Cybersecurity Strategy, Risk, and Compliance Senior Consultant (FOR POOLING)

xpatjobs       |    Location:null , null       |    Country:Philippines

Pooling for Cybersecurity Strategy, Risk, and Compliance Senior Consultants. Hiring will be April 2024. At SGV, you''ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we''re counting on your unique voice and perspective to help SGV become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The opportunity We''re looking for a Senior Consultant for Cybersecurity Strategy, Risk, and Compliance with expertise in cybersecurity security, governance, risk, and compliance. As part of our Cybersecurity Consulting team, you will help lead cyber transformation engagements to enhance the organization''s security postures and identifies opportunities to improve organizational cybersecurity strategy, policy and governance. You will perform current state security assessments and supports target operating model definition; manages discussions and proposes approaches to aligning cybersecurity initiatives to strategic business objectives. You will help validate that our client''s network, infrastructure, third parties, and applications are designed and implemented to the highest security standards and frameworks. To do this, you will be coordinating with security risk managers, architects, engineers, operations, and testers to assess, design, and implement security mitigation strategies. You will assess and advise on security and privacy frameworks, security policies, processes, and governance for conformance against security standards, industry practices, and regulatory obligations. You will mentor team members and be a security thought leader for the organization. Our highly collaborative team is committed to each team member''s growth as our business grows. You will have the opportunity to learn from and be mentored by our diverse cybersecurity team. Your Key Responsibilities: You will work on various Security strategies, Risk and Compliance projects for our clients, or internal projects. As a team leader or team member, execute cyber security strategy, risk, and compliance projects with varying levels of complexity based on a defined approach and methodology. This may include: o Conducting cyber transformation engagements to enhance security postures o Conducting a maturity assessment and designing a security roadmap o Performing security assessment of new and existing applications, vendors, or infrastructure o Evaluating the compliance of clients against security standards such as ISO27001, NIST CSF, PCI DSS o Developing policy, standards and standard operating procedures o Conducting information risk assessments (e.g., Crown Jewel identification and Risk Classification) and proposes appropriate mitigation strategies o Designing cybersecurity dashboards Provide guidance, coordinate and support teammates to execute the security strategy, risk and compliance projects Guide and review your peers and junior team members and provide timely and constructive feedback Prepare reports, documents and schedules that will be delivered to clients and other parties Conduct research to provide value adding advice to the client Contribute ideas with the team to complete and improve project output Help in performance reviews and contribute to performance feedback for staff/junior level team members Develop positive relationship with client personnel, peers and management Join and facilitate internal and external training, mentoring, learning and certification opportunities Participate in organization-wide people initiatives Skills and attributes for success A successful candidate will need a combination of technical and communication skills, as well as the ability to handle a mix of disparate tasks. Technical knowledge. Able to demonstrate and apply security concepts; knowledge of system and application security threats and vulnerabilities; current and emerging threats/threat vectors; principles used to manage risks related to the use, processing, storage, and transmission of information or data; incident response and handling methodologies; methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection and remediation tools and procedures utilizing standards-based concepts and capabilities; the risk associated with new and emerging information technology (IT) and cybersecurity technologies Mentoring. Able to guide and coach team members in career progression and service delivery Teaming. Able to build relationships across business and promoting a collaborative culture across teams Client relationship. Able to build deep relationship with clients to understand their challenges better and align the right solutions Innovative and transformative mindset. Able to understand complex problems and respond with innovative and transformative solutions Communication and presentatio