Intermediate
ISO 27001
Expert
ISO 27001
Expert
Internal Controls
Expert
Internal Controls
Expert
Firewalls
Intermediate
Firewalls
Intermediate
Cyber Security
Expert
Cyber Security
Expert
Security Tools (Splunk, Wireshark)
Intermediate
Security Tools (Splunk, Wireshark)
Intermediate
Risk Assessment
Expert
Risk Assessment
Expert
Compliance and Regulatory Auditing
Expert
Compliance and Regulatory Auditing
Expert
Visual Studio
Expert
Visual Studio
Expert
Adobe Photoshop
Expert
Adobe Photoshop
Expert
Teaching
Expert
Teaching
Expert
MS Office tools
Expert
MS Office tools
Expert
.NET
Expert
.NET
Expert

حسابات مواقع التواصل الاجتماعي

الموقع الشخصي
الموقع الشخصي

لقد تم حذف الرابط بسبب انتهاكه لسياسة الموقع. يرجى التواصل مع قسم الدعم لمزيد من المعلومات.

اللغات

الانجليزية
متوسط
الأوردو
اللغة الأم
البنجابية
اللغة الأم

التدريب و الشهادات

الشهادات
Cyber Security Course
Cyber Security Risk Management
Digital and Social Engineering Investigation
Cloud Networking with Amazon Web Services (AWS) VPC (Training)
ISO 27001: 2022 Lead Auditor – CQI
Certified Ethical Hacker V13
ISO 27001:2022 Lead Auditor
Sep 2024
عرض الشهادات
Certified Ethical Hacker
May 2025 - Jun 2026
عرض الشهادات
ISO/IEC 27001 Information Security Associate
May 2021
Lean Foundations Professional Certification™ (LFPC™)
Sep 2024
عرض الشهادات
Cybersecurity Awareness Professional Certification - CAPC™
Sep 2024
عرض الشهادات
التدريب
ISO 27001 - Information Security Management System
Udemy
Jun 2021
عرض الشهادات
Certified Information System Security Professional - CISSP
Digi Pakistan
Jan 2022
عرض الشهادات