Job Role : Cyber Security / ISMS Consultant and ISO 27001 Lead Auditor
- Job Responsibilities:
• Conduct ISO 27001 Audits for internal and clients independently
• Ability to perform network architecture review
• Ability to perform system configuration review for OS (Win & Linux), Servers, DB, Routers /
Switches and Firewalls
• Ability to perform firewall rules review and application code review
• Conduct Risk Management and ISMS audit for clients
• Conduct Business Impact Analysis and support clients in BCP - DR exercise
• Develop and maintain audit checklist and documents
• Design ISMS framework based on ISO 27001
• Develop and Maintain ISO 27001 based Document Management System : Policies , Procedures and Records
• Co-ordinate with internal Engineering Team ( VAPT team) for VulnerabilityAnalysis and Penetration Testing Activities.
• Conduct Security Awareness Training sessions for clients and the internal team
- Skills Required:
• Experience in IT Security and Infrastructure audits
• Experience on Cloud Platform - AWS / Azure and GCP
• Must have audited minimum 3 clients/ implemented ISO 27001 standard and processes in
minimum 2 clients.
• Good understanding of Risk Management and BCP – DR
• Proven ability to conduct ISMS audit independently
• Must possess good knowledge of networking, different flavours of operating system, endpoint devices and security devices
• Basic knowledge of different compliance standards such as PCI DSS, HIPAA, GDPR
• Payment Card Industry Standards PCI DSS , knowledge and implementation skill is an advantage.
• Should be a smart self-learner and must keep himself/ herself updated with latest Technologies , Threats and Vulnerabilities researched/ discovered knowledge of business continuity framework and standards
• Experience in performing IT General Controls Audit
• Experience in conducting Security Awareness Training sessions for clients and the internal team
• Excellent written and Verbal communication skill