Description
As a member of the Security Governance department, the Security Consultant assists the team on making sure the policy framework is aligned with threat landscape, business transformation, technology capabilities and organisational structure.
The candidate will become accountable for specific-scoped assignments and must be able to:
- identify and prepare amendments to the policy framework by:
- writing functional security requirements in collaboration with our CSIRT team which provide a sufficient protection for resources based on Attack Vector
- verify making sure those function security requirements can be met using available technology
- assist the Enterprise Security Architecture team in mapping security requirements to IT Architecture Building Block used by IT to create High-Level Design
Experience:
- Applied Information Security industry standards/best practice frameworks (eg SANS 20) in large organisations
- Maintained a holistic perspective on the security capabilities needed to support or deliver the enterprise's strategic goals and objectives
- Fully aware of available security capabilities and challenges related to: IoT, Big Data, Cloud (SaaS, IaaS, PaaS), API Management, Identity & Access Management, Application Security.
Specific technology & governance skills:
- You understand the following ISMS standards & frameworks: ISO 27001, ISO 62443, SANS CSC20 & OWASP
Please send your CV forward if you are interested in putting yourself forward!