Cyber Security Consultant

Cyber Security Consultant

**Introduction**

Our client is a very well-established IT and Cybersecurity firm in Gauteng.

Cyber Security Consultant focus on protecting online data from being compromised. The work is multifaceted, involving analysing everything from networks to computers, policies, guidelines, training, vulnerability testing, and software products and services.

The Consultant will be required to identify problems, evaluate security issues, assess risk, and implement solutions to defend against threats to the customer’s networks and computer systems. In the process, deal with many variables when evaluating security systems and craft layers of protection in a fast-changing IT landscape.

The Cyber Security Consultants will be required to look at every level of a customer’s computer systems and how those systems interconnect, in order to determine the best way to protect a customer’s data.

It is furthermore expected of the Consultant to evaluate information technology (IT) networks to identify vulnerabilities and minimize risks to the customer.

**Mandatory Requirements**:
 Must come from Cybersecurity and/or IT background

 Current Work Experience within SME sector

 Fluent in Basic Computer Literacy: Microsoft Excel, Word & PowerPoint

**Education and Experience**:
**Required**:
 Senior Certificate

 At least one of the following Certifications:
 CompTIA Security+

 Certified Information Systems Security Professional (CISSP)

 Certified Information Systems Auditor (CISA)

 Certified Information Security Manager (CISM)

 Certified Ethical Hacker (CEH)

 GIAC Security Essentials Certification (GSEC)

 5+ Years’ Experience

**Beneficial**:
 Degree or National Higher Diploma in Computer Science; Cyber Security; or a related field, such as engineering.

 Certification in Compliance - PCI, HIPAA, NIST, GLBA, and/or SOX

 Certification in Frameworks - ITIL and/or COBIT

 Certification in Project Management

**Responsibilities**

The role of a Cyber Security Consultant is focused on protection, but this can cover many different facets that involves executing strategic services related to the customer’s cyber security posture.

Specific responsibilities may include:
 To find the most efficient way to protect the system, networks, software, data and information systems against any potential attacks.

 To implement vulnerability testing, threat analyses, and security checks.

 To perform the research on cyber security criteria, security systems, and validation procedures.

 To successfully manage meetings with IT departments to fix specific internet safety problems.

 To calculate accurate cost estimations and categorise integration issues for IT project teams.

 To plan and design healthy security architectures for any IT project.

 To investigate and provide security solutions using business standard analysis criteria.

 To deliver technical reports and official papers relating to test findings.

 To give professional supervision and guidance to security teams.

 To update and upgrade security systems as required.

 To identify, qualify and scope new opportunities at the customers.

 Conduct information security management reviews and information security management system (ISMS) assessments

 Ensure technical implementation and business processes are aligned

 Lead the design, implementation, operation and maintenance security management systems

 Participate in the creation, review and update of information security policies

 Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied

 Provide or assist with implementation documentation

 Ongoing project management

It will be expected of the Consultant to provide customers with the ongoing cyber security advice and services to protect their systems, employees, and clients. Therefore, a comprehensive understanding of the latest threats, procedures, and facilities is essential.

**Skills**

The Consultant requires a balance of strong technical and interpersonal skills. Security systems must remain adaptable to keep pace with technology, so possessing the technical skills to update and upgrade systems is a core function.

**Technical**

 In-depth understanding of the ethical standards in hacking and coding

 Working knowledge of potential threats such as social engineering, phishing, and network access and how they can cause harm

 Ability to conduct penetration testing, which occurs when the consultant acts as a hacker to determine the security of the system and the vulnerabilities of concern to clients

 Knowledge of operating systems, including Windows, UNIX, Linux, ongoing upgrades, and new systems that roll out continuously

 Fluency in programming languages such as Python and Javascript

 Encryption techniques to mitigate risks posed by hackers

**W