Job Description
Responsibilities
Our client's Cyber Risk & Assurance team is working in a rapidly growing, fast paced area with significant opportunities for development. The successful candidate will provide deep, pragmatic and relevant advice to our clients specifically surrounding Governance, Risk and Compliance elements of their business.
Our clients cherish their talent, we nurture their skills and we ensure they gain exposure to many sectors, many challenges and plan a path that helps them achieve their career goals.
- Expert advice and guidance on the achievement of international standards e.g. ISO27001 and other ISO security standard, PCI-DSS 3.0
- Cyber Security readiness assessments and development of Cyber Security Strategy
- Plan and execute client engagements focussing on GRC, Security and audit preparation/assistance with their current environments
- Evaluate the design and the effectiveness of their current security controls from a GRC perspective throughout their business cycle
- Ability to communicate clearly on all aspects of information security
- Identify opportunities for improvement for the Customers whilst liaising with our Sales team to develop a potential lead for our technical services
- Assist our GRC Interns with their development providing mentoring and coaching sessions
- Information Security and Protection Advice
- Security Policy framework development and implementation
- Effective Risk Management covering development and implementation of risk assessment methodologies; performing technical and cyber risk assessments and recommending effective mitigating controls
- Guidance on the protection of information assets from all types risks
- Internal and External Threat Advisory Services
- Preparatory Advice and Assistance for client Security Audits and Assistance with Internal Audits
- Understanding of and achieving of regulatory requirements where required by specific industries
- Travel (national and international) may be required as part of this role, and as such a clean driving license and access to a car are essential
Experience
What you will bring to us:
- Energy, passion and a desire to learn
- Flexibility in working methods and times (role may require you to work extra hours should the client call for it)
- Excellent written and spoken communications skills and ability to deliver strong presentations to “C” level and technical audiences.
- The traits you will have are: honesty, positive, confident attitude, integrity, respect, support and helping others, likability. Being the sort of person that everyone likes to work with
- Fluent English speaker
- An ability to work with limited guidance but also as part of a mixed skilled team
- Ability to understand technical requirements and functionality
- A good working knowledge of ISO27001/2 and PCI-DSS would be extremely beneficial
- Exposure to working with other requirements (SoX, Regulations, DP Act) would be very advantageous
- Excellent listening skills are essential so that you can communicate with the client, empathise with their situation and be able to demonstrate your understanding of their issues
- A keen eye for detail while making sure the message is clear and understood by all levels within a business
- A desire to start new projects, significantly contribute to on-going projects and deliver all projects to closure
What would be nice to have:
- Strong knowledge of IS and risk principles; clear and concise business writing; IT audit, Business audit or Compliance experience with a desire to develop in the IT/IS sector
What would be really nice to have:
- CISSP, CISA, CISM, ISO27001 (Implementer or Lead Auditor), QSA (PCI-DSS), GIAC
- Experience of working in a variety of technology components e.g. UNIX, Windows, Network Architectures, Network Security, BC/DR Solutions, CSIRT
More Info
What we will provide for you:
- Opportunity to gain experience and knowledge in a key field of expertise
- Further educational and training to enhance your skillset
- Opportunities to expand you experience by learning new products or getting involved with internal projects
- We empower you to make your own Information Security or IT history by working with some of our market leading clients
- A leadership team who have a worthwhile mission and who excel at that mission.
- A chance to work with one of the market leaders in Information Security companies (Winner of the AIB Enterprise of the Year Award 2013, Nominated for EY, EOY 2015)
- A company that is going from strength to strength with significant growth plans that we are achieving.
Requirements
What is required by you:
- 3 years + in an information security, risk or compliance related role, Information Security Officer or Cyber Security Consultant role
- Third Level Degree or Industry Certification Desired (Currently undertaking certification will also be considered) CISSP, CISM or equivalent highly desirable
