Cyber Security Consultant
CurrentLead delivery on the client expectation for IT & Cybersecurity standardsPlan, organized, and executed internal IT security best practices aligned with strategy, protected information assets, and implemented risk control measurementsImplementation of policies, standard procedures, and compliance standards such as ISO 27001, ITIL, PCI-DSS, Six Sigma, HIPAA, SOC-2 Type IIExecute organization-wide VA&PT, manage third-party assessment for ISO 27001, PCI-DSS, HIPAA, SOC-2 Type IIPerform BIA (business impact analysis) and risk assessment to implement controls after review with management and key stakeholdersProvide oversight and guidance during security incidents and investigations, ensure root cause analysis is undertaken and input suggested approaches to deal with lessons identifiedRegular review of existing security practices and mechanisms to recognize needed improvements and enhancements as per changing business needs