Lumena Advisory & Consultancy
Empowering Growth, Building Resilience, Navigating Global Markets
Lumena Advisory & Consultancy is a bespoke Dubai-based firm specializing in providing comprehensive solutions in Risk Management, Business Resilience, Security, Compliance, and Legal advisory, as well as strategic growth planning and digital transformation. With over 25 years of global expertise across diverse industries, we cater to businesses of all sizes and stages, helping them navigate today’s complex regulatory and operational landscapes.
Led by CEO Bapsy Dastur, an industry veteran recognized for her extensive legal and compliance background with multinational giants like General Electric and ABB, our team is committed to delivering tailored, data-driven strategies for market expansion, operational optimization, and enhanced customer experiences. Our services include startup mentorship, global market expansion, business development, and compliance, risk and business resilience advisory services, empowering businesses to grow efficiently and sustainably.
At Lumena, we blend innovation with practical insights to build systems, processes, and policies that support our clients' growth initiatives while fostering resilience in an ever-changing global market. Whether you're looking to optimize operations or expand globally, our expert team is here to guide your success.
Bapsy Dastur - Chief Legal, Risk & Compliance Officer
Risk Management, Business Resilience, Data Security, Compliance & Legal
Professional Experience
- Over 25+ years global legal, compliance and risk practice with multinationals such as General Electric, GE Capital, ABB and Grindlays Bank. Practice across the Middle East, South East Asia, South Asia, Africa, Australia, Europe, UK, USA.
- Diverse industry experience including Energy, Oil and Gas, Logistics, Transportation, Terminals, Maritime, FMCG, Infrastructure, Construction, Banking, Financial, Services, Travel, Medical Systems and Visa-related services.
- Key practice areas include Mergers & Acquisitions, Project Finance, Operations, Transactional, Risk Management and Compliance.
- Established and managed compliance, risk and legal functions building systems, policies, processes, and empowering teams.
- Established the VFS Women’s Network, the GE Women’s Network (Middle East), and the GE Ombudsperson Network.
- Represented the private sector to participate with member country representatives at the OECD diversity and women’s equality in Paris-2019.
- Judge for Women of Achievement Awards, International Women in Compliance Awards, and Middle East Legal Awards.
- Recognized in the Legal 500 GC Powerlist Middle East 2022 and 2023.
- Recognised as one of the Top 100 Lawyers in the Middle East in 2015.
- Recognised as one of the World leading General Counsel in 2017.
- Additional qualifications include the MDC (Manager Development Course), GE Crotonville, USA, and Executive Leadership Programs, IMD Switzerland.
- Six Sigma Certified Professional.
- Qualified Solicitor, Bachelors degree in Commerce and Economics, Bachelors Degree in Law.
Business Resilience Services
Resilience Solutions
Our solutions empower organizations to anticipate, adapt, and thrive amidst disruptions through strategic resilience planning, predictive risk intelligence and robust risk management frameworks.
Resilience Program Management
- Current State and Gap Analysis against ISO 22301, NFPA 1600, DRI or BCI Practices
- ISO 22301 Certification and Program Management
- Internal Audit, Review & Handholding
Supplier Resilience
- Supplier/Partner Ecosystem Review and KPI Measurement
- Third Party Risk Management (TPRM) Resilience Consulting
- Formulation of Supplier Resilience Plans
- Ongoing Risk Management
Training, Certification and Awareness
- Senior Leadership Programs on Resilience Strategy
- Focused Internal Certification Programs on ISO 22301, ISO 31000 Standard
- Organization Specific Training and Awareness Campaign Development and Execution
Governance, Risk & Compliance (GRC)
- Preparing a Framework for Policies and Processes to ensure Compliance focus and Implementation
- Embedding Resilience - Solution Identification, Assessment and Deployment
- Conduct Testing and Audit to test Resilience, Responsiveness and Effectiveness of implementation
Proactive & Predictive Risk Intelligence
- 360 Threat Landscape Review & Consulting
- Resilience Command Centre (RCC) Setup & Solutioning for Predictive Risk Intelligence
- Crisis Command Centre (CCC) Setup & Solutioning for Emergencies/Crisis situations
- Managed Resiliency Services (MaRS)
Crisis Management
- Review and Deployment of a Crisis Management Framework
- Crisis Management Workshops, Simulations and Testing
- Crisis Communications - Media Handling and PR during a Crisis
Business Audit Services
Audit Program Management
Our expert audit solutions, ranging from thorough security and compliance assessments to operational and risk management audits, ensure that your organization meets the highest standards of integrity and performance
Resilience Program Management
- Current State Assessment and Audit Policy and Framework Design
- Audit gap analysis against leading standards such as COSO, COBIT, ISO 19011, ISO 27001 and GAAS
- Audit Program Implementation Support and Change Management
Audit Process Outsourcing or Outstaffing
- End-to-End Audit Lifecycle management, delivering high end audits with accountability and transparency
- Bespoke audit and human capital solutions for staffing needs or staff augmentation
- Remote/Virtual Audit Management with specialised resources
Specialized Audit Solutions
- Internal Audits: Evaluate Internal Controls, Risk Management and Governance
- Regulatory Compliance Audits: Ensure adherence to laws and regulations, identify gaps, and recommend corrective actions
- Operational Audits: Review processes for efficiency, effectiveness, and goal alignment
Physical and Corporate Security Audits
- Physical Security and Risk Assessments
- Loss Prevention audits focusing on shrinkage and clear returns
- Supply Chain Audits based on TAPA, C-TPAT, AEO and ISO 28000 standards
- Third Party Risk Management Audits
- Integrity Checks and Mystery Audits
Audit Digitization and Workflow Management
- Audit workflow, engagement, work paper and control digitization with GRC Solutions
- Audit traceability with approval and artefact management
- Self-assessment audits and assurance
- Audit data visualization, analytics, dashboards and MIS report creation