CISO as a Service Cybersecurity Consultant

Duties and Responsibilities:

This individual will play a crucial role in developing and managing information cybersecurity for our clients. As a Cybersecurity Consultant, you will be responsible for developing, evaluating, and reviewing information security policies in accordance with relevant standards and frameworks such as ISO27001, NIST.

We are seeking an individual who can bring a high level of expertise and professionalism to our clients' cybersecurity needs. If you are passionate about cybersecurity, possess strong technical skills, and are eager to make a positive impact, we invite you to join our team as a CISO as a Service Consultant.

Job scope:

• Develop, evaluate, implement and maintain cybersecurity policies, procedures, and standards for clients.
• Provide cybersecurity risk management services, including conducting risk assessments, vulnerability assessments, and threat analysis.
• Manage and coordinate the execution of cybersecurity programs, ensuring compliance with industry/regulatory standards and frameworks, conducting security awareness training, and developing incident response plans.
• Offer guidance and mentorship to clients' security teams, including assisting with policy development, program management, and planning cybersecurity roadmaps.
• Collaborate with clients' executive teams to ensure the alignment of security strategy with business objectives.
• Conduct cybersecurity program assessments and provide recommendations to improve clients' security posture.
• Assist in developing proposals, statements of work, reports, and other deliverables as part of the sales and delivery process.
• Collaborate closely with other cybersecurity professionals to ensure the implementation and alignment of cybersecurity activities with clients' business objectives and requirements.

Requirements:

• Bachelor's degree in computer science, information security, or a related field.
• At least 2-4 years of experience in cybersecurity, with experience in CISO office (e.g., IT security engineer), Governance Risk and Compliance (GRC), security assessments (VAPT, red teams) or similar roles.
• Proven experience in developing and implementing cybersecurity policies, procedures, and standards.
• Strong technical understanding of information security concepts and technologies, including network security, endpoint security, cloud security, and threat intelligence.
• Knowledge of the latest threats and trends in information security.
• Excellent communication and interpersonal skills, with the ability to effectively communicate.
• technical information to both technical and non-technical stakeholders.
• Relevant certifications such as CISSP, CISA, CISM, or CRISC.
• Familiarity with common information security management frameworks, such as ISO/IEC 27001 and NIST.
• Excellent written and verbal communication skills coupled with a high level of personal integrity.
• Innovative thinking and leadership abilities with the capacity to lead and motivate cross-functional, interdisciplinary teams.

Preferred Skills/Qualities:

• Familiarity with Singapore cybersecurity regulations and related industry-specific standards
• Experience working with Singapore Government agencies/ministries.
• Strong client engagement skills.