Profile

Experience

2024 - Present
Central Finance Company PLC

Chief Information Security Officer

2023 - 2024
Central Finance Company PLC

Information Security Officer

As the Information Security Officer, I lead Central Finance Company's cybersecurity team, ensuring a resilient posture. My strategic initiatives safeguard digital assets, manage risk, and ensure compliance with top security standards. Committed to cultivating a culture of security awareness, I position the company as an industry leader in information security.

2020 - Present
Company names withheld.

Consultant

Specializing in IT and cybersecurity consultations, I offer tailored solutions to enhance digital resilience. Leveraging expertise in risk management and compliance, I guide organizations toward robust security postures. Committed to staying at the forefront of industry advancements, I empower clients to navigate the evolving landscape of information technology with confidence.

2018 - 2023
Horizon Campus - Malabe

Senior Manager - IT, Executive Committee (ExCO) Member

Commencing as the IT Manager at Horizon Campus, I progressed to the role of Senior IT Manager and earned a seat on the Executive Committee. This trajectory reflects my commitment to technological leadership and strategic contributions, fostering a dynamic IT landscape within the Horizon Campus.

2017 - 2018
MOQdigital Asia Pacific (Pvt) Ltd - Orion City

Systems Engineer

As a Systems Engineer at MOQdigital, I took charge of managing the IT infrastructure for the Toga Group of Companies in Australia. In this role, I ensured seamless operations and optimized systems, contributing to the efficiency and reliability of the Toga Group's IT landscape during my tenure.

2010 - 2017
Sri Lanka Institute of Marketing (SLIM)

IT Executive

As the IT Executive at the SLIM Institute, I led the IT department, overseeing operations and driving technological initiatives. My role involved implementing strategic IT policies, managing resources, and fostering innovation. Under my leadership, the IT department flourished, contributing significantly to the institute's overall efficiency and technological advancements.

2008 - 2009
Hotel Bentota Village - Bentota

IT Administrator

I played a pivotal role in managing and optimizing the hotel's IT infrastructure. From overseeing systems to ensuring seamless operations, my responsibilities contributed to the overall technological efficiency of the establishment, enhancing both guest experiences and internal processes.

Education

2022-2023
Sri Lanka Institute of Information Technology (SLIIT)

MSc. in Information Technology (Specialising in Cybersecurity)

2021-2022
Sri Lanka Institute of Information Technology (SLIIT)

Postgraduage in Information Technology (Specialising in Cybersecurity)

2014 - 2016
University College - Dublin, Ireland

BSc. (Hons) in Management Information Systems

2012
Sri Lanka Institute of Marketing (SLIM)

Certificate in Marketing

2009 - 2010
National Institute of Business Management (NIBM)

Diploma in Computer Systems Design

Memberships

Computer Society of Sri Lanka (CSSL)

Member - MCS (SL)

International Information System Security Certification Consortium - (ISC)²

Certified Cybersecurity Professional

Internet Society (ISOC) - Sri Lankan Chapter

Member

451 Research Alliance

Member

Professional Certificates

Certified Information Systems Security Professional (CISSP) - CYBRARY

Master Cybersecurity Management

AWS: Security and Compliance

AWS Administration: Security Operations

Mastering Data Governance and Ethics

Ethical Hacking

IT Service Management: ISO-IEC 20000-1

ISO 27001:2022 - Compliant Cybersecurity

ISO 27001:2013 - Compliant Cybersecurity

Implementing the NIST Privacy Framework

Implementing the NIST Risk Management Framework

Certified in Cybersecurity (CC) - (ISC)²

Microsoft 365 Essential Training for Administrators (2021)

Windows Server 2022 Essential Training

Master in Demand Professional Soft Skills

Cybersecurity Skills

Governance, Risk Management & Compliance

100%

Security Architecture and Engineering

100%

Cyber Forensics & Security Audits

100%

Identity and Access Management (IAM)

100%

Vulnerability Assessments

100%

Penetration Testings

100%

Security Operations

100%

ISMS - ISO 9001, 27001, 20000, & 22301

100%

Incident Response and Recovery

100%

Data Protection & Privacy

100%

Cyber Threat Intelligence

100%

Training & Awareness

100%

Management Skills

Team Leadership & Communication

100%

Strategic Planning

100%

Policy Development and Compliance

100%

Technology Evaluation and Adoption

100%

Technical Writing and Presentation

100%

Budgeting and Financial Management

100%

Stakeholder Management

100%

Vendor and Contract Management

100%

Performance Metrics and Reporting

100%

Project Management

100%

IT Operations Skills

IT Infrastructure Management

100%

System Administration

100%

Windows Server Management

100%

Office 365 Administration

100%

Firewall Administration

100%

VMWare/Virtualization

100%

ITIL (Information Technology Infrastructure Library)

100%

Data Backup and Recovery

100%

Service Desk Management

100%

Websites/Apps Development

100%