Career - Senior Security Consultant

Senior Security Consultant

Role – Senior Security Consultant
Reporting to – Manager – Consulting Services
Location – Dubai, UAE
Travel Requirement – required to travel and be located in  GCC countries
 
 
Responsibilities

  • Developing, maintaining, enforcing some Information security standards, procedures in line with ISO 27001 standards, NESA, ISR, SAMA, QCERT, COBIT, ITIL and PCI-DSS and other similar standards
  • Conduct operational and process reviews in compliance to ISO27001 standards or others such as Cobit, NIST, ISO 20000, ISO 22301, NESA, ISR, SAMA, QCERT
  • Develop Information security policies and procedures
  • Implement processes to achieve compliance with ISO 27001, ISO 22301, ISO 20000 certifications
  • Experience in managing audit & compliance projects with security standards implementation such as ISO 27001/ ISO 20000/ ISO 22301/NESA etc., internal and external Audit finding remediation, etc.
  • Evaluating, reviewing and recommending and setting baselines within the assigned area of focus.
  • Assist in maintaining frameworks for security risk management and business continuity
  • Should have good experience in writing non-compliance reports, good documenting skills and presentation skills
  • Providing expert security involvement in the lifecycle of business and infrastructure projects including architecture reviews, application design, disaster recovery and vulnerability scanning.
  • Act as a subject matter expert in security policies and procedures, network assessments, security health checks, incident response, application security, security compliance assessments and business partner assessments and management strategies.
  • Work closely with Senior Information Security Professionals, clients and offer management oversight for other consultants.
  • Must be able to manage all aspects of an engagement lifecycle, including such items as requirements definition, data collection, report writing, client status reporting through final presentation of engagement deliverables.

Requirements

  • A bachelor’s degree or a PG in Information Systems/Computer Science or relevant field
  • Previous experience as an Information Security Specialist, Information Security Consultant or ISO Security standards implementation specialist
  • Proven track record of vulnerability assessments, penetration testing, risk assessment, information systems security audit and ISO27001/20000/22301 implementation
  • Familiarity with various operating systems, database and applications
  • Good knowledge of PCI-DSS, ISO 27001/20000/22301/NESA/ISR
  • Information Security/Assurance certification such as CISSP/ CISA /CISM /GIAC / CRISC / CBCP are a definite advantage
  • Excellent oral and written communication skills with ability to interact with all levels in the organization.
  • At least 4 to 7 years of relevant experience in ISMS implementation & Technical assessments
  • Should have good experience in report writing & documenting skills
  • Ability to multitask many issues at once and to make sure that projects are completed on time and with the agreed quality.
  • Strong client relationship building/ interpersonal skills and communication skills
  • Willing to travel
  • Must be fluent in English, Arabic is an advantage