Security Consultant - Digital Trust and GRC

Introduction

The IBM security consulting team provides customized solutions for our clients, not point solutions or basic product installation. The Managing Consultant will work with our clients to understand their specific business issues, both internally and externally and provide solutions to solve specific business issues for our clients. They will be able to look at our client’s issues and work with other senior IBM consultants to provide guidance on a systematic approach to solve these within our client’s budget and timeframe.

The Managing Consultants will provide subject matter expertise in the form of workshops, and consulting engagements, which assess a client’s security capabilities, which could be in the policy, process, technology or organizational areas, identify gaps and recommend cost effective best practices to reduce client risk and increase their handle on security risk. Having hands on implementation experience is a requirement of this position as well at deep technical knowledge of Security Governance tools. The Senior Consultant will assist in pre-sales, sales, closure, and then organizing the delivery of security consulting services with local teams.

Your Role And Responsibilities

The IBM security consulting team provides customized solutions for our clients, not point solutions or basic product installation. The Managing Consultant will work with our clients to understand their specific business issues, both internally and externally and provide solutions to solve specific business issues for our clients. They will be able to look at our client’s issues and work with other senior IBM consultants to provide guidance on a systematic approach to solve these within our client’s budget and timeframe.

The Managing Consultants will provide subject matter expertise in the form of workshops, and consulting engagements, which assess a client’s security capabilities, which could be in the policy, process, technology or organizational areas, identify gaps and recommend cost effective best practices to reduce client risk and increase their handle on security risk. Having hands on implementation experience is a requirement of this position as well at deep technical knowledge of Security Governance tools. The Senior Consultant will assist in pre-sales, sales, closure, and then organizing the delivery of security consulting services with local teams.

Preferred Education

Bachelor's Degree

Required Technical And Professional Expertise

Security Domain Skills

Skills

This position requires knowledge across multiple platforms, processes or architectures. This position requires security consulting skills and the ability to act as a trusted client advisor and a trusted technical lead for the team. The Managing Consultant will need to have skills to be able to work with other IBM teams and:

• Deliver strategic security advisory services
• A proven record of security thought leadership and be recognized for business and technical acumen Cyber Strategy and Risk services
• Depth of knowledge in one or more of the core security areas in Cyber Strategy and Risk such as Security Architecture/Cloud Security/ OT Security/ SAP Security/e-GRC.
• Hands on experience and understanding of compliance (ISO 27001, NCA, SOC 2, COBIT, NIST, PCI DSS, GDPR etc) and Regulatory requirements.
  
  

Core consulting skills

• Strong communication and presentation skills
• The ability to lead large groups and be a primary facilitator and lead.
• Strong written skills
• Comfortable working in a project based / client serving model
• Ability to lead and shape client expectations
• Help drive pursuits and engage in complex deals, matching outcomes to expectations
• Ability to work easily with diverse and dynamic teams
• Ability to work in a matrix management model
  
  

Preferred Technical And Professional Experience

Required Technical and Professional Expertise

• At least 5 years relevant consulting experience in Cyber Strategy and Risk domain
• Security consulting experience across multiple client verticals, including Financial Services, Public Sector, Technology, Telecommunications, Manufacturing, Industrial & Mining etc.
• Experience in developing and updating security strategy, operating model and governance model.
• Experience in Security Governance, Security Process, and Security Policy and Standards design
• Be responsible for executing consulting engagements in the areas of Security Strategy Risk & Compliance.
• Experience in designing enterprise security architecture (ESA) based on SABSA standards
• Hands on solution design and deployment of Security Governance tools.
• Experience in delivering IT security risk assessments, developing control frameworks & security patterns
• Experience with industrial control systems (ICS/ OT) security and/ or Experience with Cloud security solutions
• Experience in designing \ architecting enterprise security solutions
• Experience in developing scope and sizing solutions for a project.
• Ensure quality delivery as per IBM/client requirements.
• Proactively identify project risks and escalate to project stakeholders
• Actively establish and strengthen relationships with external and internal customers
• Assist in developing knowledge assets such as methodologies, templates, white papers etc.
• Work in a team and guide less experienced members in the team
• Identify potential business opportunities on existing consulting engagements.
• Suggest ideas on improving engagement productivity and identify opportunities for improving client service
• Readiness to travel
• English: Fluent (Required)
• Arabic: Fluent (Preferred)
  
  

Preferred Technical And Professional Expertise

• 7+ years in GRC Cybersecurity and related experience
• Bachelor’s degree or master’s degree in technology or Cybersecurity
• Experience working with offshore teams
• Certified in ISO, CISSP, CISA, CISM etc.
• Strong understanding of Information Technology, IT Security and Cybersecurity
  
  

KSA based role - KSA National required