Open to opportunities

Hamza Jawed

@hamzajawed1

Message

Information Security professional specializing in Governance, Risk, and Compliance.

United Kingdom

Message

What I'm looking for

I am seeking a role that allows me to leverage my expertise in GRC and contribute to robust IT governance and risk management.

I am an Information Security professional with extensive experience in Governance, Risk, and Compliance (GRC), Security Operations, and Security Awareness. Currently, I serve as a Security Analyst at the British Heart Foundation, where I have a proven track record in implementing security frameworks, conducting audits, and enhancing compliance scores. My role involves leading PCI DSS audits for retail environments and contributing to the comprehensive review and implementation of the NIST Cybersecurity Framework.

In my current position, I have successfully assisted in establishing and maintaining an ISO 27001-aligned Information Security Management System (ISMS). I have configured and managed Microsoft Purview to effectively maintain security policies and enhanced organizational compliance by deploying Microsoft Compliance Manager. My initiatives, including security awareness campaigns, have led to an impressive 89% improvement in phishing simulation reporting, showcasing my commitment to fostering a culture of security awareness.

Prior to my current role, I completed a Cyber Security Internship at Inchcape Digital, where I documented a Cybersecurity Risk Management Framework and prepared risk assessment reports. My educational background includes a BSc (Hons) in Computing with First Class Honours from Nottingham Trent University, where I was awarded the Department of Computer Science Project Prize for my final year project on security awareness training.

Experience

Work history, roles, and key accomplishments

Current

Graduate Security Analyst

Current

British Heart Foundation

Sep 2023 - Present (1 year 10 months)

Led PCI DSS audits for retail environments, achieving compliance with industry standards. Contributed to a comprehensive NIST Cybersecurity Framework review and implementation. Assisted in establishing and maintaining an ISO 27001-aligned ISMS.

PCI DSS NIST Cybersecurity Framework ISO 27001 Microsoft Purview Qualys Cloudflare Power BI

Cyber Security Intern

Inchcape Digital

Jul 2021 - Present (4 years)

Documented a Cybersecurity Risk Management Framework and prepared risk assessment reports, maintaining critical asset registers across regions. Supported the development of cyber risk policies and procedures, coordinating global business impact assessments.

Cyber Risk Management Risk Assessment Impact Assessments

Education

Degrees, certifications, and relevant coursework

Nottingham Trent University

BSc (Hons) Computing, Computing

2019 - 2023

Grade: First Class Honours

Activities and societies: Final Year Project: Cyber Conscious - Security Awareness Training, Awarded the Department of Computer Science Project Prize

Achieved First Class Honours in Computing. Completed a final year project titled 'Cyber Conscious - Security Awareness Training', which was awarded the Department of Computer Science Project Prize.