Amal Wickramasinghe is a highly accomplished cybersecurity and data privacy leader with over 15 years of cross-industry experience spanning banking, telecommunications, IT services, e-commerce, digital health, and fintech. Known for his strategic foresight and technical precision, Amal has consistently driven cybersecurity and privacy programs that not only align with but also elevate enterprise resilience and regulatory readiness.
Amal specializes in Governance, Risk, and Compliance (GRC) and is skilled in developing and implementing frameworks based on global standards such as ISO 27001, ISO 27701, BS 10012, NIST CSF, NIST Data Privacy Framework, ISO 31000, and COBIT 5. With extensive experience in implementing ISO/IEC 22301 for Business Continuity Management Systems (BCMS) in the telecommunications sector, Amal designs resilient operational models, conducts business impact analyses, and aligns strategies with regulatory expectations. This expertise ensures organizational resilience and compliance in critical infrastructure.
Currently serving as Head of Governance, Risk & Compliance – Group Cybersecurity and Data Privacy at Axiata Group, Amal plays a mission-critical role in leading cybersecurity and privacy GRC across multiple operating companies and jurisdictions. In addition to his core mandate, he also leads the Offensive Security and Vulnerability Management functions, ensuring a converged approach to both proactive and preventive cybersecurity measures.
Over the past 2.5 years at Axiata, Amal has spearheaded numerous initiatives ranging from group-wide maturity assessments and control assurance programs to regulatory compliance readiness and audit engagements with national regulators. His ability to translate complex technical challenges into strategic board-level conversations has made him a trusted advisor to senior leadership and audit committees alike.
With a track record of fostering risk-aware cultures, streamlining third-party risk governance, and embedding resilience across business functions, Amal continues to be a driving force in securing Axiata’s digital future and enabling its vision as a NextGen Digital Champion.