发布 Sep 06, 2023 304 查看
About us: We are a fast-growing company and industry leader in Security testing, governance risk management, compliance, and privacy. Founded in 2019.
Job Description: As an Information Security Consultant, you will be responsible for assessing and improving the security posture of our organization or clients. You will work closely with stakeholders to identify security risks, develop strategies for mitigating these risks, and implement security solutions to protect sensitive information and systems. This role requires a deep understanding of information security principles, industry best practices, and the ability to communicate complex technical concepts to non-technical stakeholders.
Key Responsibilities:
Security Assessment:
- Conduct comprehensive security assessments, vulnerability assessments, and penetration tests to identify weaknesses in information systems, networks, and applications.
- Analyze security policies, procedures, and practices to ensure compliance with industry standards and regulations.
Risk Management:
- Evaluate and prioritize security risks based on the potential impact on the organization.
- Develop risk mitigation strategies and action plans to address identified vulnerabilities.
Security Architecture:
- Design and implement security architecture and solutions, including firewalls, intrusion detection systems, encryption, and access controls.
- Recommend and implement security best practices to protect data and systems.
Security Awareness:
- Provide security awareness training and guidance to employees and stakeholders to promote a culture of security.
- Stay up-to-date with emerging threats and vulnerabilities and communicate them to relevant teams.
Incident Response:
- Develop and maintain an incident response plan to address security incidents and breaches promptly.
- Lead incident response efforts, including containment, investigation, and recovery.
Compliance and Auditing:
- Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, and NIST).
- Prepare for and participate in security audits and assessments.
Client Engagement:
- Collaborate with clients to understand their unique security requirements and provide tailored solutions.
- Communicate findings, risks, and recommendations to clients effectively.
Documentation:
- Maintain detailed records of security assessments, findings, and remediation efforts.
- Prepare clear and concise reports for management and clients.
Continuous Improvement:
- Stay current with the latest security technologies, trends, and threats.
- Propose and implement security enhancements and process improvements.
Requirements:
- A bachelor or master's degree.
- 2-10 years of experience in software development.
- Ability to respond to a variety of Compliance issues (PCI-DSS, GDPR, ETC).
- IT Security/Audit Certifications (CISSP, CISA, CISM).
- Proficiency in [List relevant programming languages and technologies].
- Strong problem-solving skills and the ability to work independently or in a team.
- Excellent communication skills, both written and verbal.
技能
Cygrassive Technology Solutions (SMC-Private) Limited
相同职位头衔
Ali Aziz
CEO
Shopistan
Sehrish Azhar
Motivational Speaker & Blogger
Living Upbeat
Ayesha Shaukat
Social Media Marketing Manager
Ivoke
Usman Habib
Recruitment & Training Executive
ACS Synergy (Pvt) Ltd.
Zohaib Ali
Marketing Manager
Digital Online Devices
Zubair Anjum
Business Excellence Specialist
Nestle Pakistan
Mona Sharif
Senior Team Lead
Konext PVT. LTD
Babar Ahmed Khan
Territory Sales Manager
Engro Foods
Muzammil Baig
Digital Marketing Manager
IT Services Group
Aqib Irshad
Head of HR, Training & OD
FINCA
