Primary Objectives Of The Job
The position will be primarily responsible for implementation of ISO 27001:2013 standard for clients.
Key Performance Indicators
- Experience in ISO 27001 control verification and compliance: Assist Clients to get ISO 27001 certification by identification and implementation of appropriate controls in the ISO Audit scope
- Conduct Risk assessment of activities and coordinate with stakeholders till closure signoff / risk acceptance.
- Define, Develop and review information security policies, procedures, guidelines, forms and templates as per best practice
- Create and review baseline standards for OS, Database, webservers and applications and recommend improvements
- Support post implementation and continuous audits for ISO 27001:2013 and ensure compliance.
- Create organizational information security awareness program and conduct awareness.
- Assist and recommend measures to ensure compliance with Security standards (ISO, NIST, CIS, PCI DSS etc) or any best practices.
Skills
Information Technology and/or Cybersecurity skills:
- Information Technology and/or Cybersecurity skills a solid IT foundation, ability to communicate technical information verbally and through written documentation,
- Knowledge of security areas such as auditing, policy, database security, firewall design and implementation, risk analysis, identity management, access management, or web services is preferred
Presales Skills
Excellent communication, problem-solving, client-facing, ability to work as a team
Competence
- ISO 27001 / Cybersecurity Certifications.
- Willingness to obtain the Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) designations
