Management Consultant

ISO-27001/ISO-27701/NIST/SOC-Compliance

Responsibilities

• Lead the implementation and maintenance of ISO-27001, NIST, ISO-27701, and SOC-Compliance standards within client organizations.

• Conduct assessments of client systems and processes to ensure compliance with relevant standards, identifying gaps and proposing remediation actions as needed. Perform internal audits to verify ongoing compliance.

• Provide expert advice and consultation to clients on best practices for information security management, privacy management, and compliance frameworks. Assist in developing policies, procedures, and controls to meet regulatory requirements.

• Deliver training sessions to client staff on security awareness, compliance requirements, and the implementation of security controls. Act as a subject matter expert in workshops and seminars.

• Assist clients in identifying, assessing, and mitigating information security and privacy risks. Develop risk management frameworks tailored to the specific needs of each client.

• Prepare comprehensive documentation including policies, procedures, risk assessments, and compliance reports. Communicate findings and recommendations to senior management and stakeholders.

• Manage projects related to the implementation of security and compliance initiatives, ensuring timely delivery within scope and budget constraints. Coordinate activities with internal teams and external vendors as necessary.

• Stay updated on emerging trends, regulations, and best practices in information security, privacy, and compliance. Proactively identify opportunities for enhancing clients’ security posture and operational efficiency.

Requirements

• 2-3 years minimum experience
• Hands-on experience in implementing and maintaining the above standards.
• Lead Auditor certification for ISO-27001
• Bachelor or Masters in Business \ CS \ IT