Job Title | Cybersecurity Consultant |
Department | Cybersecurity Consultation Services |
Report to (Direct) | Cybersecurity Consulting & Services Manager |
Report to (indirect) | - |
General Duties and Responsibilities:
· Conduct comprehensive risk assessments, vulnerability scans, and security audits of networks, systems, and applications.
· Evaluate the effectiveness of existing security controls and recommend improvements.
· Develop and implement security strategies, policies, and procedures in line with industry standards (e.g., ISO 27001, NIST, CIS).
· Provide guidance on regulatory compliance (e.g., GDPR, HIPAA, PCI-DSS).
· Assist with the design and implementation of technical security solutions such as firewalls, endpoint protection, SIEM, IAM, DLP, and encryption.
· Lead or support incident response and digital forensics investigations when security breaches occur.
· Prepare and deliver detailed technical reports, risk mitigation plans, and executive summaries.
· Advise stakeholders and clients on security awareness programs and training initiatives.
· Collaborate with IT and development teams to embed security by design in IT infrastructure and software development life-cycles.
· Stay current with emerging threats, vulnerabilities, and technologies to ensure up-to-date protection.
Qualifications:
· Bachelor’s degree in IT, Information Security, or related field (Master’s is a plus).
· Industry certifications such as CISSP, CISM, CEH, OSCP, ISO 27001 Lead Implementer/Auditor, or similar.
· 3+ years of experience in Cybersecurity roles, preferably in consulting or advisory environments.
· Strong understanding of network security, cloud security, endpoint protection, and application security.
· Familiarity with SIEM tools, penetration testing tools, vulnerability management & GRC platforms.
· Excellent communication skills with the ability to convey complex technical concepts to non-technical stakeholders.
· Strong analytical thinking and problem-solving skills.
