Head of Enterprise Risk & Information Security
American Express
Total years of experience :1 years, 1 Months
Enterprise Risk & Information Security
Created the Enterprise Risk Policy and Risk Appetite for Amex. Implemented an InFoSec dept for Amex. Implemented PCI-DSS 3.0 Standards and ISO 27002 controls. Certified Amex in PCI-DSS 3.0 and ISO 27001 (within a short time frame).
Trained a specific Saudi Team in Enterprise Risk and Information Security
Qualified Internal Auditor: BSI ISO 9001:2008 BSI ISO 27001:2013