Cyber Security Consultant

Summary:

We are looking for a dedicated and detail-oriented Cyber Security Consultant who is risk-focused and has expertise in conducting ISO 27001 and SOC (Service Organization Control) audits. You will be responsible for evaluating internal controls, assessing risks, and supporting the growth and transformation of our organization.

Responsibilities:

• Perform ISO27001, SOC 1, SOC 2, or SOC 3 audits, including planning, fieldwork, and reporting.
• Develop, implement, and maintain risk management frameworks and processes.
• Evaluate internal controls and identify gaps in compliance and security.
• Support clients in preparing for audits and navigating regulatory requirements.
• Analyse and report on risk exposure, suggesting mitigations and improvements for our clients.
• Monitor regulatory developments and ensure alignment with relevant standards.
• Provide guidance and training to team members on risk management and audit processes.

Skills & Qualifications:

• Bachelor’s degree in Information Security, Risk Management, or a related field.
• 3/5 years of experience in GRC, risk management, or cybersecurity roles.
• Proven experience in conducting ISO 27001 and SOC audits (SOC 1, SOC 2, or SOC 3).
• Strong understanding of risk management frameworks (ISO 31000, NIST, etc.).
• Relevant certifications (CISA, CRISC, CISSP, or SOC-specific certifications).
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Strong attention to detail and organizational skills.