IT Security Risk Consultant - Leidschenam nr Hague - Holland 12 Month

(IT Risk Consultant, IT Security Consultant, Holland, Netherlands, den Haag, the Hague, Information Security Consultant)

My blue chip client based in Holland (Leidschendam nr the Hague) are looking for an IT Security Risk Consultant.

You will be responsible for setting up and implementing an Risk IT framework for Information Security including supporting processes and procedures, based on Cobit Risk IT and aligned with ISO 27001/2.

Summary of essential job components:
Setup and implement an IT Risk Framework for Information Security based on Cobit Risk IT Risk

Identify, cover and include all customer contractual requirements relating to IT Risk management in the framework and supporting processes

Cover the alignment (and documentation) with both customer and supplier requirements in the Risk Management space

Align the work with ISO 27001/2

Include Risk Governance, Accountability at business level, IT Risk Appetite and IT Risk Tolerance, IT Risk-awareness, Communication and Reporting
Include Risk Evaluation, Expressing and Describing Risks, Risk Identification, Top Down and Generic Scenarios, Analysis, Risk Inventory, including Data Collection model and Risk presentation

Include Risk Response and Prioritisation, Risk Management of presented risk against, align with Incident Management in particular with Incident Response Plans Minimum requirements

Work Experience: Must have working knowledge of Cobit Risk IT

Work Experience: Must have working knowledge of ISO 27001/2, for example ISO 27001 Lead Auditor. An efficient and structured work ethic Abilities required
Must be able to function autonomously and be able to meet set goals and criteria

Educational Background: Graduation HBO, bachelors' degree or any equivalent combination of experience or training Work Experience: Must have at least 3, preferably 5, years of Risk IT experience and a track record of
achievement in a technology driven, multi-national environment with an emphasis on Information Security Risk Management in the Information Security space for Data, Voice, Internet Services, etc. Experience in IT operations and
administration is a pro.

Must be a team player that is able to initiate and maintain strong relationships with in- and external parties Must have
In-depth IT Security knowledge

Must be able to effectively communicate with others outside his/her area of expertise

Must be aware of the disciplines within a professional and dynamic IT environment

Must be aware of costs associated with relevant activities

Preference for candidates with CISA and/or CISSP certification

Please send your CV in the first instance to be considered.