Security Risk Consultant Bangalore, Pune

Description

Hi,

Greetings of the Day..!!

Currently we are Hiring for  Security Risk Consultant, Below are the details.

 

Qualification: Bachelors degree in any stream

Location: Bangalore & Pune

Experience: 3+ Years

Job Title:  Security Risk Consultant

Role:

  • Interact with senior stakeholders across departments
  • Reach and influence a wide range of people across larger teams and communities
  • Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions
  • Develop vision, principles, and strategy for security architects for one project or technology
  • Work out subtle security needs
  • Understand the impact of decisions, balancing requirements and deciding between approaches
  • Produce patterns and support quality assurance
  • Be the point of escalation for architects in lower-grade roles
  • Lead the technical design of systems and services

Experience:

  • Minimum 3 years of working experience in Cyber Security Consulting or Advisory in Risk Assessment, BC/DR, Data Privacy.
  • Experience only in support and managed services without any consulting and/or advisory experience in recent years will be ineligible.
  • Successfully delivered at-least 2 (two) Cyber Security consulting projects as consultant in recent years (2 years).
  • Good understanding on the COBIT and ISO 27001

Certification

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • CDPSE, CIPP, CIPE
  • ISO 22301

Responsibilities:

  • Develop security architecture.
  • Risk assessment, analysis, and recommendation.
  • Auditing.
  • Business impact & privacy analysis.
  • Security compliance, governance audits
  • Prepare security policy, framework, guidelines.
  • Technical documentation.

Knowledge and Skills

  • Security Compliance & Governance Service
    • Policy, procedure & framework design, and implementation
    • Risk Management
    • Security Baselining
    • Best Practice Recommendation
  • Public & Private Cloud security assessment & recommendation.
  • GRC module design and Tool Implementation (e.g., RSA Archer, MetricStream, ServiceNow GRC etc.)
  • Good understanding on the COBIT and ISO 27001 standards
  • Cloud Security Trust, Assurance & Governance
  • Audit Automation
  • HIPAA, Data privacy (GDPR, CCPA), Data localization, Compliance Assessment
  • Service Organization Control (SOC1, SOC2) Audit & Compliance
  • CISO/vCISO Advisory
  • Software Security Framework (e.g., BSSIM, OWASP SAMM)
  • Good written & verbal communication and analytical skills.
  • Good documentation skills.
  • Good problem-solving skills.

CTC: As per the company Norms.


 

 

>