Summary
Overview
Work history
Education
Skills
Languages
Affiliations
Certification
References
Timeline
Generic

Mike Siame

Lusaka,Zambia

Summary

A Technology and cybersecurity professional with extensive experience in board and executive reporting, security operations centre support, and governance committee participation. Proven expertise in technical audit leadership, cybersecurity program management, and incident management. Adept at business continuity and disaster recovery, vendor and third-party risk management, and enterprise security architecture reviews. Holds technical certifications in ISO 27001, ITILv4 , Cloud Security and Artificial Intelligence . Committed to enhancing organisational technology and security posture through strategic initiatives and robust risk management practices.

Overview

1
1
Certification
4
4
years of post-secondary education
6
6
years of professional experience

Work history

Information Security Officer (ISO)

First National Bank (FNB) Zambia
Lusaka, Lusaka Province
2023.01 - Current
  • Lead the Bank's enterprise information security program and technology risk management initiatives.
  • Coordinate cybersecurity operations, incident response activities, and threat monitoring using advanced security platforms.
  • Manage vulnerability assessment and remediation programs across critical systems and infrastructure.
  • Lead PCI DSS certification and compliance efforts, achieving annual recertification of the bank's cardholder environment.
  • Support secure technology architecture reviews and digital transformation projects through security-by-design principles.
  • Provide strategic guidance to executive management, governance committees, and project teams on cybersecurity and technology risks.
  • Conduct vendor technology risk assessments and security assurance reviews.
  • Develop and maintain security policies, standards, and operating procedures aligned to international best practices.
  • Produce executive and Board-level cybersecurity reports and risk metrics.
  • Coordinate internal and external audits and regulatory examinations.
  • Participate in enterprise architecture and security review committees evaluating new technology solutions.

Information security analyst

INFRATEL COOPORATION LIMITED -Telcom & Data Center
Lusaka, Zambia
2021.10 - 2022.12

Key Achievements

  • Led the implementation and continuous improvement of information security controls across Infratel data centre and telecommunications environments, strengthening the organization's security posture and operational resilience.
  • Drove vulnerability management initiatives by coordinating assessments, remediation efforts, and stakeholder engagement across technology teams, resulting in improved security compliance and reduced risk exposure.
  • Served as a trusted security advisor to infrastructure, network, and systems teams, ensuring security requirements were embedded into operational processes and technology deployments.
  • Coordinated security incident response activities, providing technical leadership during investigations, containment efforts, root cause analysis, and remediation planning.
  • Played a key role in protecting critical national infrastructure by monitoring emerging threats, assessing risks, and recommending proactive security measures.
  • Championed information security awareness initiatives that improved employee understanding of cyber threats and promoted a security-conscious culture across the organization.
  • Supported internal and external audit engagements, working closely with management, auditors, and technical teams to demonstrate compliance and address identified gaps.
  • Led security reviews for third-party service providers and customer environments, strengthening assurance over outsourced and hosted services.
  • Contributed to the development of information security policies, standards, and procedures that enhanced governance and supported organizational growth.
  • Collaborated with senior management and technical stakeholders on strategic security initiatives, aligning cybersecurity objectives with business and operational priorities.
  • Successfully enhanced security governance and risk management practices within a critical infrastructure environment serving enterprise and government customers.
  • Improved vulnerability management processes through proactive coordination of remediation activities and effective stakeholder engagement.
  • Supported the maintenance of secure and highly available data centre environments by strengthening security monitoring and incident management capabilities.
  • Established strong partnerships between security and technology teams, enabling faster implementation of security controls and improved operational effectiveness.
  • Contributed to the successful completion of security audits, compliance reviews, and customer assurance assessments such as ISO 27001 and PCI DSS.

Cybersecurity Consultant

DIGITAL SAFE LIMITED
Lusaka, Lusaka Province
2020.06 - 2021.09
  • Led the delivery of information security and technology risk engagements for multiple clients, coordinating technical teams and stakeholders to improve security, operational resilience, and regulatory compliance.
  • Managed vulnerability assessment and remediation programmes, working closely with infrastructure, network, and application teams to identify, prioritize, and address technology risks across enterprise environments.
  • Provided technical leadership during security incident investigations, coordinating containment, recovery, root-cause analysis, and remediation activities.
  • Administered and supported enterprise security and technology platforms including SIEM, IDS/IPS, endpoint protection, log management, and network security solutions to ensure continuous monitoring and operational effectiveness.
  • Conducted infrastructure and systems security reviews for on-premises and cloud environments, strengthening the confidentiality, integrity, and availability of business-critical systems.
  • Advised senior management and client technology teams on cybersecurity strategy, IT governance, risk management, and technology control improvements.
  • Led technical assessments and audits, engaging business, technology, and executive stakeholders to develop practical remediation roadmaps and improve organizational security maturity.
  • Supported technology transformation projects by providing security architecture guidance and ensuring compliance with business, regulatory, and operational requirements.
  • Developed policies, procedures, standards, and operational guidelines to strengthen governance and support sustainable technology operations.
  • Delivered cybersecurity awareness and technical training programmes to improve staff capabilities and promote a culture of security and operational excellence.
  • Successfully led multiple concurrent technology and cybersecurity projects, ensuring timely delivery and alignment with client objectives.
  • Acted as a trusted advisor to executive management and IT leaders on technology risk, operational resilience, and cybersecurity strategy.
  • Improved security monitoring and incident management capabilities through the implementation and optimization of enterprise security technologies.
  • Assisted organizations in strengthening governance, compliance, and operational processes through risk-based technology recommendations.
  • Built strong relationships with clients, vendors, auditors, and technical teams to drive successful project outcomes and service delivery excellence.

Education

Bachelor of Science - Computer Science

University of Zambia
Lusaka, Lusaka Province
2017.01 - 2020.12

Master of Science - Information Security and Digital Forensics

University of East London
United Kingdom
2024.01 -

Skills

  • Board and Executive Reporting
  • Security Operations Centre Support
  • Governance Committee Participation
  • Technical Audit Leadership
  • Cybersecurity Program Management
  • Incident Management
  • Business Continuity and Disaster Recovery
  • Vendor and Third-Party Risk Management
  • Enterprise Security Architecture Reviews
  • Technical certifications ISO 27001 and PCI DSS

Languages

English
Fluent
Nyanja
Fluent
Bemba
Fluent

Affiliations

  • Reading , Working out and Jogging

Certification

Professional Certifications

  • ISO 27001 Lead Implementer.
  • ITILv4 Service Management
  • Cloud Security and Management
  • APMG Artificial Intelligence

Knowledge Base

  • CISSP
  • CISA

References

References available upon request.

Timeline

Master of Science - Information Security and Digital Forensics

University of East London
2024.01 -

Information Security Officer (ISO)

First National Bank (FNB) Zambia
2023.01 - Current

Information security analyst

INFRATEL COOPORATION LIMITED -Telcom & Data Center
2021.10 - 2022.12

Cybersecurity Consultant

DIGITAL SAFE LIMITED
2020.06 - 2021.09

Bachelor of Science - Computer Science

University of Zambia
2017.01 - 2020.12
Mike Siame