Information Security Analyst/Consultant

Job Summary:

We are seeking a skilled and dedicated Information Security Analyst/Consultant to join our team. In this role, you will be responsible for advising, assisting, and implementing information security programs for our clients using frameworks such as ISO/IEC 27001:2022 and Cyber Trust Mark, in addition you will also be involve in overseeing the implementation of security solutions to assist clients in improving their information security and cyber security posture. You will work closely with clients to assess their security needs, develop robust security strategies, and ensure compliance with industry standards and are expected to manage client's requirements and expectations during the consulting process helping them to achieve ISO/IEC 27001:2022 or Cyber Trust Mark Certification.

Key Responsibilities:

• Client Advisory and Consultation: Provide pre-sales support, expert advice and consultation to clients on information security practices and strategies.
• Framework Implementation: Assist clients in developing and implementing information security programs using frameworks like ISO/IEC 27001:2022 and Cyber Trust Mark.
• Security Assessments: Conduct comprehensive security assessments to identify vulnerabilities and recommend mitigation strategies.
• Policy Development: Develop and maintain information security policies, procedures, and guidelines for clients.
• Compliance and Auditing: Ensure client compliance with industry standards and regulatory requirements through regular audits and assessments.
• Risk Management: Identify, analyze, and manage information security risks for clients.
• Incident Response: Assist clients in developing incident response plans and provide support during security incidents.
• Training and Awareness: Conduct training sessions and workshops to raise awareness about information security best practices among client employees.
• Documentation: Prepare detailed reports and documentation for security assessments, policies, and compliance efforts.
• Monitoring Emerging Technologies and Threats: Stay up-to-date with emerging technologies and threats in AI, blockchain, and other relevant fields, and integrate this knowledge into security strategies.
• Security solutions: Understand and learn new cybersecurity solutions and assisting to implement these solutions to improve their security posture.

Qualifications:

• Education: Minimum diploma in Cyber Security, Computer Science, or related field and minimum 3 years of experience in IT or Cyber Security field.
• Certifications: Good to have certifications such as CISSP, CISM, or ISO/IEC 27001 Lead Auditor/Implementer, Certified Ethical Hacker.
• Experience: Proven experience in information security consulting, with a focus on implementing security frameworks like ISO/IEC 27001:2022, NIST, CSA Star and CIS.
• Skills: Strong analytical, problem-solving, and communication skills. Proficiency in security assessment tools and methodologies.
• Knowledge: In-depth knowledge of information security principles, standards, and best practices.
• Project management: Understanding of stakeholder management and managing project lifecycle.

What We Offer:

Opportunities for professional development and career growth. A dynamic and collaborative work environment.

Cybersecurity certification training opportunities