Summary
Overview
Work history
Education
Skills
Websites
Professional Engagements & Industry Involvement
Certification
Timeline
Generic

MIHEER HOSGERI KARNAM

Birmingham,United Kingdom

Summary

IT & Information Security Manager with responsibility for safeguarding information assets, managing IT operations, and delivering governance, risk, and compliance within a regulated UK environment. Proven experience in leading ISO 27001:2022, Cyber Essentials, ISO 9001, and GDPR compliance, including audit support, incident response, and security governance. Works closely with development teams to embed security-by-design into in-house platforms such as ERP and fleet management systems handling sensitive and personal data. Experienced in supporting local authority and public-sector contracts, with a pragmatic, business-focused approach to protecting confidential information and ensuring operational resilience.

Overview

4
4
years of professional experience
2045
2045
years of post-secondary education
1
1
Certification

Work history

IT & Information Security Manager

AFJ Ltd
Birmingham, West Midlands
09.2023 - Current
  • Own the organisation’s information security, data protection, and GRC posture, aligned with ISO 27001:2022, Cyber Essentials, and GDPR.
  • Successfully led and achieved Cyber Essentials certification for the organisation.
  • Led the implementation and achievement of ISO 27001 certification, establishing and maintaining the ISMS.
  • Contributed to achieving ISO 9001 certification by aligning IT, security, and operational processes with quality management requirements.
  • Lead governance, risk assessments, compliance activities, and audit support, including policy management, risk registers, and evidence tracking.
  • Act as primary incident response lead, coordinating investigation, remediation, and reporting.
  • Oversee security tooling and infrastructure, including endpoint protection, monitoring, and logging (EDR/XDR, SIEM concepts).
  • Manage IT infrastructure, systems, and day-to-day operations, ensuring availability, resilience, and secure access.
  • Work closely with in-house development teams to design and deliver secure internal software platforms, including ERP and fleet management systems.
  • Embed security-by-design and GDPR principles into internally developed systems handling driver data, personal data, and sensitive operational information.
  • Ensure organisational GDPR compliance, including lawful data processing, access controls, retention, and data protection practices.
  • Support compliance requirements for local authority and city council contracts, ensuring systems and processes meet data protection and security expectations.
  • Work with legal, HR, operations, and development teams to ensure secure handling of confidential and classified information.
  • Deliver security awareness training and policy guidance across the organisation.
  • Lead and support the IT team, ensuring project delivery, system stability, and network uptime.

Associate Software Engineer

Rakuten
Bangalore
08.2022 - 12.2022
  • Worked as part of an agile development team to design, develop, and maintain web-based software solutions.
  • Contributed to front-end and back-end development using HTML, CSS, JavaScript, and SQL.
  • Supported development of scalable and maintainable application components following coding standards and best practices.
  • Assisted with database design, queries, and data handling, ensuring data accuracy and performance.
  • Collaborated closely with senior engineers, QA, and product teams to deliver features on schedule.
  • Participated in code reviews, testing, and debugging, improving application stability and reliability.
  • Gained exposure to secure coding practices and software development lifecycle processes.


Technical Intern

NANO ROBOTICS EMBED TECHNOLOGIES
Bangalore
10.2021 - 11.2021
  • Programming and implementing software for embedded devices. Solid program experience in C.
  • Hands on development and troubleshooting with embedded targets.
  • Interface with hardware design and development.

Education

Master of Science - Cyber Security

Birmingham City University
Birmingham, BIR
04.2001 - 01.2024

Bachelor of engineering - Computer Science

Visvesvaraya Technological University
Bangalore, India

GCSEs & A levels - Computer Science

Kendriya Vidyalaya Hebbal, CBSE
Bangalore, India

Skills

    Information Security, GRC & Compliance

  • Information Security Management (ISMS)
  • Governance, Risk & Compliance (GRC)
  • ISO 27001:2022, Cyber Essentials & Security Standards
  • GDPR & Data Protection Compliance
  • Risk Assessment, Mitigation & Control Design
  • Audit Support, Evidence Management & Remediation Tracking
  • Security Policies, Procedures & Controls


    • Security Operations

  • Incident Response & Security Investigations
  • Vulnerability Analysis & Management
  • Endpoint Security (EDR/XDR)
  • Security Monitoring & Logging (SIEM concepts)
  • Cybersecurity Awareness & Training
  • Access Control & Network Security Fundamentals


    Technology, Systems & Secure Development

  • Secure IT Systems & Infrastructure Management
  • In-house Software, ERP & Fleet Management Systems
  • Secure-by-Design & GDPR-by-Design Principles
  • SQL
  • HTML, CSS, JavaScript
  • Microsoft Office & Security Documentation


    • Leadership & Professional Skills

  • Leadership & Stakeholder Communication
  • Cross-functional Collaboration (Legal, HR, Ops, Dev)
  • Critical Thinking & Problem Solving
  • Time Management & Prioritisation
  • Multilingual Communication

Websites

Professional Engagements & Industry Involvement

  • Invited Speaker – Cyber-Intelligent Infrastructure, London (2026)
  • Industry Panellist & Judge – Birmingham City University Innovation Festival (2025)
  • Company Supervisor – Knowledge Transfer Partnership (KTP), Innovate UK (2024)

Certification

  • ISC2 – Certified in Cybersecurity (CC) (Self-paced training)
  • Cybrary – IT & Cybersecurity Foundations
  • GDPR & Data Protection Training
  • Advance Your Cybersecurity Career – Henri Davis
  • Agile Fundamentals
  • Microsoft – Cross-Platform Mobile Application Development
  • Practical Python
  • HTML5

Timeline

IT & Information Security Manager

AFJ Ltd
09.2023 - Current

Associate Software Engineer

Rakuten
08.2022 - 12.2022

Technical Intern

NANO ROBOTICS EMBED TECHNOLOGIES
10.2021 - 11.2021

Master of Science - Cyber Security

Birmingham City University
04.2001 - 01.2024

GCSEs & A levels - Computer Science

Kendriya Vidyalaya Hebbal, CBSE

Bachelor of engineering - Computer Science

Visvesvaraya Technological University

Similar Profiles

Create profile
MIHEER HOSGERI KARNAM