Information Security Management Consultant

🧑‍💻 About IRIUM

At IRIUM, we encourage you to chase your dreams! We're here to support you in achieving your goals while you enjoy the journey.

🤝 The Role

We're looking for an Information Security Management Consultant to join our team.

What You'll Do

• Assess existing security processes and policies.
• Offer expert advice on best practices in cybersecurity.
• Craft and refine cybersecurity strategies to meet client needs.
• Collaborate with the team on assessments and audit projects, including defining policies & procedures and implementing frameworks/best practices (e.g., information security management or business continuity).
• Support the development, documentation, and implementation of security architectures, action plans, and controls in line with policies, standards, and best information security practices.
• Provide recommendations on the architecture of applications and cybersecurity infrastructure, adopting a "Security by Design" approach.
• Ensure that procedures, control plans, methods, and tools are in place.
• Evaluate and analyze the effectiveness of controls.
• Gather and analyze results and action plans with a critical perspective.
• Identify risks arising from control non-compliances and propose mitigation plans.

What We're Looking For

• Education: Master's or Bachelor's degree in Computer Science, Information Technology, Engineering, or a similar field.
• Experience: At least 3-4 years of professional experience in technology and security functions.
• Background: Experience in cybersecurity and risk assessments, ideally in roles like security analyst, security engineer, or security consultant.
• Knowledge: Strong understanding of the IT enterprise landscape, OT landscape, IT architecture, security architecture, security building blocks, network security, and concepts like security testing, cloud security, and hybrid cloud setups.
• Skills: Technical expertise, conceptual thinking, analytical skills, and a deep understanding of cybersecurity principles to assess and improve architecture security.
• Communication: Excellent communication and presentation skills.
• Frameworks & Methodologies: Experience with security frameworks and methodologies such as CIS Security, NIST, OWASP, and Mitre Attack.
• Standards & Regulations: Familiarity and experience with one or more of the following: ISO27001, NIS2, Dora, NIST800-53, ITGC, GDPR, Business processes transformation, Change management, Business Continuity.
• Tools: Experience with process design tools and Microsoft Office.
• Languages: Fluency in English and Portuguese (B2/C1 level).
• Preferred: Professional security certifications like ISO27001, CISSP, CISM, CISA, CRISC, or similar.

Benefits

• An innovative and growing company with ample opportunities for professional development.
• Compensation based on your experience and performance. Access to flexible pay and medical insurance as a social benefit.
• Unlimited access to technological training at no cost.

The IRIUM Culture

IRIUM thrives on dynamic and proactive professionals. We value responsibility and commitment to quality work. If you share these values and are eager to contribute, IRIUM might be the place for you!

Interested?

We can build the future together. Let's talk! Send your CV to: recrutamento@irium.pt

Diversity & Inclusion

At IRIUM, we advocate for a world free of stereotypes and limitations. We believe in equality for all, as reflected in our Equality Plan and Code of Ethics, ensuring equal treatment and opportunities for everyone, regardless of their personal, physical, or social background.

Category: AI & Machine Learning