Job Description
The role requires attending meetings at client offices, with an average of 8 days per month and up to 2 days per week.
Experience Level Required
* A minimum of 4 years of relevant experience is mandatory.
* CISM (or equivalent), CISSP (or equivalent), or CCSP (or equivalent) qualifications are also required.
Main Responsibilities
* Initial review of the current environment and security framework to provide in-context advice.
* Creation of a defined IT security strategy and roadmap.
* Implementation of the agreed IT security strategy and roadmap.
* Recommendations for improvements to the current security framework, security policies, and cybersecurity strategy.
* Ongoing advice and guidance on information security and cybersecurity.
* Identification of security design gaps in existing and proposed architectures and recommendation of changes or enhancements.
* Assistance with the selection of appropriate cybersecurity technologies, services, and solutions.
* Thought leadership in cybersecurity.
* Maintenance of awareness about the latest cyber security trends, technologies, threats, and solutions.
Key Deliverables
* NIST-CSF, CIS critical controls gaps and risk assessments.
* Review of the current security environment and security framework.
* Creation of an IT security strategy and roadmap.
* Project management of the implementation of the IT security strategy and roadmap.
* Risk Assessment of Microsoft M365 Services.
* Review, design, and implementation of Incident response, business continuity, and disaster recovery processes.
* Assessment of Threat and vulnerability management and patch management.
* Information security controls implementation and maintenance.
* Development and management of the IT Risk Register.