We are seeking an experienced Information Security Consultant responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.

Responsibilities :

- Review client policies and procedures, suggesting improvements related to information security.

- Assess on-premise and cloud infrastructure setups, identifying security improvement areas.

- Develop and implement information security policies and procedures.

- Conduct training sessions on information security awareness and best practices.

- Perform internal information security audits across departments in line with ISO 27001 requirements.

Requirements :

- Degree in Engineering (Computer Science/IT), MCA, or Business Administration with a technology focus.

- 2-4 years of experience in risk management, information security, or IT.

- Professional certifications such as ISO 27001 Lead Auditor/Lead Implementer, CISA, or CISSP (preferred).

- Familiarity with information security management frameworks (ISO/IEC 27001, SOC2, ISO27701, NIST).

- Understanding of security controls in cloud platforms (AWS, Microsoft Azure) is an advantage.

- Strong written and verbal communication skills with high personal integrity.

- Ability to think innovatively, lead, and motivate cross-functional teams.