· Candidate carries experience in design, development & maintenance of Information Security Management System, Privacy Information Management System, Business Continuity Management System, Infrastructure Security, Operations Security, Security Projects Transition /Transformation

· Experience in performing Information Security Risk assessment, cyber security, business impact assessment and Privacy Impact assessment

· Knowledge and exposure working with global regulatory frameworks applicable to BFSI, Healthcare, Telecom, Education, Real-estate etc.

· Experience in implementation of international standards like NIST CSF, GDPR, CIS, ISO 27001, ISO 27701, ISO 22301, PCI DSS, NESA/SIA, UAE Data Protection Law, COBIT etc.

· Experience in auditing of international standards like NIST CSF, GDPR, CIS, ISO 27001, ISO 27701, ISO 22301, PCI DSS, NESA/SIA, UAE Data Protection Law, COBIT etc.

· Knowledge and experience in GRC workflows (IT GRC tools like Archer, Risk vision, etc.)

· Candidate is aware of new technology platforms/emerging technologies

· Experience with handling a security incident response

· Experience in Policy governance, implementation, management & assessment/audits of ISMS/PIMS/BCMS

· Delivery of value-added technology/cyber risk consulting & assurance services to clients

· Excellent client relationship management skills, dispute handling, writing, social and convincing skills

· Experience in proposal writing and assisting with client presentations

· Ability to deliver work within tight time-scales, to budget and to a high quality

· Candidate has played a lead auditor/lead implementer role relevant to the domains in the past