Cyber Security Consultant

Cyber Security Consultant

Total Yrs. of Experience:10+ Years

Relevant Yrs. of experience:7+ Years

Responsibilities

1. Development and execution of the enterprise-wide application and data security program and associated performance metrics.
2. Review design documents, identify and communicate potential cybersecurity gaps to project teams for remediation
3. Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
4. Lead risk identification efforts and communication of the risks and mitigating controls to stakeholders to manage cybersecurity risks within the organisation
5. Research industry's best practice and vendor's cybersecurity capabilities to mitigate emerging threats
6. Provide application security services including application security scans and cloud asset vulnerability management
7. Development and maintenance of the Cloud Security Posture Management capability for secure hosting of applications.
8. Act as an escalation point for the first level SOC and Cloud Security Governance teams

Requirement

1. 10 years of relevant experience in the industry (Mining, Resources, Banking or Telco), domain areas (Secure-by-Design Application Development, DevSecOps, Application Security, Cloud Security).
2. Certified as a Cyber Security Professional (CISSP, CISM preferred or equivalent)
3. Cloud Cybersecurity certifications (Azure preferred or AWS equivalent)
4. Understanding of industry regulatory and compliance requirements like ISM, NIST and ISO27001
5. Expert level in configuring and utilizing computer protection components (e.g., hardware firewalls, servers, routers, as appropriate) in general but also in particular for applications, M365 and Azure/AWS cloud environments
6. Prior experience as cloud engineer or architect building and implementing cloud technology in large scale environments favorable

[Confidential Information]

Cyber Security Consultant

Total Yrs. of Experience:10+ Years

Relevant Yrs. of experience:7+ Years

Responsibilities

1. Development and execution of the enterprise-wide application and data security program and associated performance metrics.
2. Review design documents, identify and communicate potential cybersecurity gaps to project teams for remediation
3. Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
4. Lead risk identification efforts and communication of the risks and mitigating controls to stakeholders to manage cybersecurity risks within the organisation
5. Research industry's best practice and vendor's cybersecurity capabilities to mitigate emerging threats
6. Provide application security services including application security scans and cloud asset vulnerability management
7. Development and maintenance of the Cloud Security Posture Management capability for secure hosting of applications.
8. Act as an escalation point for the first level SOC and Cloud Security Governance teams

Requirement

1. 10 years of relevant experience in the industry (Mining, Resources, Banking or Telco), domain areas (Secure-by-Design Application Development, DevSecOps, Application Security, Cloud Security).
2. Certified as a Cyber Security Professional (CISSP, CISM preferred or equivalent)
3. Cloud Cybersecurity certifications (Azure preferred or AWS equivalent)
4. Understanding of industry regulatory and compliance requirements like ISM, NIST and ISO27001
5. Expert level in configuring and utilizing computer protection components (e.g., hardware firewalls, servers, routers, as appropriate) in general but also in particular for applications, M365 and Azure/AWS cloud environments
6. Prior experience as cloud engineer or architect building and implementing cloud technology in large scale environments favorable

[Confidential Information]