Description
(IT Risk Consultant, IT Security Consultant, Holland, Netherlands, den Haag, the Hague, Information Security Consultant)
My blue chip client based in Holland (Leidschendam nr the Hague) are looking for an IT Security Risk Consultant.
You will be responsible for setting up and implementing an Risk IT framework for Information Security including supporting processes and procedures, based on Cobit Risk IT and aligned with ISO .
Summary of essential job components:
Setup and implement an IT Risk Framework for Information Security based on Cobit Risk IT Risk
Identify, cover and include all customer contractual requirements relating to IT Risk management in the framework and supporting processes
Cover the alignment (and documentation) with both customer and supplier requirements in the Risk Management space
Align the work with ISO
Include Risk Governance, Accountability at business level, IT Risk Appetite and IT Risk Tolerance, IT Risk-awareness, Communication and Reporting
Include Risk Evaluation, Expressing and Describing Risks, Risk Identification, Top Down and Generic Scenarios, Analysis, Risk Inventory, including Data Collection model and Risk presentation
Include Risk Response and Prioritisation, Risk Management of presented risk against, align with Incident Management in particular with Incident Response Plans Minimum requirements
Work Experience: Must have working knowledge of Cobit Risk IT
Work Experience: Must have working knowledge of ISO , for example ISO 27001 Lead Auditor. An efficient and structured work ethic Abilities required
Must be able to function autonomously and be able to meet set goals and criteria
Educational Background: Graduation HBO, bachelors' degree or any equivalent combination of experience or training Work Experience: Must have at least 3, preferably 5, years of Risk IT experience and a track record of
achievement in a technology driven, multi-national environment with an emphasis on Information Security Risk Management in the Information Security space for Data, Voice, Internet Services, etc. Experience in IT operations and
administration is a pro.
Must be a team player that is able to initiate and maintain strong relationships with in- and external parties Must have
In-depth IT Security knowledge
Must be able to effectively communicate with others outside his/her area of expertise
Must be aware of the disciplines within a professional and dynamic IT environment
Must be aware of costs associated with relevant activities
Preference for candidates with CISA and/or CISSP certification
Please send your CV in the first instance to be considered.