Associate Infosec Consultant (GRC)
Experience: 4 Years and above
The Associate Infosec Consultant is responsible for supporting the development, implementation, and management of Information Security Management Systems (ISMS), UAE IA, ISR, BCMS, statutory requirements and GRC frameworks for client organizations. This role involves conducting risk assessments, ensuring compliance with industry standards, and providing recommendations to enhance governance, risk, and compliance posture. The ideal candidate will have a foundational understanding of GRC principles, strong analytical skills, and the ability to collaborate effectively with cross-functional teams.
Roles and Skills required
- Assist in the design, implementation, and maintenance of ISMS frameworks in accordance with ISO 27001 and other relevant standards.
- Support the development of information security policies, procedures, and documentation to ensure compliance with industry best practices.
- Collaborate with clients to understand their security requirements and tailor ISMS solutions to meet their needs. Conduct risk assessments to identify vulnerabilities and threats to client information assets. Support clients in achieving compliance with regulatory requirements and industry standards (e.g., SWIFT CSP,NIST, PCI-DSS).
- Assist in conducting compliance audits and assessments, preparing reports, and recommending corrective actions. Support client meetings and presentations, providing insights and recommendations for improving governance, risk, and compliance.
- Stay current with the latest developments in GRC, ISMS, and information security trends.
- Guide the team members on the Technical and Information Security requirements.