Job Title:  T&T|Cyber|CST|Consultant | Certified Information Security Manager (CISM)

Work you’ll do

·      Work independently to lead and complete high quality cyber security assessments.

·      Conduct comprehensive cyber security assessments for clients and their partners, ensuring risks are identified, mitigated, and tracked to closure.

·      Preparing cyber security assessment reports.

·      Work closely with internal management/team and client business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent assessment of risks by following a structured risk assessment methodology.

·      Driving the efforts to identify, assess, and communicate the cyber security risks to relevant-internal and external stakeholders.

Skills Required:

·      3-5 years of experience in cyber security assessments

·      Minimum of 1 security certification

·      Foster collaborative relationships with stakeholders to facilitate cyber security assessments

·      Leverage expertise across diverse security domains, including Identity and access management, physical security, data security, network and endpoint security, application security, server protection, logging/monitoring, resiliency etc.

·      Understanding of Zero trust principle, security technologies and controls:

Identity and Access Management, Data Security, IDS/IPS, SIEM, web application firewall, cryptography etc.

·      Should have conducted cyber security assessments, and technical control evaluation as per industry best practices

·      Familiarity with industry-leading standards and frameworks such as ISO 27001, NIST, PCI-DSS benchmarks to help clients adhere to compliance requirements

·      Practical experience with regulatory compliance and cyber risk assessment processes

·      Experience in configuration reviews of server operating systems and network devices, ensuring adherence to hardening benchmarks and baseline security standards.

·      Experience with security tools and services

·      Strong documentation skills, with the ability to create and refine security policies, standards, and SOPs.

·      Knowledge and experience of Risk Management Lifecycle (Risk Identification, Risk Assessment, Risk Response, & Reporting)

·      Excellent written and communication skills

·      Strong sense of ownership, urgency, and drive

·      Should have the ability to work independently and in a team environment

Qualifications/Experience:

·      Bachelor’s degree preferred in Computer Science, Information Security, Information Technology, Engineering

·      Cyber security certifications – CISA, CISSP, CISM

·      Minimum of 3-5 years of working experience in Cyber Security Consulting with proficiency in cyber risk assessments

Should have played a role in client engagements