Led security auditing initiatives for citizen development applications, evaluating low-code/no-code platforms to ensure compliance with enterprise security standards and governance policies.

Performed in-depth security assessments of business-critical enterprise applications, identifying control gaps and strengthening overall application security posture.

Conducted assurance reviews of risk assessment aligned with the EU AI Act, validating risk categorization frameworks and strengthening regulatory compliance for AI-enabled applications.

Designed and implemented security validation processes for citizen-built applications, enabling secure adoption of low-code development across business teams.

Collaborated with engineering, compliance, and platform teams to review application architecture and enforce secure development and deployment practices.

Engineered security controls and validation mechanisms to ensure applications adhered to enterprise security frameworks and risk management standards.

Analyzed security data and vulnerability insights using Power BI dashboards to support risk-based decision making across enterprise systems.

Performed SQL-based analysis on large security datasets to validate control implementation and improve audit reporting accuracy.

Embedded privacy-by-design and Secure SDLC principles into enterprise development workflows, reducing potential security risks during application lifecycle.

Provided security recommendations for business-critical systems to improve resilience against common application threats and vulnerabilities.

Conducted application security risk assessments across enterprise applications to identify security weaknesses and strengthen overall application security posture.

Analyzed SAST, DAST, and penetration testing reports to prioritize remediation efforts and reduce exposure to application-level vulnerabilities.

Collaborated with development teams to remediate OWASP Top 10 vulnerabilities and enforce secure coding practices across production systems.

Designed and validated technical security controls to strengthen authentication, authorization, and data protection mechanisms.

Conducted data flow and storage assessments to identify where sensitive data resided across systems and ensure compliance with localization laws in Oman and Qatar.

Tracked security findings and remediation progress through vulnerability management workflows to ensure timely resolution of security risks.

Executed security control testing and generated audit-ready evidence supporting internal compliance and governance reviews.

Promoted data protection and privacy-by-design practices across development workflows to improve secure application lifecycle management.

Developed a secure full-stack web application using React and Flask, focusing on authentication and API security.

Designed and implemented secure REST APIs with input validation and role-based access control.

Deployed cloud infrastructure on AWS including EC2 and S3 for scalable and secure application hosting.

Built a real-time detection model using Python, OpenCV, and NumPy to process live visual data streams.

Implemented secure API integrations between frontend and backend services.

Developed monitoring dashboards to visualize system performance and security-related metrics.

Applied secure development practices including validation, logging, and error handling.

Collaborated with engineers to test application functionality and improve system reliability.