cybersecurity senior Consultant - risk & security assessmentCafisglobal Inc

Job Title : Cybersecurity Senior Consultant - Risk & Security Assessment Responsibilities : Performs security and/or risk assessments in a fast- paced environment along with providing timely and practical recommendations to mitigate the identified risks Performs security and/or risk assessments aligned with industry standards (ISO 27001/2, NIST, CIS, PCIDSS, SWIFT CSP, CSA CCM), regulatory requirements (BSP circulars and others), and best practices Performs maturity assessments in cyber security and information technology Participates in discovery workshops with other consultants and key stakeholders, both in IT and other business units Participate in project presentation for client project team and other key stakeholders Facilitate Security Training and Awareness. Qualifications : 3-5 years' experience in Information Technology 3-5 years' experience in security assessments (Cloud Security Assessment, Third Party Security Risk Assessments, ISMS/NIST Assessment, SOC 2 Type 2 Assessment, RCSA, Configuration Review, Architecture Review, Controls Review) (Mandatory) Has facilitated at least one (1) IT Risk Assessment project Working experience in Data Privacy (PDPA, GDPR, DPA of 2012) Working experience in Security Awareness and Training Specific 1 year 'experience in consulting/advisory engagements (preferred) Strong knowledge in IT Audit/Assessments and/or Maturity Assessments Strong knowledge on information security standards and guidelines such ISO 27001/2, NIST, CIS, PCI DSS and SWIFT CSP Understanding of local regulations (BSP circulars) Understanding of Cloud Compute, Storage, Security and Virtualization best practice Good communicator and ability to interact with all levels within an organization Good in technical writing and infographic reporting Strong time management skills which allow for multi- tasking while managing shifting priorities Proven history of providing exemplary customer service to both internal and external stakeholders Preferably has at least one of the following certifications: ISC2 CISSP, ISMS LA/LI, ISACA CISA or CRISC, relevant certifications for PCI DSS, SWIF, HITRUST and other industry security standards/guidelines.
foundit

Makati City, Metro Manila
Permanent
Full-time