Meisam Najjar

A strategic Cybersecurity Leader with over 20 years of experience shaping security maturity across the banking, MSSP, and payment service sectors. Proven track record as a CISO in developing and managing the day-to-day of GRC functions, articulating clear InfoSec governance programs, and maintaining robust Information Security Management Systems (ISMS). Expertise in leading teams to identify and mitigate key risks, maintaining ISO 27001 certification, and driving the audit and client management process.

An excellent communicator focused on aligning security strategy with business goals and regulatory mandates.

• Governance, Risk & Compliance (GRC):
  • GRC Leadership & Framework Design (COBIT, NIST CSF, CIS)
  • ISO 27001 Implementation, Auditing & Certification Maintenance
  • Information Security Management System (ISMS)
  • Risk Management (Assessment, Mitigation, Control Design)
  • Policy Development, Business Continuity & DR Exercises
  • Regulatory Compliance (PCI DSS, GDPR)
  • Client Due Diligence & Third-Party Oversight
• Cybersecurity Strategy & Operations:
  • Cybersecurity Strategy & Architecture (SABSA, TOGAF)
  • SOC/CERT Design & Operations
  • Incident Response & Crisis Management
  • Vulnerability Management & Penetration Testing
  • 'Secure by Design' (OWASP, ISO 27034)
• Leadership & Management:
  • Strategic Planning & Team Leadership
  • Stakeholder Engagement & C-Level Reporting
  • Project Delivery & Budget Management

• MSc of ICT-Secure Communication, 2010
• BSc of Computer Engineering - Hardware, 2002
• Diploma of Business Administration, 2020