Subject Matter Expert for Security Design Orchestration, Security Risk Assessment, and Strategy & Governance projects
Performs security and/or risk assessments in a fast-paced environment along with providing timely and practical recommendations to mitigate the identified risks.Performs review of security solution design and implementation. Subsequently, advise on the design and architecture development.Leads Business Continuity Management (BCM) projects including BCM assessment, Business Impact Analysis (BIA) and Design & Implementation of BCMLeads discovery workshops with other consultants and key stakeholders, both in IT and other business unitsPerform quality assurance on project deliverables (e.g., technical report, executive report, strategy & roadmap, etc.)Leads project presentation for client project team and other key stakeholders.Leads project management and client management.Assists the Partner in client pursuits, and presentation to client Senior/Executive ManagementLeads pre-engagement and business development activities.
o Scoping/discovery meeting with clients
o Development of proposal (technical and commercial) and presentation to clients
o Adherence with company risk management guidelines on engaging with clients.
o Monitoring of pursuits from identification to engagement conversion
o Client Management all throughout the sales process
Qualification
Has more than 8 years' experience in Information TechnologyHas more than 5 years' combined experience in: Security assessments (Security Maturity Assessment, Vendor Security Risk Assessments, ISMS/NIST Assessment, SOC 2 Type 2 Assessment, RCSA, Configuration Review, Architecture Review, Controls Review) or in charge for the Security Risk Management ProgramSecurity design and architecture development (Infrastructure, Apps and Data, Cloud), at least 2 yearsHas more than 2 years' experience in Project Management (or acted as Project Manager for more than 5 projects) (Preferred)Has at least 2 years 'experience in Business Development (Proposal development, Sales presentation, business case & portfolio development, etc.) (Preferred)Specific 2 years 'experience in consulting/advisory engagements (Preferred)Working experience in conducting BIA, BCM Assessment & DesignWorking experience in Data Privacy (PDPA, GDPR, DPA of 2012)Working experience in Security Awareness and TrainingWorking experience in presenting technical reports such as Vulnerability Assessment and Penetration Testing (VAPT) report and Digital Forensics & Incident Response (DFIR) reportWorking experience in cloud environment (AWS and Azure, preferred)Strong knowledge on information security standards and guidelines such ISO 27001/2, NIST, CIS and CSA CCMUnderstanding of Security Operations Center processes and relevant technologiesUnderstanding of Cloud Compute, Storage, Security and Virtualization best practiceUnderstanding of Enterprise Security Architecture and industry accepted framework such as SABSAUnderstanding of local regulations; DPA of 2012, BSP CircularsGood communicator and ability to interact with all levels within an organization (mandatory)Good in technical writing and infographic reporting (mandatory)Strong time management skills which allow for multi-tasking while managing shifting prioritiesProven history of providing exemplary customer service to both internal and external stakeholdersPreferably has at least one of the following certifications:
o ISC2 CISSP
o ISC2 CCSP
o ISACA CISM or CRISC
o SABSA Certification
About The Global Accounting Firm
