Senior Consultant Cybersecurity

Senior Consultant in Cybersecurity GRC will work with ARB and collaborate with stakeholders across the organization to establish and maintain a comprehensive cybersecurity governance framework. The primary focus will be on assessing risks, evaluating compliance with regulatory requirements against ISO27001, ISO2701, ISO27018, ISO22301, NCA, CST and other regulatory standards, and implementing policies and procedures to mitigate potential threats. The efforts will contribute to enhancing ARB’s cybersecurity posture and maintaining the trust and confidence of the clients.

Responsibilities

• Conduct risk assessments to identify cybersecurity threats and vulnerabilities, and develop strategies to mitigate associated risks.
• Monitor and evaluate compliance with relevant regulations, standards, and internal policies, such as ISO 27001, NCA, and CST standards.
• Collaborate with internal teams to develop and implement cybersecurity policies, procedures, and controls.
• Assist in the development and maintenance of cybersecurity awareness and training programs for employees.
• Participate in audits and assessments of cybersecurity controls, and coordinate remediation activities as necessary.
• Stay abreast of emerging threats, trends, and best practices in cybersecurity Risk, and make recommendations for continuous improvement.
  
  

Qualifications

• Bachelor's degree in Information Technology and Computer Science.
• Previous experience in cybersecurity GRC, Risk Management, Compliance and Goverannce roles.
• Experience in cybersecurity frameworks, standards, and regulations, such as GDPR, ISO 27001, NIST and COBIT Cybersecurity Frameworks, etc.
• Experience in analytical and problem-solving skills, with the ability to assess complex security issues and recommend effective solutions.
• Experience in communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.
• Relevant certifications such as CISSP, CISM, CISA, CRISC, and ITIL v3.
• Experience between 10-15 years in the position.