To qualify, candidates must have:
- A bachelor’s degree and approximately 8 years of related work experience; or a graduate degree and approximately 4-6 years of related work experience in Consulting in a Big 4 or Tier 1 or 2 Consulting firm.
- A degree in business, computer science, information systems, engineering, or a related discipline
- Extensive experience working as an Information Security Consultant, IT Security Management or IT adviser for a professional services firm, or within industry. Professional Services and consulting experience is a must.
- Significant experience in having applied relevant technical knowledge in the following engagements:
- Hands on Experience in:
- Risk& Compliance: ISO 27001, ISO 27005, RIsk IT, BS25999
- Governance: COBIT , ISO 38500, ValIT
- Architecture: TOGAF
- Project Management: PMP or Prince2
- Enterprise IS Security Strategy
- Information security policies, procedure and framework
- Analyse and mitigate increasingly complex threats
- Measure, track and report on security metrics
- Assist in fully outsourced or outsourced solutions
- SOC Consulting & Implementation
- Security & Event Monitoring Tool Automation
- PCIDSS Consulting Services
- ISO 27001 Consulting services
- DLP / DRM Solution Conceptualization and Implementation
- Security and Event Monitoring Process Design
- Working & Domain Knowledge of:
- Attack and Penetration Testing
- Application security review
- Security configuration Review
- Network Security Architecture Review
- Minimum 10 ISO 27001 in medium to large organizations
- Experience of Banking, Telecom, Oil & Gas and Government sector preferred
- Project Management experience as project and technical lead of 3 years including client management and team management
- Advanced written and verbal communication skills and presentation skills
- Excellent leadership, teamwork and client service skills
- Demonstrated integrity within a professional environment