Cyber resilience

Cyber Resilience

Appointed to chair the Forward Command Centre Committee; served as Deputy Chair for the Crisis Committee.

Country lead for Mexico to review critical infrastructure services resilience (CISR) for top 20 business applications.

Cyber controls management

Cyber Controls Management

Designed the controls and Introduced continuous improvement measures to sustain risk mitigation and ensure control effectiveness.

Secured satisfactory rating in global continuous controls audit; earned apassing grade in global reviews for control effectiveness.

Business information risk

Business Information Risk

Evaluated and employed technology counter surveillance to secure our business information (BISO) risk.

Planned and delivered information security blanket for the chairman’s office& holdings board meetings.

Crypto management

Crypto Management

Delivered the PKI infrastructure for BIB Business internet banking for HSBC group aligned to the Federal Information Processing Standards

(FIPS) Structured the key management for centralized storage, protection of cryptographic keys

Pioneered the proof of concept and deployment of 20 plus network. Hardware Security Modules (HSM)

Cyber consulting

Cyber Consulting

Providing advisory related to the current and emerging threats, countermeasures and the organisational challenges to addressing these cybersecurity threats.

Cyber risk governance

Cyber Risk Governance

Championed a customer- and outcome-focused risk and compliance function throughout Enterprise Services

Enabled identification and remediation of control deficiencies for 68 major business risk issues via leadership of engineering audit

Provide direction on the development and delivery of measures and metrics to support the assessment, reporting and ongoing improvement of the cyber security posture

Vulnerability remediation

Vulnerability Remediation

Created vulnerability assurance program to handle hundreds of critical and high vulnerabilities’ security patching

(Tightened compliance with group risk, regulatory and audit framework bydesigning strategies for timely mitigation of critical vulnerabilitiesresulting in 99% compliance

Cyber patch management

Cyber Patch Management

Led the teams to define, develop and maintain a business-aligned. Information and Cybersecurity patching strategy and operating model.

Reduced organization-wide risk and maximised audit compliance through the design, development, and rollout of robust patching processes, governance, and reporting standards across HSBC Enterprise Services