Security Consultant

Development, implementation, operation and enhancement of the organisation’s information security systems and processes. You will implement and manage security projects that form part of the information security improvement and information security audit programmes.

Responsibilities:

  • Performing compliance based activities around organizational ISMS, PCI DSS and ISO 27001
  • Performing Threat Risk Assessments and Security Reviews
  • Liaise with clients both in person and remotely
  • Ability to plan and scope customer engagements
  • Contributing to the building of business processes
  • Writing and delivering technical reports and documentation
  • Reporting to the team lead and managers
  • Maintaining and improving audit methodologies
  • Developing custom tools to be used during engagements

Qualifications and Skillsets:

  • Broad information security experience across multiple disciplines
  • Solid technical background across range of network, system and application architectures
  • PCI QSA (current or previous) with demonstrated experience in conducting assessments
  • Minimum of 5 years of experience in consulting, auditing, assessment
  • Demonstrated experience in several of the following:
    • Conducting Risk Assessments
    • Implementing or auditing ISO 27001
    • Implementing or assessing against the ISMS
    • Security Architecture
    • Secure Software Development Lifecycle
  • It is desirable that you have at least one of CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor/Implementer