Information Security Consultant, TSCM-40890

Assist one of ELEKS' clients with Information Security Management System (ISMS) activities, such as updating policies, performing risk assessments, managing ISO27001/SOC2 certification audits, and implementing new information security solutions. Responsibilities include developing, implementing, and periodically reviewing IS policies, procedures, and protocols, as well as responding to client ISMS-related requests for information. Perform comprehensive security assessments to identify potential risks and vulnerabilities and conduct periodical risk assessments of 3rd parties and software/hardware utilized by the organization. Configure and maintain security solutions, including firewalls, data leakage prevention (DLP), extended detection and response (XDR),intrusion detection/prevention systems (IDS/IPS), etc. Assist with analysis and response to security incidents and breaches and collaborate with IT and other departments to ensure security measures are integrated into all aspects of the organization's operations. Provide expert advice and guidance on information security best practices and emerging threats, participate in the development of security awareness trainings and phishing exercises for employees and stay up to date with the latest security trends, technologies, and regulatory requirements. Participate in audits by coordinating the collection of evidence and responses to audit requests and assist with definition, documentation, tracking and implementation of remediation activities for IS risks, issues and audit findings.