Job Description
We are seeking an experienced and skilled Security Consultant to join our team. The ideal candidate will be responsible for providing expert guidance and support in the implementation and management of Information Security Management Systems (ISMS), ISO 27001, and PCI DSS standards. Additionally, the role includes overseeing IT Service Management (ITSM) processes to ensure comprehensive security and compliance across our organization.
ISMS Implementation
Roles & Responsibilities :
- Develop, implement, and manage the Information Security Management System (ISMS) in alignment with organizational policies and objectives.
- Conduct risk assessments and manage risk treatment plans.
- Establish and maintain security policies, procedures, and controls.
ISO 27001 Implementation
- Lead the implementation and certification processes for ISO 27001.
- Perform gap analysis to identify areas for improvement and compliance.
- Conduct internal audits and coordinate external audits to ensure adherence to ISO 27001 standards.
- Provide training and awareness programs to staff on ISO 27001 requirements and best practices.
PCI DSS Implementation
- Oversee the implementation and compliance of Payment Card Industry Data Security Standard (PCI DSS).
- Conduct assessments and remediation of PCI DSS requirements.
- Work closely with IT and business units to ensure cardholder data is protected and compliance is maintained.
IT Service Management (ITSM)
- Implement and manage IT Service Management processes to align with business and security objectives.
- Ensure the integration of ITSM processes with security frameworks.
- Monitor and improve ITSM processes to enhance service delivery and security posture.
Consultancy And Advisory
- Provide expert advice on security best practices, emerging threats, and compliance requirements.
- Develop security strategies and roadmaps tailored to client needs.
- Support clients in the development and implementation of security architectures.
Project Management
- Lead security projects from initiation to completion, ensuring timely delivery and within budget.
- Coordinate with cross-functional teams to achieve project objectives.
- Track and report on project progress, risks, and issues.
Documentation And Reporting
- Maintain comprehensive documentation of security policies, procedures, and controls.
- Prepare detailed reports and presentations for stakeholders on security status, risks, and compliance.
Training And Awareness
- Conduct security training sessions and workshops for employees and clients.
- Promote a culture of security awareness and compliance within the organization.
Qualifications Required
- Professional certifications such as CISSP, CISM, CISA, ISO 27001 Lead Implementer, or PCI QSA are highly desirable.
- Proven experience in implementing and managing ISMS, ISO 27001, and PCI DSS.
- Strong knowledge of ITSM frameworks and best practices.
- Bachelor’s degree in Computer Science, IT, Cybersecurity, or equivalent experience.
- 5+ years of experience in a ISMS.
- Proficiency in ISMS Implementation.
- Excellent analytical and communication skills.
Share with someone awesome
View all job openings
