Description
Hi,
Greetings of the Day..!!
Currently we are Hiring for Security Risk Consultant, Below are the details.
Qualification: Bachelor’s degree in any stream
Location: Bangalore & Pune
Experience: 3+ Years
Job Title: Security Risk Consultant
Role:
- Interact with senior stakeholders across departments
- Reach and influence a wide range of people across larger teams and communities
- Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions
- Develop vision, principles, and strategy for security architects for one project or technology
- Work out subtle security needs
- Understand the impact of decisions, balancing requirements and deciding between approaches
- Produce patterns and support quality assurance
- Be the point of escalation for architects in lower-grade roles
- Lead the technical design of systems and services
Experience:
- Minimum 3 years of working experience in Cyber Security Consulting or Advisory in Risk Assessment, BC/DR, Data Privacy.
- Experience only in support and managed services without any consulting and/or advisory experience in recent years will be ineligible.
- Successfully delivered at-least 2 (two) Cyber Security consulting projects as consultant in recent years (2 years).
- Good understanding on the COBIT and ISO 27001
Certification
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Auditor (CISA)
- Certified Information Security Manager (CISM)
- CDPSE, CIPP, CIPE
- ISO 22301
Responsibilities:
- Develop security architecture.
- Risk assessment, analysis, and recommendation.
- Auditing.
- Business impact & privacy analysis.
- Security compliance, governance audits
- Prepare security policy, framework, guidelines.
- Technical documentation.
Knowledge and Skills
- Security Compliance & Governance Service
- Policy, procedure & framework design, and implementation
- Risk Management
- Security Baselining
- Best Practice Recommendation
- Public & Private Cloud security assessment & recommendation.
- GRC module design and Tool Implementation (e.g., RSA Archer, MetricStream, ServiceNow GRC etc.)
- Good understanding on the COBIT and ISO 27001 standards
- Cloud Security Trust, Assurance & Governance
- Audit Automation
- HIPAA, Data privacy (GDPR, CCPA), Data localization, Compliance Assessment
- Service Organization Control (SOC1, SOC2) Audit & Compliance
- CISO/vCISO Advisory
- Software Security Framework (e.g., BSSIM, OWASP SAMM)
- Good written & verbal communication and analytical skills.
- Good documentation skills.
- Good problem-solving skills.
CTC: As per the company Norms.