Advantio is a leading Cyber Security and Managed Security Services (MSS) provider that helps businesses fight Cybercrime, protect data and reduce security risk. Offering a comprehensive portfolio of Cyber Security Advisory & Testing Services, Managed Security Services, Technology Solutions and Cyber Security Education, Advantio is the security partner of choice for many large corporate enterprises globally covering a wide range of industries including but not limited to banking, insurance, gambling, travel, retail, telco, oil & gas and public sector bodies. Advantio primarily serves the Payment Card Industry and when it comes to payment transactions, has been recognised by VISA as one of Europe’s top Qualified Security Assessor (QSA) providers.
For more information about Advantio, visit https://www.advantio.com
Role
Successful candidate for this role will conduct independently technical and documental assessments related to Information Security, Data Protection, Privacy, GDPR and other regulatory security and compliance engagements.
Responsibilities
To provide senior information security and data protection advice to Advantio’s clients and customers. To lead engagements, provide detailed analysis, remediation and ongoing support. To provide expert advice internally to the compliance management teams and wider professional services team. To develop the departments Information Security and Data Security offerings in conjunction with the data protection teams, management consultants and Head of Professional Services. To provide detailed reporting metrics internally and externally and provide program management support. To work with junior consultants to provide mentorship and development.
Assessment and GAP Analysis
- Identifies all the stakeholders, sponsors, technical references (e.g., IT Project Manager, Software Engineer, Security Analyst) of the client to define the initial conditions and the needs analysis
- Gather information from customers about relevant existing compliance elements, through onsite assessments, interviewing people working in the company.
- Define scope of compliance analyzing business processes, IT architecture, application, and systems
- Analysis of business processes through the observation and set of interviews with practices leads to define how and in what capacity organization collect and use personal data.
- Assess and analyze internal Policies & Responsibilities
- Compares what the company currently does against what it should do according to the GDPR regulation.
Improve and Remediate
- Provides the customer with a remediation plan, written with and approved by a GDPR Practice Lead inside the company
- Supports all the remediation process ensuring that the gaps are filled correctly
- Fulfil documents and policies fulfilment to respect the regulation
Ongoing Support
- Provides the customer with a remediation plan, written with and approved by a GDPR Practice Lead inside the company
Training, Awareness
- Prepare and provide GDPR training, raising awareness within the companies
- Commencing Data Inventory and IT Assessment
Documentation
- Prepare a Data Processing Inventory
- Fulfil a Gap Analysis Document
- Provide and document a Risk Analysis and risk Ranking Evaluation
- Prepare a DPIA report
- Prepare a GDPR summary
Knowledge and Skills
- Minimum 5 years’ experience in delivering consultative engagements using well known risk management and data security frameworks, standards and methodologies
- An aptitude for understanding and documenting complex business processes and data repositories
- The ability to develop high quality presentations, policies, and operating procedures
- Ability to interpret and present legislative directives to both technical and business
- audiences
- Ability to translate activities into easy-to-follow flow charts and processes
- A broad range of information security skills covering Privacy, Data Governance, Data Protection, Risk and Compliance
- GDPR regulation
- ISO 27001:2013 Standard
Required language(s) written/spoken:
Skills:
. ISO 27k (Auditor)
. GDPR and/or Data Protection regulation
Values and Competencies
- Problem Solving
- Planning and Organization
- Communication
- Networking
- Results Orientation
Advantio Core Values
- Harmony, always strive to create harmony
- Openness, always be open
- Social Responsibility, be socially responsible
- Timeless, Whatever you build make it timeless
- Accommodating, Make our customers feel at Home
- Learning, Be a Learn it all
- Deliver, Results
This job has now closed
You can find more jobs over on our careers page.
See More Jobs