s
sairmanzur

Sair Manzur

@sairmanzur

I Will be Your Senior Information Security GRC Consultant

Pakistan
English
About me
I'm a VP of Information Security with 15+ years building and auditing GRC programs at a regulated financial institution. I hold CISSP, CISM, and ISO 27001:2022 Lead Auditor certifications. I help organizations achieve compliance across the frameworks that matter to your buyers, auditors, and regulators: ISO 27001:2022, NIST CSF 2.0, PCI DSS v4.0.1, SOC 2, GDPR, HIPAA, ISO 42001, DORA, and NIS2. What I deliver: Audit-ready policies, gap analyses, internal audits, vCISO advisory, and remediation roadmaps. Message me before ordering to confirm scope and timeline.... Read more

Skills

s
sairmanzur
Sair Manzur
Offline • 

See my services

Programming & Tech
I will write iso 27001, nist csf, and pci dss policies and procedures
Programming & Tech
I will be your virtual ciso for compliance risk and security strategy

Work experience

Confidentials

Manager Information Security

Confidentials • Full-time

Mar 2022 - Present4 yrs 4 mos

I am VP Information Security with 15 years of experience and holding CISSP, CISM, and ISO 27001 Lead Auditor certifications. I am confident my expertise in GRC for banking and financial services aligns with your security objectives. KEY QUALIFICATIONS: • CISSP, CISM, and ISO 27001 Lead Auditor certifications • 15 years of GRC experience in banking, telecom, and consulting • Currently leading ISO 27001 and PCI-DSS implementation projects • 65% reduction in critical vulnerabilities through systematic risk management • Deployed enterprise security solutions (Trend Micro, Qualys) for 500+ endpoints • Expertise in GDPR, DORA, NIST-CSF, and regulatory compliance . • EDR/XDR (TrendMicro), Vulnerability Management (Qualys), PAM (Wallix/Beyond Trust), SIEM (Splunk/Wazuh) RELEVANT ACHIEVEMENTS: In my current role at ABHI Microfinance Bank (2M+ customers), I lead enterprise security and GRC programs. I've implemented complete ISMS framework, established third-party risk management for 50+ vendors, and built security awareness programs reaching 1500+ employees. I bring international experience from UAE, Caribbean, and East Africa, enabling me to adapt security programs to various regulatory environments.