ISMS Consultant

Desired Qualification + Experience: -

Bachelor's or master's degree in information technology, Computer Science, Software Engineering or any other related engineering discipline or equivalent education and experience. 2-4 Years of Experience in IT and at least 1 year of handling Information Security Audits and governance for a large organization. Professional certifications preferred (ISO 27001 LA.)

Location: -

Notice Period: -

Industry Type Exposure: -

Core Skills: - ISO 27001 Implementation and one Full Cycle audit, GRC, Internal Audit & Compliance Preferred Industry vertical: Information Technology, BFSI, Fintech, Start-up's , Manufacturing, E-Commerce, etc.

Roles & Responsibilities: -

The Information Security Lead Auditor will play a pivotal role in executing the security vision and strategy defined by the Cybersecurity Practice Head. This position is responsible for supporting and enhancing the security posture of our clients by leading security onsite implementation projects, reviewing IT operations, implementing best practices as per compliance standards and best practices for security hygiene, and ensuring compliance with audit and regulatory requirements for our esteemed clients to get Certified.

Role Technical Requirements/Job Specifications: -

Knowledge of ISO 27001 Implementation and Lead Auditor/ (LA certification). Enterprise audit experience with respect to security administration and information technology governance and internal audit experience in a multi- platform environment.

Hands on ISO 27001 implementation, Full cycle Internal Audit's and Implementation experience.

Drafting Information Security Policies & Procedures

Drive implementation of policies / controls and enforce compliance.

Have Conducted regular risk assessments to evaluate potential security risks to organizational assets.

Audit and Compliance Experience: -

• Conduct risk assessments and ensure adherence to compliance standards such as ISO 27001 or industry-specific frameworks.
• Prepare for and support internal/external security audits, ensuring timely remediation of findings.
• Develop detailed compliance reports for clients and stakeholders.

Collaboration and Communication:-

• Work closely with client IT teams to align security practices with business needs.
• Provide advisory support on emerging threats and recommend mitigation strategies.
• Stay updated on the latest security trends, tools, and technologies to enhance service delivery.