The Sigmatak Team
Sigmatak’s consultants bring over 25 years of combined expertise in cybersecurity, risk, and compliance—supporting clients across Europe and the Middle East.
Our team includes recognised leaders with experience across sectors including finance, government, energy, and healthcare. Each consultant is hand-picked for their ability to deliver in complex, regulated environments.
Certified across frameworks such as ISO 27001, NIST, CISSP, and CISM, we offer strategic, hands-on support that delivers measurable outcomes—helping you strengthen resilience and move beyond compliance.
Tahir Alvi
Director Europe and Middle East
Tahir brings over 20 years of experience in information security and risk management, with a strong track record across energy and telecoms. He specialises in IT security consultancy, leadership, legal and regulatory compliance, SOX, data privacy, and control design. Tahir is known for aligning security programmes with business strategy to deliver measurable outcomes.
Pavithra V
Director India
Pavithra brings over 12 years of leadership in governance, risk, and compliance, specialising in ISO 27001, GDPR, vendor risk management, and cloud security (CCSK, CCAK). She has successfully led large-scale compliance initiatives, centralised reporting programmes, and operational security frameworks. Drives innovation and resilience across complex, multi-regional information risk environments.
Betania Allo
Cyber Law & Policy Consultant
A Harvard-educated tech lawyer with 13+ years of experience, Betania advises on cybersecurity law, RegTech, and digital policy across the Gulf. She has held leadership roles at NEOM, the UN, WEF, and OAS, with a focus on regulatory strategy, innovation-friendly frameworks, and compliance in high-growth environments. Her expertise includes KSA policy, cross-border advocacy, and stakeholder engagement.
Asaf Chaudhry
Sr. Cyber Security Advisor
With 27+ years of experience, Asaf has led security programmes across finance, legal, aviation, space, and telecoms. He specialises in governance, cloud security, threat intelligence, and DevSecOps, with deep expertise in Azure, AWS, GCP, Zero Trust, PAM, SIEM, and IAM. Asaf has managed large teams and delivered enterprise-wide security aligned with ISO 27001, NIST, GDPR, NIS2, and IEC 62443.
Paul Bedford
Sr. Information Risk Management Consultant
Paul has 20+ years of experience delivering critical systems and ten years focused on information risk. He has supported clients in sectors including government, retail and commercial banking, publishing, oil, utilities, and insurance. Paul excels at bridging technical implementation with strategic risk frameworks, ensuring resilience across complex operating environments.
Usman
Sr. Information Risk Management Consultant
Usman brings 15+ years of experience in information risk and cybersecurity. He has led projects in fintech, utilities, and telecoms. His expertise includes developing risk frameworks, implementing controls, conducting third-party assurance, and addressing data privacy challenges. He is known for his methodical approach to building sustainable security capabilities within fast-paced organisations.
Syed Ali
Sr. Cyber Security Consultant
Syed offers 10+ years of cybersecurity experience across banking, FMCG, and consulting. He specialises in cyber operations, incident response, security testing, engineering, and awareness programmes. With a practical mindset and strong technical acumen, Syed supports clients in strengthening their security posture and responding effectively to evolving threats.
Kashif Barlas
Sr. GDPR Consultant
Kashif brings 15+ years of experience in data privacy. Guiding insurers, retailers, healthcare providers, transport authorities, utilities, and charities through complex GDPR obligations. He excels in gap analysis, remediation roadmaps, and stakeholder training—reducing regulatory exposure while embedding privacy by design and strengthening overall information governance.
Nabil Fayyaz
Graduate Cyber / SOC Analyst
Nabil is a Cyber/SOC Analyst and Royal Holloway MSc Information Security graduate who monitors and defends multi-site healthcare networks. He blends academic rigour with hands-on expertise in network hardening, log analysis, and GDPR governance, delivering clear communication, rapid incident response, and pragmatic security improvements for dynamic environments.