Description
Security & Compliance Consultant - Paris, France - French and English speaking
(Security Consultant, Compliance Consultant, Consultante Compliance, Consultante Securite)
One of our Blue Chip Clients is urgently looking for a Security & Compliance Consultant.
Please find some details below:
Description:
- Participate in Security Strategy, Governance and Policy management with client security team
- Collaborate with Client compliance team and understand the security compliance requirements
- Collaborate with the client compliance team and ensure the project comply with all security requirements
- Work with Compliance audit team and facilitate audits
- Review requirements for information security solutions
- Analyze potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach
- Ensure compliance to Client security controls, policies and procedures
- Act as a POC for both client and customer management teams for managing any security incidents
- Produce security incident communications content, reports and briefings and distribute to appropriate parties
- Perform security assessments, includes process reviews as well as technical analysis.
- Prioritize risk for identified risks and vulnerabilities and make recommendations on the appropriate corrective actions
- Ensure client and project sensitive information is handled appropriately and in accordance with laid down rules and procedures
- Ensure compliance with client, regulatory and standardization frameworks
- Produce security assessment reports and assist in communicating results.
- Evaluate newly discovered vulnerabilities and determine risk to client's environments
- Make recommendations on the appropriate corrective action for Security incidents, and/or take corrective actions (depending upon the type of incident)
- Provide enhancement recommendations to security delivery processes and tools.
- Impart Security Awareness Training to Delivery resources on Client infrastructure
- Be able to work in an environment that is global and 24x7, and be able to pass and receive work for global peers in different time zones
Skill Required:
- A solid understanding of frameworks such as ISO , COBIT, and other relevant compliance such as SSAE16/ISAE32, PCI, HIPAA, SOX, NERC, FISMA, FFIEC and GLBA
- Working knowledge of Information Security principles, techniques and technologies
- Knowledge on technical architecture & infrastructure
- Knowledge on network design and operations
- Knowledge on Microsoft technologies
- Analysis and problem solving skills
- Very strong sense of ethics/values - ability to handle confidential investigations with discretion
- Good knowledge of ITIL processes and procedures
- Excellent interpersonal skills, must be able to work effectively in a team environment
- Comprehensive verbal and written communication skills
Experience:
- At least 5-10 years experience in Security domain in IT infrastructure and specializes in security compliance
- Certifications like CISSP, CISA,ISO 27001 Lead Auditor and CISM are preferred
Please send CV for full details and immediate interviews. We are a preferred supplier to the client.