Cybersecurity GRC Specialist

Specializing in SAMA & NCA framework assessments, compliance roadmaps, and governance, risk & compliance consulting for Saudi organizations

Get In Touch View My Research

About Me

Aziz Alghamdi

Who I Am

I am a Cybersecurity GRC Specialist at Sēnsus, a leading consulting firm in Riyadh, Saudi Arabia. With expertise in Saudi regulatory frameworks including SAMA Cybersecurity Framework, NCA Essential Cybersecurity Controls (ECC), and NCA Data Cybersecurity Controls (DCC), I help organizations achieve and maintain compliance while strengthening their security posture.

My work involves conducting comprehensive cybersecurity assessments for financial institutions, government organizations, and private sector clients. I specialize in gap analysis, risk assessments, compliance roadmap development, and creating detailed Arabic and English documentation that meets Saudi regulatory standards.

I bring a unique blend of technical cybersecurity knowledge and practical GRC consulting experience, having completed major assessments for clients including MedGulf Insurance Company and the Islamic Military Counter Terrorism Coalition (IMCTC). My academic background combines computer science with cybersecurity specialization and criminal justice, providing a comprehensive perspective on digital security challenges.

GRC Consulting
SAMA Framework
NCA ECC & DCC
Risk Assessment
Gap Analysis
Digital Forensics
Security Documentation
Bilingual (AR/EN)
Try Interactive Learning

Interactive Cybersecurity Learning

Hands-on training for the next generation of security professionals

Immerse yourself in our cutting-edge cybersecurity training environment featuring practical challenges, realistic scenarios, and guided exercises designed by security experts. Whether you're a beginner looking to build fundamental skills or an experienced professional wanting to sharpen your expertise, our interactive platform provides the perfect learning environment.

5+ Practice Labs
20 Skill Paths
24/7 Access

Hands-On Labs

Practice in real-world environments with guided instructions

Defense Simulations

Test your skills against realistic attack scenarios

Concept Challenges

Reinforce learning through interactive knowledge checks

Progress Tracking

Monitor your skill development and improvement

Launch Interactive Platform
No download required. Works on all devices.
Interactive Cybersecurity Learning Platform
Learn by doing.
Command Line
Live Coding
Network Labs

Professional Experience

November 2025 - Present

Cybersecurity GRC Specialist

Sēnsus

Conducting comprehensive cybersecurity framework assessments and compliance consulting for clients across financial services, government, and private sectors in Riyadh, Saudi Arabia.

  • Conduct SAMA Cybersecurity Framework and NCA ECC/DCC assessments for financial institutions and government organizations
  • Perform detailed gap analyses and develop prioritized compliance roadmaps
  • Create comprehensive audit reports, security procedures, and compliance documentation in Arabic and English
  • Manage client communications and stakeholder engagement throughout assessment lifecycle
  • Completed major projects for MedGulf Insurance Company and IMCTC (Islamic Military Counter Terrorism Coalition)
November 2025 - Present

Business Continuity Specialist (Trainee)

Al-Ahsa Chamber of Commerce

Supporting business continuity initiatives and cybersecurity compliance for the Chamber's Odoo ERP system in Al-Ahsa, Saudi Arabia.

  • Develop business continuity and disaster recovery plans aligned with Saudi standards
  • Assess cybersecurity controls for Odoo system implementation
  • Create security documentation and procedures in Arabic

Education

August 2021 - January 2025

Bachelor of Science in Computer Science

University of Colorado at Colorado Springs

Specialization in Cybersecurity with a Minor in Criminal Justice. Focusing on advanced security concepts, digital forensics, and the legal implications of cybercrime.

  • Member of Mountain Lions Cyber Club
  • Participant in National Cyber League competitions
  • Colorado Springs, Colorado, United States
August 2018 - June 2019

High School Diploma

September High School

  • Boulder, Colorado, United States

Research

My research focuses on the intersection of cybersecurity, digital forensics, and criminal justice, aiming to develop more effective methods for investigating and preventing cybercrime.

Publication

Forensic Analysis of Cryptocurrency-Based Ransomware Attacks: Criminal Justice and Technical Perspectives

This research explores the challenges law enforcement faces when investigating ransomware attacks that utilize cryptocurrency payments. The study proposes a framework for tracking cryptocurrency transactions while maintaining legal compliance with chain-of-custody requirements for digital evidence.

