10 Feb 2023
Senior Security Consultant Dubai UAE
Position: Senior Security Consultant
Date posted: 2023-02-10
Industry: Other
Employment type: Full Time
Experience: 3 to 5 year
Qualification: Bachelor’s Degree is required
Salary: AED 10000 to 20000
Location: Dubai, United Arab Emirates
Company: Confidential
Description:
Looking for Senior Security Consultant, Location: UAE
- Experience in managing and conducting IT Compliance audits to assess the integrity, reliability, security, and efficiency of diverse Information Technology systems under ISO27001 and ITIL standards.
- Perform business and domain risk assessments according to the required scope and objectives.
- View network security architecture, propose network security solutions and assess new security products and POCs.
- Review and creation of SOW from a cybersecurity risk perspective.
- Provide subject matter expertise to identify current and projected risks associated with business strategy and environmental changes.
- Identify, analyze and price relevant risks associated with the business requirements, including determining their likelihood and impact.
- Work with Security Service Delivery, Assurance and Threat Management teams to ensure aligned risk analysis across relevant functions.
- Perform the necessary improvements to IT security risk management practices to achieve proper integration and alignment with ERM.
- Conducting IT General Controls Review in line with industry best practices, Information Security review, IT Compliance Assessments, IS Risk.
- Assessments and Risk Management, business continuity management, access control, and incident management.
- Knowledge of ISMS (ISO 27001) consulting assignments, which include Audits/Gap assessment, formulation of security policies, Risk assessment, Vulnerability assessment, Statement of applicability, security awareness training, control Implementation support, and developing a mechanism to measure the effectiveness of ISO 27001
- Strong risk-focused audit, identifying key risk areas in IT environment, provide recommendations to mitigate these risks, evaluating the effectiveness of controls.
- Experience in developing, establishing, and maintaining standards, procedures, and guidelines to promote security and ensure uninterrupted operation of computer-based application systems and information processing facilities.
- Assessing the security of network devices/systems and applications through VAPT using tools and performing audits to assess network security.
- Developing Risk Management framework based on the frameworks such as ISO27001 and BS25999. Exposure to PCI-DSS. The identification, assessment, and management of the risk related to the enterprise value in the use of IT.
- Define, manage and continuously improve IT security risk management methods, framework, and tools to help ensure consistent and effective risk decisions.
- Implement and maintain the IT security risk management process, supporting tools, and knowledge repositories.