Adhere to the highest degree of professional standards and strict client confidentiality.
Support execution of assigned client engagements from start to finish, which includes the working on the deliverables independently, in collaboration with the client, engagement planning, directing, and completion of IT security assessments and Information Security architectural design and deployments.
Apply current knowledge of technology and cyber trends and to identify security and risk management issues and other opportunities for improvement.
Assist clients in planning and executing remediation plans identified in assessment activities.
Work with the client to plan an engagement strategy, define objectives, and address technology- related controls risks and issues.
Proactively interact with key client management to gather information, resolve problems and make recommendations for improvements.
Identify and pursue new business opportunities, and lead client/market development
Participate in professional development activities and training sessions on regular basis.
Other job duties as assigned.
You have the following technical skills and qualifications:
Minimum Year(s) of Experience: 10+ years.
Bachelor’s degree in Information Technology, Computer Science or a related field is required.
Masters in cybersecurity, Information system or business administration is preferred.
Minimum one Certification(s) Required: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA, Certified in Risk and Information Systems Control (CRISC)
Consulting experience preferred
Complete understanding of Industry Standards/frameworks such as COBIT, NIST, ISO 27001, and PCI-DSS etc. is necessary.
Expertise in setting up and running BC-DR Program in client environment.
Demonstrate proven and extensive abilities solving complex cyber-risk management issues, including the following areas:
Design and development of IT Risk and Cyber security programs using industry frameworks and methodologies
Designing Kris and metrics to build risk reports for management
Implementation and maintenance of enterprise-wide cyber risk governance frameworks
Assessment of enterprise-wide business risks and cyber threats
Development of detailed business risk scenarios and cyber threat models
Design and implementation of cyber risk management controls
Monitoring and reporting of cyber risks, threats and vulnerabilities
Development, implementation and periodic testing of cyber resiliency plans
Use of tools and technology to provide data analytics and business intelligence noncyber threats, risks and vulnerabilities
Advising clients on complying with regulatory requirements such as FFIEC, GLBA, NY Dissect. as well as industry frameworks such as NIST CSF, COBIT, COSO and PCI
Building and operationalizing complex IT risk management and cyber security programs for clients.
Strong analytical skills and problem-solving approach.
Take ownership of your work, by performing self-reviews of all work performed.
Produce high quality deliverables on client engagements requiring little re-work. Ensure they are on-time and well organized.
Ability to deal with ill-defined problems and propose coherent solutions for the client.
Manage the team comprising of seniors and associates and maintain professionalism across team.
Apply current knowledge of IT trends and systems processes to identify security and risk management issues and other opportunities for improvement.
Assist clients in developing and executing risk management activities.
Participate in clients call as Security SME, provide solutions best fitted to the requirement and in line with the Industry best practices.
Be regarded as Information Security SME in the firm for operational and proposal assistant.
Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Demonstrated new business development experience
Ability to work additional hours and travel to clients as required.
Travel may be required to meet the needs of the clients.