Cyber Security Advisor

Cyber Security Advisor

Whitehall Resources are currently looking for a Cyber Security Advisor.

Key Requirements:

- Act as a trusted advisor to management and key stakeholders, ensuring cybersecurity considerations are integrated into decision-making.

- Ensure cybersecurity best practices align with business objectives and delivery goals without hindering operational efficiency.

- Provide cybersecurity expertise during projects and engagements to mitigate risks and enhance security controls.

- Work with cross-functional teams to enhance the organization's overall cybersecurity resilience.

- Identify, assess, and provide guidance on mitigating cybersecurity risks across business functions.

- Support compliance with relevant cybersecurity laws, regulations, and industry standards.

- Contribute to the development and implementation of security strategies, policies, and frameworks.

- Promote cybersecurity awareness and best practices among employees and stakeholders.

Key Experience:

- Typically, 10+ years of experience in cybersecurity, information security, IT governance, risk management, or compliance.

- Bachelor’s degree in Computer Science (or related field) preferred alternatively equivalent work experience.

- Proven leadership in developing, implementing, and overseeing security governance frameworks, policies, and strategies.

- Experience in aligning security and data privacy with business objectives at a strategic level.

- Hands on experience with enterprise risk management, regulatory compliance (e.g., GDPR, ISO 27001, NIST, PCI DSS), and security program development.

- Strong expertise in third party/vendor risk management and security governance across complex business environments.

- Demonstrated ability to lead security incident response and crisis management at an enterprise level.

- Proven ability to influence senior leadership and board level discussions on security risks and strategies.

- Certifications such as CISSP, CIPM, CISA, ISO/IEC 27001 Lead Auditor.

- Additional specializations (e.g. AI Governance, Cloud Security, CIPP/E).

- Communication skills for stakeholder interaction and knowledge sharing.

- Understanding of business operations and their impact on security.

- The ability to analyze security risks and assist in risk mitigation efforts.