ISMS (Information Security Management System) Consultant

An ISMS (Information Security Management System) Consultant develops, implements, and manages security frameworks (like ISO 27001) for organizations, focusing on risk assessment, policy creation, compliance, and security awareness to protect information assets. Key duties include gap analysis, running internal audits, creating documentation, training staff, managing security incidents, and ensuring continuous improvement for certifications and regulatory adherence. Key Responsibilities:

• Framework Implementation: Design and implement ISMS based on standards like ISO 27001 and ISO 22301 (Business Continuity).
• Risk Management: Conduct risk assessments, identify vulnerabilities, and implement mitigation controls.
• Policy & Documentation: Develop, review, and maintain security policies, procedures, and guidelines.
• Auditing & Compliance: Perform internal audits, manage external certification audits, and ensure adherence to standards.
• Awareness & Training: Create and deliver security awareness programs for employees.
• Reporting: Generate security reports (patching, incidents, compliance) for management.
• Stakeholder Management: Coordinate with IT, management, and external auditors.

Essential Skills & Qualifications:

• Strong knowledge of ISO 27001, risk management, and security frameworks.
• Experience with GRC (Governance, Risk, & Compliance) tools.
• Excellent communication, presentation, and project management skills.
• Relevant certifications (CISA, CISM, CISSP, ISO 27001 Lead Implementer/Auditor) are often required.
• Locally available ( if possible )
• Immediate joiner ( if possible )

Job Type: Full-time

Application Question(s):

• Age:
• Total Number of ISO27001 projects Implemented :
• Total number of ISO 27001 projects led as the main lead implementer :
• Total number of ISO 27001 projects where you worked in a supporting role (not the main lead):
• Joining Period after offer is provided:
• Years of experience in ISMS :
• Current Salary (QAR):
• Expected Salary (QAR):