We are looking for a Security Consultant for our organization in the Industrial Sector.
We are looking for candidates to develop and maintain product development processes and workflows, ensuring compliance with security frameworks. These processes need to be clearly understood and embedded within the development teams. The work environment is agile, where flexibility and effective planning are essential skills.
Responsibilities:
Implement security compliance in product development processes, focusing on standards such as IEC 62443-4-1 and other OT security standards.
Translate cyber security standards into easily understandable formats.
Understand the organizations ways of working and stakeholder requirements.
Conduct gap assessments and scale the organizations ways of working to comply with standards.
Formulate and document processes and procedures in line with standards, ensuring easy maintenance and intuitive execution by all stakeholders.
Establish user guides, work instructions, and templates to support compliance with derived processes and procedures.
Provide support and analysis on making solutions compliant with standards such as IEC 62443-4-2 and ETSI 303 645.
Perform internal audits and assessments to document process compliance.
Requirements
10+ years of experience, with at least 5 years of relevant experience.
Experience in developing and implementing ISO 27001 in the software product development industry, preferably in the embedded product development sector.
Experience in auditing and conducting assessments of Information Security Management Systems (ISMS).
Willingness to work with and establish IEC 62443-4-1 in an embedded product development environment.
Knowledge of global regulations and legislation such as GDPR, ENISA, DHS, UK NCSC/GCHQ, etc.
The work location is Chennai, following a hybrid work model.