Trainer – Gurvinder Pal Singh 

Gurvinder Pal Singh

With over 25 years of experience in cybersecurity enterprise architecture and assurance, Gurvinder is a seasoned professional known for providing top-tier cybersecurity solutions across the public and private sectors. His extensive background spans various industries, including finance, healthcare, aviation, telecommunications, transportation, and government agencies. Before starting his advisory and consulting career, he served in senior leadership roles and achieved significant results in directing and leading cybersecurity programs.

 

He successfully minimised security incidents, improved incident response capabilities, and ensured the development and execution of effective strategies and roadmaps aligned with organisational business goals and risk tolerance. He brings knowledge and expertise with a successful track record in establishing and implementing cybersecurity programs in IT and OT. 

Core Competencies & Experience

  • Enterprise Security Architecture: Proficient in creating comprehensive security architecture frameworks based on industry standards such as TOGAF, SABSA, and NIST Cybersecurity Framework, ensuring secure, reliable, and compliant business information assets.
  • Cyber Risk Management: Expert in identifying, analysing, and mitigating risks to protect organisational data and systems.
  • Governance, Risk, and Compliance (GRC): Deep knowledge of compliance frameworks like ISO 27001(ISMS), ISO 27701(PIMS), ISO 42001(AIMS), ISO 22301(BCMS), NIST-CSF, GDPR, Essential 8, SOCI, ensuring organisations meet regulatory and global standards.
  • Incident Response and Recovery: Proven track record in leading incident response teams to quickly contain and recover from cyber-attacks and tabletop exercises.
  • Security Auditing: Certified in multiple standards, proficient in conducting thorough audits to assess vulnerabilities and recommend enhancements.
  • Policy Development: Skilled in crafting robust cybersecurity policies and procedures that align with industry best practices and legal requirements.
  • Cloud Security: Expertise in securing cloud environments, including AWS, Azure, and Google Cloud, ensuring data privacy and protection.
  • Public and Private Sector Collaboration: A history of liaising with government bodies and private enterprises to establish a unified approach to cybersecurity.
  • Professional Advocacy: Served in leadership roles in ISACA, including as President and Director of the ISACA-Sydney Chapter Board and as a member of ISACA International’s “Guidance and Practices” Committee and “CISM Test Enhancement” subcommittee.
  • Standards Development: Member of Standards Australia’s Security Techniques Sub-committee ‘IT-012-4’, responsible for the ISO 27000 family of standards. He contributed in the ISO 27001:2022 revision of the standard.

Some of Gurvinder’s Achieved Certifications:

  • BE-Electronics & Telecommunication 
  • Masters of Information Systems Security  
  • CISM, CISA, CRISC, CDPSE 
  • SABSA Foundation 
  • ISO 27001 Lead Auditor 
  • ISO 27701 Lead Auditor 
  • ISO 22301 Lead Auditor 

What our participants have had to say:

Our trainers are excellent, but don’t just take our word for it – here are a few of our recent testimonials from previous course attendees: