Information Security and IT Governance Consultant

Job Objective:

As a Consultant in Information Security & IT Governance, you will play a crucial role in advising our clients on how to manage technology risks, improve IT performance, and ensure IT systems are effective and compliant with current standards. You will work closely with client organizations to develop and implement comprehensive information security strategies, governance frameworks, and risk management solutions.

Duties & Responsibilities:

Consultant shall be a respected professional in her/his field who shall consistently apply the firm’s policies and procedures to:

1. Advisor:

(a) Assist clients in understanding and adhering to regulatory requirements. Conduct compliance audits and gap analyses.

(b) Contribute expertise to client and internal assignments.

(c) Keep abreast of developments in area(s) of expertise so as to retain the position of as recognized specialist.

(d) Develop experience beyond current boundaries for both personal and the firm’s development.

(e) Build and maintain strong client relationships. Understand client needs and provide tailored solutions.

2. Governance Frameworks:

(a) Develop and implement IT governance frameworks, ensuring that IT investments align with business goals. Provide guidance on IT governance standards, such as COBIT, CISSP and ISO/IEC standards.

 3. EOIs and Proposals:

When assigned by her/his Staff Manager, assist in preparing:

(a) Expressions of interest.

(b) The technical component of a proposal as directed by the designated Staff Manager, including conducting any necessary research.

4. Assignments:

(a) Carry out assignment duties in accordance with the terms of reference and assignment programme.

(b) Carry out assignments employing professional knowledge and innovative solutions to problems encountered.

(c) Prepare and submit weekly reports to the Assignment Manager.

(d) Ensure that a soft copy of every document relating to an assignment (whether a Word document, spreadsheet or in another format) is duly filed in that assignment’s file in the Assignment Management System.

(e) Deliver outputs that meets the required professional standards and within the expected time.

(f) Make or participate in presentations to clients as required.

(g) Accept and provide constructive criticism in order to test findings and recommendations and to ensure that the best advice is given and presented through superior quality media, especially in written format.

(h) Work closely with clients to identify needs and identify opportunity to ‘sell on’ other professional services.

5. Training

(a) Develop materials and facilitate as a trainer on topics of area of specialization.

(b) Develop materials and facilitate generally as a trainer and facilitator for the firm’s training programmes, thus gaining exposure to other skills and topics and honing presentational skills.

6. Team Leadership

(a) Hold regular team meetings in order to review progress and ensure exchange of experiences and ideas.

(b) Lead and manage complex projects, ensuring delivery within scope, time, and budget. Coordinate with multiple stakeholders and manage project teams.

(c) Act as the day-to-day interface between the client and our team.

(d) Encourage, motivate and manage the team on site.

(e) Manage the assignment in accordance with the instructions given by the Assignment Manager and keep her/him informed of progress.

7. Thought Leadership:

(a) Contribute to the development of white papers, case studies, and presentations. Stay abreast of emerging technologies and cybersecurity trends.

ESSENTIAL SKILLS:

• Technical skills in Networking and System Administration.
• Excellent project management and leadership skills.
• Ability to work as a member of a multi-discipline professional team working in a multi-cultural environment.
• Ability to multi-task and to work under pressure.
• Good analytical skills and an eye for detail.
• Ability to identify issues and value for money solutions that will satisfy clients’ needs in a complex setting.
• Imagination and creativity that can be translated into innovative but practical solutions.
• Good authorship and editorship so as to be able to convey findings, ideas and opinions in a convincing manner in all written material.
• Ability to apply relationship skills including tact and discretion.
• Strong innovative problem-solving skills.
• Effective presentation skills and a confident speaker.
• Strong drive and focus, coupled with other listed skills, to be able to convert plans into action and requisite results on time.
• Good oral and written English.
• Able to conduct interviews effectively.
• Able to work on own initiative with minimal supervision.

Requirements

1. Bachelor’s degree in Engineering or Computer science and any other relevant field.
2. 5 - 7 years cognate experience in Information Security/ IT Governance
3. Knowledge of current and expected changes in business that will impact on her/his area of specialization.
4. A track record of progressive achievement and advancement in leading IT Security and Governance assignment.
5. Experience in risk assessment, data protection, and compliance management.
6.  Must have at least four of the following professional qualifications:

• Networking – CCNA, CCNP.
• System Administration – MCTS, etc.
• Project Management - Prince2/PMP.
• Enterprise Architecture Certification – TOGAF 9.2/10.0.
• IT Security – CISSP, ISO 27001LA/LI/QSA.
• IT Service Management – ISO 20000 Practitioner.
• IT Service Delivery – ITIL v3 Foundation.
• Business Continuity Management – ISO 22301 LA/LI.
• IT Governance – COBIT5 Assessor/Implementer.