Danish Durrani

A seasoned high-performing cybersecurity leader with 16 years of in-depth field knowledge, plus excellent program management skills to implement cybersecurity strategy and initiatives.

GreyDetect Corp, GTA, Canada.

Service Manager & Principal Consultant, (May 2022-Till Date)

• Managed end to end program delivery for prestigious clients
• Define Project scope, requirements, deliverables, cost, and budgets.
• Provide Cybersecurity advisory services to various clients, comprising of:
  • Cybersecurity Strategy and roadmap implementation
  • Gap and Maturity Assessment
  • Cybersecurity Risk and Compliance 
  • Third Party Risk Management
  • Vulnerability Assessment
  • Privacy Impact Assessment
  • Cybersecurity Policies, procedures, and Standards
  • Cyber-Awareness content development
  • Cyber Transformation (KPIS, KRI development)

I(TS)2, Riyadh, Saudi Arabia.

Director, Business Lines Cybersecurity (Jan 2018-Mar 2022)

• Responsible for P&L and service delivery for following business line:
  • Cyber Security Consulting Services 
  • Cyber Security Solutions
  • Cybersecurity Training & Academy
  • Staff Augmentation and Managed Services
• Leadership role for developing business opportunities, driving strategic vendor partnerships and go to market business strategy.
• Managed end to end project exclusion for highly prestigious clients like Aramco, Saudi Cyber Security federation, SABIC, Saudi Telecom, Rajhi Bank.
• Exceeding Revenue targets for consequent 3 years (2019 -21). 
• Overachieved Revenue target by 11% for 2021. Efficient resource management to increase project margin YoY by 12% (2021).

• Manage day-to-day operations of the department, monitor client feedback on projects.
• Team management, establish department budget, KPIs and perform senior management reporting and staff appraisals.
• Perform project costs, resources allocation and project scheduling
• Perform Pre-sales activities (presentations, project costing, and proposal) to help sales team in achieving their targets.
• Quality Assurance of all the project deliverables
• Client facing and expectation management.
• Conduct in-house training for new team members.

• Manage consulting project from project kick off to successful project closure.
• Conduct technical briefings and created project artifacts, tools, and techniques 
• Provide advisory services, quality assurance services, project status reports to senior management.
• Prepare technical proposals, tender documentation, and presentations.
• Responsible for R&D on latest security technologies and standards, as well as the threat and vulnerability landscape

Senior Process Engineer, (Mar 2010-Aug 2012)

• Comprehensive Consultancy services to clients based on various industry frameworks (ISMS, BCMS, eTOM, ITIL, Six Sigma, Lean, PPQA, CMMI). 
• Involved in R&D for various new generations OSS and BSS.
• Software Security testing for in house application

Senior Security Consultant, (Sep 2007- Feb 2010)

• Project consultancy, security advisories and technical recommendation 
• Project Management of various assigned information projects.
• Presentation and promotion of cyber security services.
• Vulnerability assessment and penetration testing.

Security Consultant, (Sep 2006- Aug 2007)

• Developed policies and procedures for ISMS and business continuity management (BCMS) for various government, banks and private sector clients.
• Perform BIA, risk assessment, Cyber Security audits, gap and maturity analysis & compliance reviews.
• Develop proposals and RFP/ tender response.

• Master Information Security
• Bachelor Management Info Systems