Security Consulting Consultant
Accenture
Posted on 28 Oct
Send me Jobs like this
Experience
5 - 8 Years
Job Location
Education
Bachelor of Technology/Engineering(Computers)
Nationality
Any Nationality
Gender
Not Mentioned
Vacancy
1 Vacancy
Job Description
Roles & Responsibilities
Security Consulting Consultant
Title: Security Consultant
Location: Riyadh, Saudi Arabia
Responsibilities:
Governance:
Develop cyber frameworks, policies, processes, procedures, guidelines, and related documentation.
Review existing and proposed policies and related documentation with stakeholders.
Develop reporting metrics, KPIs, and dashboards.
Monitor how effectively cybersecurity policies, principles and practices are implemented in the delivery of planning and management services.
Ensure that cybersecurity workforce management policies and processes comply with legal and organizational requirements.
Interpret and apply applicable laws, statutes and regulatory documents to ensure they are reflected in the cybersecurity policies.
Provide policy guidance to cybersecurity management, staff and users.
Risk Management:
Effectively communicate Cybersecurity risks and posture to senior management.
Develop risk mitigation strategies to effectively manage risk in accordance with organizational risk appetite.
Ensure that decisions relating to Cybersecurity are based on sound risk management principles.
Perform risk analysis whenever an application or system undergoes a major change.
Provide input to the risk management framework and related documentation.
Ensure Cybersecurity risks are identified and managed appropriately through the organization's risk governance process.
Carry out a Cybersecurity risk assessments.
Work with others to implement and maintain a Cybersecurity risk management program
Identify and assign individuals to specific roles associated with the execution of the Risk Management Framework
Establish a risk management strategy for the organization that includes a determination of risk tolerance
Conduct an initial risk assessment of stakeholder assets and update the risk assessment on an ongoing basis
Work with organizational officials to ensure continuous monitoring tool data provides situation awareness of risk levels
Use risk management related tools such as eGRC and monitoring tools to assess risks
Develop methods to effectively monitor and measure risk, compliance, and assurance efforts.
Determine and document supply chain risks for critical system elements, where they exist.
Compliance & Regulation:
Analyze the organization's Cybersecurity policies and configurations to evaluate compliance with regulations and organization compliance frameworks
Recognize patterns of non-compliance with Cybersecurity policies and related documentation to identify ways to improve the documentation
Periodically review Cybersecurity strategy, policies, and related documents to maintain compliance with applicable legislation and regulation
Work with stakeholders to resolve Cybersecurity incidents and vulnerability compliance issues
Develop methods to effectively monitor and measure risk, compliance, and assurance efforts
Develop specifications to ensure that risk, compliance, and assurance efforts conform with Cybersecurity requirements.
Monitor and evaluate a system's compliance with Cybersecurity, resilience, and dependability requirements
Develop Cybersecurity compliance processes and audits for services provided by third parties
Maintain knowledge of applicable legislation, regulation, and accreditation standards and regularly review these to ensure continued organizational compliance
Cooperate with relevant regulatory agencies and other legal entities in any compliance reviews or investigations.
Qualifications:
Bachelor's degree in information security, Cybersecurity or relevant.
5+ years of experience in similar position
Should be Certified in CRISC, GRCP, ISO 27001 LI or equal certifications.
Excellent communication (written and oral) and interpersonal skills
Ability to work creatively and analytically in a problem-solving environment
Flexibility to travel
Consulting, stakeholder engagement and relationship management skills.
Fluent in Arabic and English language
Ability to effectively communicate insights relating to an organization's threat environment to improve its risk management posture.
Ability to work with the organization's leadership to provide a comprehensive, organization wide approach to address Cybersecurity risk and compliance.
Ability to work with the organization's leadership to develop a risk management strategy to address Cybersecurity related risks.
Company Industry
- IT - Software Services
Department / Functional Area
- System Administration
- Network Administration
- Security (IT Software)
Keywords
- Security Consulting Consultant
Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com