Published: 2024 Journal of Cybersecurity & Digital Forensics
Read More
Publication

Post-Quantum Cryptography Implementation Challenges: Security Implications for Critical Infrastructure

This ongoing research examines the practical challenges of implementing post-quantum cryptographic algorithms in critical infrastructure systems. The study analyzes potential security vulnerabilities during transitional periods and proposes a risk mitigation framework.

Published: 2025
Read More
Publication

Quantum Cryptography Implications for Digital Evidence in Criminal Investigations

This research explores how the advent of quantum computing will transform digital evidence collection, preservation, and presentation in court. The paper discusses the legal and technical considerations for ensuring the admissibility of digital evidence in a post-quantum cryptographic environment.

Published: 2025 International Journal of Digital Criminology
Read More

Projects

A selection of academic and personal projects that demonstrate my technical skills and research interests in cybersecurity and criminal justice.

Digital Forensic Analysis Toolkit

Developed a comprehensive digital forensic toolkit that automates the collection and analysis of volatile and non-volatile data from compromised systems. The tool incorporates chain-of-custody documentation to ensure evidence admissibility in legal proceedings.

Python Digital Forensics Memory Analysis

Cryptocurrency Transaction Tracer

Created a tool that visualizes and analyzes cryptocurrency transaction patterns to identify suspicious activities. The system employs machine learning algorithms to detect potential money laundering techniques and generates reports suitable for law enforcement investigations.

Blockchain Machine Learning Data Visualization

Zero-Trust Security Implementation Framework

Designed and implemented a zero-trust security architecture for a university research lab environment. The framework includes continuous authentication protocols, least privilege access controls, and comprehensive activity logging for security monitoring and incident response.

Network Security Access Control Security Architecture

Certifications & Skills

Professional certifications and technical skills that complement my academic qualifications and research experience.

Google Cybersecurity Professional Certificate

Google (via Coursera)

Comprehensive cybersecurity program covering security fundamentals, tools, and practical skills needed for entry-level cybersecurity roles.

Completed: April 17, 2025

Verify Certificate

Foundations of Cybersecurity

Google (via Coursera)

Mastery of cybersecurity fundamentals, security frameworks, and core security concepts.

Completed: April 17, 2025

Verify Certificate

Play It Safe: Manage Security Risks

Google (via Coursera)

Skills in security risk assessment, management, and mitigation strategies.

Completed: April 17, 2025

Verify Certificate

Connect and Protect: Networks and Network Security

Google (via Coursera)

Expertise in network architecture, protocols, and securing network infrastructure.

Completed: April 17, 2025

Verify Certificate

Tools of the Trade: Linux and SQL

Google (via Coursera)

Proficiency in Linux operating system and SQL database security techniques.

Completed: April 17, 2025

Verify Certificate

Assets, Threats, and Vulnerabilities

Google (via Coursera)

Knowledge in identifying critical assets, recognizing threats, and remediating vulnerabilities.

Completed: April 17, 2025

Verify Certificate

Sound the Alarm: Detection and Response

Google (via Coursera)

Skills in security incident detection, analysis, and effective response procedures.

Completed: April 17, 2025

Verify Certificate

Automate Cybersecurity Tasks with Python

Google (via Coursera)

Proficiency in developing Python scripts for security automation and analysis.

Completed: April 17, 2025

Verify Certificate

Put It to Work: Prepare for Cybersecurity Jobs

Google (via Coursera)

Career preparation for cybersecurity industry including job search strategies and professional development.

Completed: April 17, 2025

Verify Certificate

Programming Languages

Technical Skills

Proficient in Python, C++, C#, C, SQL, and other languages for security application development and analysis.

Security Tools

Technical Skills

Experience with Wireshark, Metasploit, Nmap, Burp Suite, SIEM solutions, and other cybersecurity tools.

Systems & Networks

Technical Skills

Proficient in Windows, Linux, Kali Linux, virtualization, cloud security, and network architecture.

Contact Me

I'm interested in research collaborations, cybersecurity projects, and career opportunities in digital forensics and information security.

Email

azizcsecj@gmail.com

Phone

+1 (720) ***-****

+966 50 *** ****

Location

Riyadh, Saudi Arabia

Website

aziz707.info