Description
Sr. Information Security ConsultantKnowledge and Experience
* Excellent understanding information security management and best practice, including;
o ISO 27001, NIST, OpenSAMM and other security frameworks.
o ISMS design and implementation
o Design, implementation and management of SOC and SIEM
o Dev/Sec/Ops, CI/CD, continuous security validation
o Risk Management, risk assessments, threat modeling, threat hunting.
o Cloud Security Architecture - AWS, Azure and others
* Minimum 7 years of direct experience in the field of information security and security engineering (full stack).
* Experience in assessing, designing, and implementing security programs or capabilities, including governance, incident response, threat intelligence, security monitoring, training, and awareness.
* Policy and procedure creation, with a solid understanding of cyber security governance
* Demonstrate solid knowledge of information security risks and countermeasures
* Relevant certifications or equivalent such as (at least 2 out of 4):
o CISSP (Certified Information Systems Security Professional)
o CSSLP (Certified Secure Software LifeCycle Professional)
o CCSK (Certificate of Cloud Security Knowledge)
o CEH (Certified Ethical Hacker)
Skills
* You must be self-motivated and proactive!
* Excellent interpersonal skills
* Hands-on approach
* Did we mention that you need to be self-motivated and proactive?
* Work both independently and as part of a team at all levels and across all business units, platforms and technologies/stacks.
* Clear and articulate
* Impactful & influential
* Problem solving
* Analytical skills
* Innovative and proactive
* Ability to work independently
* Practical/common sense approach