SWITCH TECHNOLOGY
SWITCH Technology provides consultancy, projects and education in areas such as information security, cyber security, risk management, privacy and compliance.
SWITCH Technology’s team of information security consultants provide IT risk management, information security and compliance consulting services to clients in a variety of industries. Our consultants routinely perform risk assessments, audit systems for compliance, work with IT and business leaders to identify and properly mitigate risks, recommend improvements for administrative, technical and physical controls, help clarify compliance requirements and lead incident response activities. The Information Security Consultant may act as CISO for a client.
TASKS
- Audit, test, or review IT systems, network or application architecture and business processes for compliance with best practices and/or regulatory requirements
- Review and recommend technical, administrative and physical controls to mitigate identified risk
- Perform risk assessments of IT infrastructure and applications and make recommendations for improvements based on the client’s stated risk tolerance levels
- Develop materials and processes to assist clients with implementing both technical and non-technical controls
- Assist with incident response during security events
- Facilitate, and promote activities to create and improve information security awareness within the organization
- Educate stakeholders on cybersecurity-related matters in an effort to increase awareness and improve culture
SKILLS/QUALIFICATIONS
- 5+ years of relevant experience as a security consultant, analyst, engineer, IT lead, or similar role focused on information security responsibilities
- Ability to identify and evaluate risk to IT systems and associated business processes and communicate risks to management
- Proven experience with regulatory/compliance requirements (e.g., HITRUST, SOX, FISMA), information security frameworks and controls (e.g., NIST, ISO 27001/27002, CIS)
- Demonstrated experience reviewing and recommending appropriate technical, administrative, and physical controls
- Experience selecting and implementing appropriate risk mitigation strategies to ensure IT systems remain within established risk tolerance levels
- Ability to develop policies, standards and baseline configurations
- Strong attention to detail and ability to document findings and convey information
- Ability to manage project deliverables and deadlines
- Ability to clearly communicate with co-workers, management, clients and vendors
- Maintain a professional appearance and vocabulary
- Experience with cloud security a plus (Amazon AWS, Microsoft Azure, or Google Cloud Platform)
- Good command of the Dutch and English language, spoken and written
EDUCATION/CERTIFICATION PREFERENCES
- BSc or MSc degree in Information Security, Information Technology, Computer Science or a related discipline
- Relevant professional certifications (e.g., CISSP, CISM, CISA, CEH, SABSA, GDSA, GCIH)