Summary
Overview
Work history
Education
Skills
INDUSTRY EXPERIENCE
Certification
Timeline
Generic

Paul Leach

Manama,Kingdom of Bahrain

Summary

Accomplished Principal security architect with expertise in security architecture and governance, PKI and cryptography, and cloud security strategy. Proven track record in digital transformation, zero trust architecture, and compliance with NIST CSF, ISO 27001, and PCI-DSS standards. Adept at enterprise SIEM and network security, team building and mentorship, as well as providing board-level advisory. Skilled in vendor management, risk management, budget oversight, and programme delivery. Committed to advancing organisational security posture through innovative strategies and effective leadership.

Overview

25
25
years of professional experience
1
1
Certification

Work history

PRINCIPAL SECURITY ARCHITECT

Saudi Aramco
Dhahran, Saudi Arabia
2016.01 - 2026.04
  • Architected and embedded enterprise-wide Security Architecture function from inception; established governance processes, reference architecture frameworks, and security design standards adopted across 150+ enterprise projects
  • Directed Google Cloud Platform migration strategy and implementation; principal security architect managing full technical and compliance roadmap for multi-billion-dollar transformation
  • Led Smart City & Cloud Transformation program; developed cloud adoption strategy and directed SWIFT modernization with strategic negotiations with Google and Zoom on enterprise security requirements
  • Designed NIST CSF/CMMI maturity assessment framework; conducted baseline assessments and roadmap planning for enterprise-wide security maturity improvement
  • Built and mentored team of security architects; provided strategic advisory to senior leadership and executive steering committees

SECURITY ARCHITECT

Lloyds Banking Group
Manchester
2014.05 - 2015.12
  • Delivered security architecture consultancy across PKI transformation, SSH key management, SWIFT upgrade, and Faster Payments programs supporting 200,000+ daily transactions
  • Architected PKI-based solutions ensuring regulatory compliance (PCI-DSS, FCA) across retail banking environment
  • Collaborated with C-level steering committees (CIO, CTO) on strategic security initiatives

PRINCIPAL SECURITY ARCHITECT

Huawei Technologies
Shenzhen
2013.01 - 2014.05
  • Owned security strategy for Managed Services business unit; architected and deployed Global Network Operations Centre (GNOC) security design across Romania and India
  • Established SIEM, firewall, encryption, and DDoS mitigation strategies supporting 6+ regional operations and 500+ managed enterprise customers
  • Built and managed team of 6 security architects; set performance objectives and delivered mentorship; achieved 100% team retention during tenure

LEAD SECURITY ARCHITECT

Co-operative Banking Group
Manchester
2010.09 - 2012.12
  • Led enterprise infrastructure security transformation (IaaS/SaaS); architected end-to-end PKI delivery supporting 50+ branch locations and 10,000+ users
  • Directed vendor selection and negotiations (IBM, Cisco, BT); managed $2M+ security infrastructure budget
  • Served as security subject matter expert (SME) to CIO/CTO steering committees; provided strategic advisory on security roadmap and compliance strategy
  • Mentored 4 junior security professionals; 3 advanced to architect-level roles

SENIOR NETWORK SECURITY ENGINEER

Clearstream International
2001.01 - 2006.01
  • Architected and managed enterprise PKI infrastructure over 5-year period supporting 20+ financial institutions and 500+ trading partners
  • Led regional firewall migration program across 8 European data centers; achieved 99.99% uptime during implementation
  • Contributed to Luxembourg government national digital ID system utilizing PKI and smart card technologies; supported regulatory compliance for secure identity verification

Education

BA (Hons) - Psychology

University College Cork
Cork, Ireland
2001.04 -

Skills

  • Security Architecture & Governance PKI & Cryptography Cloud Security Strategy
  • Digital Transformation Zero Trust Architecture NIST CSF ISO 27001 PCI-DSS
  • Enterprise SIEM & Network Security Team Building & Mentorship Board-Level Advisory
  • Vendor Management & RFI/RFP Risk Management Budget & Program Delivery

INDUSTRY EXPERIENCE

  • Oil & Gas
  • Financial Services
  • Telecommunications
  • Government
  • Technology

Certification

  • CISSP
  • CISM
  • CCSK
  • CEH
  • GCED
  • ITIL v3
  • Zero Trust Architecture

Timeline

PRINCIPAL SECURITY ARCHITECT

Saudi Aramco
2016.01 - 2026.04

SECURITY ARCHITECT

Lloyds Banking Group
2014.05 - 2015.12

PRINCIPAL SECURITY ARCHITECT

Huawei Technologies
2013.01 - 2014.05

LEAD SECURITY ARCHITECT

Co-operative Banking Group
2010.09 - 2012.12

BA (Hons) - Psychology

University College Cork
2001.04 -

SENIOR NETWORK SECURITY ENGINEER

Clearstream International
2001.01 - 2006.01

Similar Profiles

  • Ali A. AqelAli A. Aqel

    Principal Cloud Security Architect at Centene Corporation, Inc.Principal Cloud Security Architect at Centene Corporation, Inc.

  • APPAKUTTY E. KALAINESANAPPAKUTTY E. KALAINESAN

    Senior Principal Application Security Architect | IoT Product Security Lead at OWL LABS INC.Senior Principal Application Security Architect | IoT Product Security Lead at OWL LABS INC.

  • Sid TalebSid Taleb

    Senior Enterprise Security & Cloud Architect at Air CanadaSenior Enterprise Security & Cloud Architect at Air Canada

  • Rajesh SabbaniRajesh Sabbani

    AWS Cloud Security / Solutions Architect at Nielsen HoldingsAWS Cloud Security / Solutions Architect at Nielsen Holdings

Create profile
Paul Leach