Cyber Security Consultant

About the role

The firm is looking for bright and passionate consultants with 2‑4+ years of experience in information security to join its IT consulting practice. The role will involve delivering and managing client engagements across a wide range of security domains, from risk assessment to security operations.

Key responsibilities

• Execute and manage client security engagements, including audits, assessments and implementation projects.
• Design and review network architectures, infrastructure, and web applications for security compliance.
• Perform vulnerability assessments, penetration testing, and source‑code reviews.
• Implement and operate Security Operations Center (SOC) and Security Incident and Event Management (SIEM) solutions.
• Deploy security technologies such as PIM, DLP and IDM.
• Develop and enforce security policies, procedures and hardening standards for operating systems and databases.
• Provide client‑facing communication, reporting and documentation of technical risk findings.

Required profile

• 2‑4+ years of experience in information security, risk management and related standards.
• Experience in ISO 27001, NESA, ISR, NIST CSF and cybersecurity risk frameworks.
• Client‑facing experience and ability to travel as required.
• Strong analytical and written communication skills for technical reports and presentations.

Required skills

• ISO 27001, NESA, ISR, NIST CSF, PCI DSS, GDPR, ITIL, COBIT.
• Network design, infrastructure audit, IT security, vulnerability and risk assessment.
• Web application security, source‑code review, penetration testing.
• SOC and SIEM implementation and operation.
• Security technologies: PIM, DLP, IDM.
• Operating system and database hardening, testing and security management.
• Scripting (Perl, PHP, Python, Bash) and programming (C, C++, Java).
• ISMS and BCMS implementation.