our work profile
As a practitioner in our Cyber Team, you'll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -
- ISMS or Third-Party Risk Assessments.
- Ability to effectively liaise with clients and manage stakeholder expectations.
- Work with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations
- Conducting risk assessments and audits with respect to people, process and technology
- Identification of gaps/observations, risks, opportunities and improvement of policies, processes, procedures and standards
- Documenting information security risk, recommendation and compensating controls in the form of assessment/audit reports
Desired qualifications
- Cyber TPRM experience ranging from 1 year to 7yrs is mandatory. Levels being hired for: Analyst, Senior Analyst, Consultant, AM, DM
- Relevant years of experience in IT Audits, Cloud security
- Experience with ISO22301 implementation and audits
- Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment
- Understanding of Third party/vendor/supplier risk management considerations
- Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management
- Excellent written/verbal communication
- Excellent documentation and presentation skills
- Highly motivated and willing to work in local and global environments
- Security certifications like CISSP, CISA, CISM, CEH, ISO27001
- Work experience in Infrastructure / Application Security
- Work experience in IT Audit
- Work experience in Information Risk Management
