Governance, Risk & Compliance Consultant

Governance, Risk & Compliance Consultant Nivel 1 OmniAccess is hiring! We are in search of a Governance, Risk & Compliance ConsultantDescriptionThe GRC (Governance, Risk & Compliance) consultant is a security professional who provides guidance and leadership to OmniAccess security and compliance solutions and services. You will coordinate the implementation, development, maintenance and evolution of the compliance-related services. You will collaborate closely with Devel, Infrastructure and Operations teams by providing compliance end-to-end security advice.Responsibilities:* Work and implement IMO Security framework for our customers.* Carry out professional services (risk assessments, certifications)* Be part of the maintenance of the ISMS certification process for Cyber Security services (ISO 27001, etc) and OmniAccess as a company.* Identify and manage the actions required to ensure compliance to the required governance standards.* Create and maintain policies within our Information Security Management System, to support business requirements and align with ISO 27001.* Maintain a register of security controls, to identify compliance against security standards, including ISO 27001, NIST, COBIT etc.* Develop and enhance security policies, processes, procedures, and technical controls to strengthen Omniaccess' security capabilities and resilience to cyber threats.* Participate in Omniaccess Risk Management process and audit activities.* Collaborate with other Cyber Security services to achieve a holistic service portfolio.* Assist with security incident management and response activities.* Arranges compliance training for staff.* Travel needs: Up to 15% Knowledge and skills* Have at least 3 years hands-on working experience in a similar role.* CISA, ISO 27001 Lead Auditor, Lead Implementer, CDPSE.* Excellent working knowledge of security and governance, risk, and compliance within an enterprise environment.* Hands-on experience of enterprise information security and standards for example: ISO 27001, 27002, ENS, GDPR or Cyber Essentials.* An ability to communicate complex risks to diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner.* Able to quickly build positive relationships and collaborate across technology teams, with the wider business and partners and develop a good understanding of their strategy and key business drivers.* Experien#J-18808-Ljbffr