Summary
Overview
Work history
Education
Skills
Personal Information
Languages
Certification
Timeline
Generic

Bandar Abdullah AlQahtani

Riyadh,Saudi Arabia

Summary

Accomplished professional with extensive expertise in cybersecurity consultation, cloud security, and risk management. Demonstrates exceptional leadership acumen and decision-making competency, driving growth initiatives and secure network design. Proven track record in full lifecycle project management, including systems analysis, requirements definition, architecture, testing, and support. Adept at developing security policies, implementing security programs, and conducting penetration testing to ensure robust data encryption methods. Committed to stakeholder engagement and client relationship management to deliver comprehensive cybersecurity solutions.

Overview

17
17
years of professional experience
1
1
Certification

Work history

Tech Security Design & Implementation Director

specialized by stc
Riyadh, Saudi Arabia
09.2025 - Current
  • Identified potential security threats through comprehensive cyber risk assessments.
  • Prioritised resources effectively, ensuring maximum protection against imminent threats.
  • Managed incident response efforts to minimise disruption to business operations.
  • Collaborated with IT department to align security strategies with organisational goals.
  • Facilitated smooth implementation of security measures in partnership with technical teams.
  • Attended industry conferences and workshops to maintain knowledge of emerging threats.
  • Mitigated risks of cyber threats, enhancing overall network security.

Cyber Security Principle

MCN
01.2020 - 09.2025
  • Responsible for building and operating Cyber Security function for MCN

Cyber Security Director

Specialized by stc
11.2022 - 06.2023
  • Responsible for Cyber Security Governance, Risk and Compliance
  • Responsible for Mission Critical Mobile Security
  • Responsible for Cyber Security Threat and Monitoring
  • Responsible for Penetration Testing and Vulnerability Management

Cyber Security GRC Senior Consultant

STC
01.2019 - 11.2022
  • ERM Risk & Business Continuity Champion for Cyber Security
  • Cyber Security Audit Control
  • Cyber CARE Program Manager
  • Mega Projects Cyber Security Lead
  • Cyber Security Risk & Resilience lead for Cyber Security Transformation program

Cyber Security Compliance Section Manager

STC
01.2014 - 01.2018
  • Managing GRC Program including Tool Selection, Implementation and Enhancements
  • Building information Security Risk & Compliance Frameworks
  • Managing Security Assessment/ Risk Assessment/ Penetration testing for IT Critical systems
  • Active participation with Change Advisory Board, reviewing all network changes to evaluate risks and recommend better architecture from security and business wise
  • Building GRC tool for Risk & Compliance Automation
  • Building Vulnerability Assessment tool for STC
  • Performing Compromise Assessment for STC
  • NCA-ECC Compliance Assessment

Information Security Senior Engineer II

Mobily
01.2010 - 01.2014
  • Managing GRC Program including Tool Selection, Implementation and Enhancements
  • Managing Information Security Projects from Initiation, Planning, Executing, Monitoring & Control and closing
  • Managing Risk Assessments/security assessments/penetration testing for Mobily business critical systems
  • Active participation with Change Advisory Board, reviewing all network changes to evaluate risks and recommend better architecture from security and business wise
  • Performing MBSS Compliance Assessment on Mobily IT systems

IT Engineer

MOFA
01.2009 - 01.2010
  • Managing specific activities in Main Data Center enhancement project
  • Managing activities in Embassies DC's enhancement project

Education

Master Degree - Information Security

Saudi Electronic University
KSA

Bachelor Degree - Computer Engineering

KFUPM
KSA

Skills

  • Decision-Making competency
  • Growth initiatives
  • In-Depth industry knowledge
  • P and L management
  • Secure network design
  • Leadership acumen
  • Systems analysis
  • Full lifecycle project management
  • Implementing security programs
  • Risk management
  • System development
  • Requirements definition
  • Design
  • Architecture
  • Testing
  • Support
  • Leadership
  • Team building
  • Developing security policies
  • Project documentation
  • Technical specifications
  • Business specifications
  • IoTsecurity
  • Patch management
  • Security plan development
  • Penetration testing
  • Stakeholder engagement
  • Client Relationship Management
  • Risk assessment proficiency
  • Cloud security expertise
  • Data encryption methods
  • Cybersecurity consultation expertise

Personal Information

Marital status: Married

Languages

Arabic
Native
English
Proficient
C2

Certification

  • Harvard University- Cyber Security: Managing Risk in the information Age
  • Certificate of Cloud Security Knowledge V4
  • COBIT 2019 Foundation Certificate
  • Certified GRC Professional
  • ISO 270001 Lead Implementer
  • Certified Risk and Information Systems Control (CRISC-2027572)
  • Certified Vulnerability Management
  • Security+

Timeline

Tech Security Design & Implementation Director

specialized by stc
09.2025 - Current

Cyber Security Director

Specialized by stc
11.2022 - 06.2023

Cyber Security Principle

MCN
01.2020 - 09.2025

Cyber Security GRC Senior Consultant

STC
01.2019 - 11.2022

Cyber Security Compliance Section Manager

STC
01.2014 - 01.2018

Information Security Senior Engineer II

Mobily
01.2010 - 01.2014

IT Engineer

MOFA
01.2009 - 01.2010

Master Degree - Information Security

Saudi Electronic University

Bachelor Degree - Computer Engineering

KFUPM

Similar Profiles

Create profile
Bandar Abdullah AlQahtani