At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.
Your Role and Responsibilities
Responsible for executing consulting engagements in the areas of Security Strategy Risk and Compliance.
Conduct a continuous assessment of current IT security practices and systems and identify areas for improvement.
Design and development of security policies, standards and procedures in accordance with Organisation goals.
Evaluate and advise on the implementation and effectiveness of the cybersecurity safeguards to ensure that they provide the intended level of protection.
Perform risk assessments to identify gaps in compliance to information security standards and policies and devise strategies and implement controls to minimize the risk
Proactively identify risks and escalate to project stakeholders.
Data security governance, data classification, data security design, security management, personal information compliance and protection consulting.
Ensure quality delivery as per IBM/client requirements.
Perform third party risk assessment.
Actively establish & strengthen relationships with external and internal customers.
Assist in developing knowledge assets such as methodologies, templates, white papers etc.
Be a team player and develop junior members in the team.
Identify potential business opportunities on existing consulting engagements.
Suggest ideas on improving engagement productivity and identify opportunities for improving client service.
Required Technical and Professional Expertise
- Information security experience with an expertise in Governance, Risk and compliance
- Experience in Internal Control, General Computer and Application Control Audit background
- In-depth knowledge and experience in various Information security standards / regulations / best practices (ISO-27001, COBIT, PCI-DSS, GDPR, HIPAA, SOC2, etc.)
- Experience in planning and designing healthy and effective security architectures for any IT project.
- Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, data loss prevention and privacy
- Experience in risk management, threat modelling and risk analysis.
- Knowledge of efficient way to protect the system, networks, software, data and information systems against security threats.
- Ability to understand and incorporate technology trends into designs and plans
- Advanced knowledge of system architecture and design principles, practices and enabling tools
- Ability to use business knowledge, sound judgment, and resourcefulness to adapt existing policies to specific situations and select among varied courses of action
- Ability to advise and influence executive management and relevant stakeholders regarding security best practices, security risk analysis and security risk mitigation
- Capable of delivering work that meets / performs to functional requirements based on business requirements defined and approved by the client
- Good understanding of cloud security requirements
- Experience in third-party risk management and control assurance.
- Good (written and verbal) English communication skills
- Possesses certification like CISSP, CISA, CISM
- Proven experience on performing IT risk assessment and managing the risks.
- Experience with risk management methodologies like FAIR
- First-hand knowledge and proven experience on security framework and architecture design, designing and implementing security standard, policy and guidelines.
Preferred Technical and Professional Expertise
- Candidates with prior information security consulting background preferred.
- Internal Control, General Computer and Application Control Audit background
- Familiarity with one or more project management methodologies
- Experience in implementation of IT Security Risk Management Framework for the organization
- Good analytical and problem solving skills
More Information
Application Details
-
Organization Details
IBM PL
Recommended Comments
There are no comments to display.
Join the conversation
You are posting as a guest. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.