Khaled Mobarki

Strategic Cybersecurity Specialist with extensive experience securing Microsoft 365, Azure Active Directory, and hybrid cloud infrastructures. Skilled in designing and implementing cybersecurity governance frameworks aligned with NCA ECC, ISO 27001, and global best practices. Expert in at enhancing identity and email security, automating operations using PowerShell and Microsoft Graph, and elevating cloud security posture across enterprise environments.

Proven record in leading audits, driving measurable security improvements, and advising senior leadership with data-driven risk insights. Committed to strengthening resilience, minimizing attack surfaces, and delivering scalable security solutions that enable long-term organizational growth and compliance.

Cyber Security Specialist - Saudi Sicli Company - Saudi Arabia

(2025-06 - 2025-12)

Served as the primary cybersecurity authority responsible for establishing governance, securing Microsoft cloud environments, and ensuring full compliance with national and international cybersecurity regulations.

• Built and operationalized a complete cybersecurity governance framework fully aligned with NCA ECC and ISO 27001, significantly elevating audit readiness and compliance posture.
• Enhanced enterprise cloud and email security through advanced identity controls, resulting in measurable risk reduction across the entire user base.
• Streamlined Microsoft 365 administration for 1,500+ users through PowerShell automation by developing 10+ administrative scripts, improving efficiency and reducing operational workload.
• Successfully led 3+ external compliance audits, including Aramco CCC, ensuring accurate evidence delivery and closure of findings.
• Delivered executive-ready security dashboards covering identity, email, and compliance risks for 5+ executive stakeholders, supporting strategic cybersecurity decision-making.
• Developed cybersecurity policies, standards, procedures, and technical controls covering Microsoft 365 and hybrid infrastructure.
• Administered Microsoft 365 security: mail flow, hybrid setup, transport rules, mailbox configurations, and advanced PowerShell-based operations.
• Enforced identity and email security controls (SPF, DKIM, DMARC, MFA, Conditional Access, Identity Protection).
• Monitored cloud security posture, detected anomalies, and implemented continuous protection measures.
• Coordinated with certification bodies, auditors, and assessors to maintain compliance alignment.
• Reported security gaps, risk trends, and compliance status to senior leadership.

Cyber Security Specialist - Kanz Advanced Trading Company - Saudi Arabia

(2023-06 - 2025-05)

Functioned as a core security engineer responsible for threat mitigation, vulnerability management, infrastructure protection, and identity governance across the organization.

• Reduced critical vulnerabilities through systematic assessments and remediation plans, strengthening overall security resilience.
• Conducted internal attack simulations and security validation exercises, significantly improving defensive control effectiveness.
• Improved network stability and endpoint protection by deploying and tuning firewalls, antivirus solutions, and secure configurations.
• Automated Office 365 and Azure identity operations supporting 100+ users, reducing administrative overhead and enhancing governance consistency.
• Raised service quality by delivering high-level technical support and resolving complex infrastructure issues with minimal downtime.
• Conducted vulnerability assessments for systems, networks, and applications.
• Performed simulated cyberattacks and defense validation initiatives.
• Managed and configured firewalls, endpoint protection, and antivirus platforms.
• Ensured secure network infrastructure via access controls, monitoring, and patch management.
• Administered servers, hardware/software setups, and user accounts.
• Troubleshot network, system, and hardware issues to maintain operational continuity.
• Managed Azure identities, governance measures, and conditional access controls.
• Administered Office 365 accounts, licensing, and mail settings using Exchange Online and PowerShell.
• Provided expert-level technical support and issue escalation.

Technical & Application Support - Bakhsh Hospital - Saudi Arabia

(2023-03 - 2023-06)

Delivered specialized application and technical support to ensure smooth hospital operations and maintain high system availability.

• Resolved mission-critical hardware/software issues, minimizing disruptions in clinical workflows.
• Delivered customized staff training programs that improved application utilization and operational efficiency.
• Diagnosed and resolved technical issues for systems, devices, and applications.
• Provided technical instructions and training tailored to staff needs.
• Applied in-depth knowledge of operating systems and medical application environments.

IT Supervisor - Samara for Security & Safety Systems - Saudi Arabia

(2020-09 - 2021-08)

Oversaw IT operations across multiple branches, ensuring stable network performance, secure domain administration, and timely technical support.

• Improved network performance and reliability through infrastructure monitoring and targeted enhancements.
• Strengthened operational continuity by managing domain services and email systems while resolving high-impact issues efficiently.
• Supervised branch-wide IT operations and resolved complex technical issues.
• Managed domain services, email administration, and user access controls.
• Provided remote and onsite technical support for distributed teams.
• Implemented continuous monitoring practices to maintain stable network performance.

Professional Master's - Cybersecurity - Weekend Program - Jeddah University (2024 - 2026)

Bachelor - Information Systems - King Abdulaziz University (2015 - 2020)