Cybersecurity & Data Privacy

Manahil Ahmad Khan

Cybersecurity, Privacy & Data Protection Specialist

Cybersecurity, Privacy & Data Protection Specialist

14+

Years of Experience

6+

Professional Certifications

6+

Countries Served (KSA, UAE, Oman, Qatar, UK, US)

6+

Countries Served (KSA, UAE, Oman, Qatar, UK, US)

A senior cybersecurity, privacy, and governance professional with 14 years of experience building and leading enterprise-wide data protection and compliance programs across the Middle East, North America, and the UK. She specializes in Cybersecurity Governance, Data Protection, Privacy Compliance, and Regulatory Alignment, advising boards and regulators on GDPR, PDPL, NCA Standards, SAMA CSF, and ISO 27001/27701/42001 frameworks.

A senior cybersecurity, privacy, and governance professional with 14 years of experience building and leading enterprise-wide data protection and compliance programs across the Middle East, North America, and the UK. She specializes in Cybersecurity Governance, Data Protection, Privacy Compliance, and Regulatory Alignment, advising boards and regulators on GDPR, PDPL, NCA Standards, SAMA CSF, and ISO 27001/27701/42001 frameworks.

Get in Touch

Profile

Certifications

Qualifications

Manahil has led complex cybersecurity and privacy transformation programs, holding senior responsibility for designing, implementing, and scaling enterprise security and data protection frameworks aligned with regulatory and business requirements. Her work includes leading cybersecurity and privacy maturity assessments, designing privacy governance frameworks, conducting risk and compliance gap assessments, implementing ISO 27001 and ISO 27701 programs, establishing Data Protection Units (DPU), developing privacy awareness strategies, and delivering privacy-by-design and security-by-design programs across cloud, digital, and AI environments. She has led vCISO and vDPO engagements, guided organizations through SOC 2, PCI-DSS, ISO 27001, and privacy compliance programs, and implemented privacy automation using platforms such as OneTrust and securiti.ai. Her experience spans financial services, telecom, healthcare, education, fintech, government, and transportation sectors across KSA, UAE, Oman, Qatar, the UK, and the US.

Profile

Certifications

Qualifications

Manahil has led complex cybersecurity and privacy transformation programs, holding senior responsibility for designing, implementing, and scaling enterprise security and data protection frameworks aligned with regulatory and business requirements. Her work includes leading cybersecurity and privacy maturity assessments, designing privacy governance frameworks, conducting risk and compliance gap assessments, implementing ISO 27001 and ISO 27701 programs, establishing Data Protection Units (DPU), developing privacy awareness strategies, and delivering privacy-by-design and security-by-design programs across cloud, digital, and AI environments. She has led vCISO and vDPO engagements, guided organizations through SOC 2, PCI-DSS, ISO 27001, and privacy compliance programs, and implemented privacy automation using platforms such as OneTrust and securiti.ai. Her experience spans financial services, telecom, healthcare, education, fintech, government, and transportation sectors across KSA, UAE, Oman, Qatar, the UK, and the US.

Questions & answers

Frequently
Asked Questions

Avatar 2
Avatar 1

Talk to Experts Who Understand Risk

Talk to Experts Who Understand Risk

Book a call with seasoned advisors helping leaders make confident, high-stakes decisions.

Book a call with seasoned advisors helping leaders make confident, high-stakes decisions.

Get in Touch

Get in Touch

How do I know which service is the best fit for my situation?

We start every engagement with a short consultation to understand your current challenges, goals, and operational landscape. Based on that context, we recommend the service that provides the highest leverage—whether that's a one-time strategic engagement, operational support, or ongoing advisory. Our goal is to match you with the approach that creates the most clarity and impact, not to oversell unnecessary work.

What does the typical engagement timeline look like?

Do you work with companies of all sizes or only established teams?

What level of involvement is required from our leadership team?

How do you measure the success of an engagement?