Job Title: ISO 27001 Lead Implementer
Experience: 4-5 years of genuine experience
Education: Bachelors/ Masters in Computer Science or Information Technology
Certifications: ISO 27001 Lead Implementer, CISA, CISM, CISSP
Travel: Flexible for business trips to the Middle East (for the duration of the project)
Overview:
We are looking for a candidate to work in a consultancy environment and deliver the ISMS implementation project. The candidate is preferred to have Big4 or any other recognized consulting environment. This is a client facing role so the candidate is supposed to have genuine experience in handling the project in a very professional environment. This role requires travel to the Middle East to deliver the project at client premises. This is an excellent opportunity for professionals who like to progress in their career and get international exposure.
Job Description:
- Support the organization to effectively plan, implement, manage, monitor and maintain the ISMS;
- Define the clear scope of ISMS;
- Perform project planning by defining activity level tasks with required timeline and efforts;
- Define risk management methodology in line with ISO 27001;
- Perform Risk Assessment as per the risk management methodology;
- Define and implement Risk Mitigation Plan;
- Prepare Statement of Applicability;
- Define and implement security Policies and Procedures;
- Define and implement security controls;
- Provide security awareness training to all relevant stakeholders;
- Create and update the hardening checklist;
- Perform ISMS audit;
- Work closely with the VAPT team;
- Coordinate during the certification process.
Technical Skills:
- Technical knowledge of information security compliance (ISO27001), information management and IT security arrangements;
- Strong understanding of ISO27001 Framework and preferably the interest in Data Protection/GDPR;
- Working knowledge of operational security
- Knowledge of security controls implementation
- Knowledge of key technologies i.e. networks, systems, storage, virtualization, etc.
- Have practical experience in undertaking ISO 27001 internal and external (field) audits;
- Experience of business transformation and change;
- Confidence in communicating with key stakeholders;
- Ability to explain complex ideas in a concise manner;
- Ability to audit against ISO 27001 security requirements;
- Ability to work independently with little to no supervision; and
- Have in-depth understanding of Information security risk assessment and treatment requirements.
Management Skills:
- Excellent client consulting skills and ability to engage with stakeholders at all levels;
- Passion to develop own skills and knowledge in information security;
- Proactive, ‘hands-on’ starter finisher, high achiever, high responsibility, results driven individual;
- Highly organized and able to manage and prioritize workload;
- Strong problem solver with high attention to detail;
- Excellent interpersonal skills with the ability to work effectively with managers across different disciplines; Client facing and personable;
- Practical internal and external auditing experience;
- Perform multiple tasks simultaneously;
- Excellent presentation skills.
Language:
- Fluent in English.
- Excellent in business communication and professional writing
Job Details
What is your Competitive Advantage?
Babar Ahmed Khan
Territory Sales Manager
Engro Foods
Aqib Irshad
Head of HR, Training & OD
FINCA
Ayesha Shaukat
Social Media Marketing Manager
Ivoke
Mona Sharif
Senior Team Lead
Konext PVT. LTD
Usman Habib
Recruitment & Training Executive
ACS Synergy (Pvt) Ltd.
Muzammil Baig
Digital Marketing Manager
IT Services Group
Ali Aziz
CEO
Shopistan
Sehrish Azhar
Motivational Speaker & Blogger
Living Upbeat
Zohaib Ali
Marketing Manager
Digital Online Devices
Zubair Anjum
Business Excellence Specialist
Nestle Pakistan
