ISMS/ISO 27001 Implementation Specialist at Orange Parachute
Location: Greater Los Angeles (Greater Los Angeles Area)
Job Description
Orange Parachute is currently seeking to add three ISMS / ISO 27001 Implementation Consultants for projects throughout the United States. These are contract-to-hire positions. Please visit www.orangeparachute.com for more detail on our ISMS / ISO 27001 service areas.
The ISMS Implementation Consultant will be responsible for developing and implementing Information Security Management Systems (ISMS) resulting in ISO 27001 certification for our end clients. You will be trained via our ISMS / ISO 27001 Implementation Training Course and will also be trained in the Orange Parachute Proven Process™, which is a 5-phase methodology starting with a Phase 1 ISMS/ISO 27001 Gap Assessment, moving into Phase 2 PLAN, Phase 3 DO, Phase 4 CHECK, and finally, Phase 5 ACT. You will be provided with all of our proprietary tools and processes and will have access to experienced senior-level ISMS implementation experts. You will work with our ISMS Practice Lead and our sales reps to ensure proper scoping takes place prior to beginning any Phases.
Candidate must be willing to travel 100% of the time to begin with, tapering off as you become more accustomed to our delivery methodology and depending on client acceptance of remote work. Must reside within driving distance to a major metropolitan airport. Travel schedule will be to fly out on Sunday afternoon/evening and return home on Thursday evening, with Friday being an off-site documentation day. If documentation is completed on the plane on the way home, then Friday is an off-day.
Required Skills:
Candidate must have a strong background in Governance, Risk and Compliance. Management consulting experience is mandatory. Any background in technical/operational security is preferred. Any experience implementing Information Security Management Systems (ISMS) resulting in ISO 27001 certification is highly preferred and those individuals who have this experience will be a priority. Certifications desired include CISSP, CISA, ISO 27001 Lead Auditor, CISM, PCI QSA.
The ISMS Implementation Consultant will be responsible for developing and implementing Information Security Management Systems (ISMS) resulting in ISO 27001 certification for our end clients. You will be trained via our ISMS / ISO 27001 Implementation Training Course and will also be trained in the Orange Parachute Proven Process™, which is a 5-phase methodology starting with a Phase 1 ISMS/ISO 27001 Gap Assessment, moving into Phase 2 PLAN, Phase 3 DO, Phase 4 CHECK, and finally, Phase 5 ACT. You will be provided with all of our proprietary tools and processes and will have access to experienced senior-level ISMS implementation experts. You will work with our ISMS Practice Lead and our sales reps to ensure proper scoping takes place prior to beginning any Phases.
Candidate must be willing to travel 100% of the time to begin with, tapering off as you become more accustomed to our delivery methodology and depending on client acceptance of remote work. Must reside within driving distance to a major metropolitan airport. Travel schedule will be to fly out on Sunday afternoon/evening and return home on Thursday evening, with Friday being an off-site documentation day. If documentation is completed on the plane on the way home, then Friday is an off-day.
Required Skills:
Candidate must have a strong background in Governance, Risk and Compliance. Management consulting experience is mandatory. Any background in technical/operational security is preferred. Any experience implementing Information Security Management Systems (ISMS) resulting in ISO 27001 certification is highly preferred and those individuals who have this experience will be a priority. Certifications desired include CISSP, CISA, ISO 27001 Lead Auditor, CISM, PCI QSA.
Skills
Candidate must have a strong background in Governance, Risk and Compliance and information security. Management consulting experience is mandatory. Any background in technical/operational security is preferred. Any experience implementing Information Security Management Systems (ISMS) resulting in ISO 27001 certification is highly preferred and those individuals who have this experience will be a priority. Certifications desired include CISSP, CISA, ISO 27001 Lead Auditor, CISM, PCI QSA.
Company Description
About Orange Parachute (www.orangeparachute.com)
Orange Parachute is a management consulting firm that helps clients develop more efficient, effective, and usable information security programs, resulting in increased program visibility, informed choice decision making, speed to compliance, and certification to an international standard (ISO 27001).
We help you:
• Develop a more effective, efficient, and usable information security program.
• Increase your security program visibility to both your executive level as well as other business units.
• Make informed choice (risk-based) decisions so that budget dollars aren’t wasted on unnecessary tools or services.
• Meet compliance efficiently and effectively, regardless of the regulation (speed to compliance), within a cohesive structure or “framework”.
• Create a defensible, standards-based information security posture.
• Confirm to existing and potential clients that your organization is proactively managing its security responsibilities.
• Stand apart from your competition as it pertains to your security practices (market differentiation)
• Increase the understanding and acceptance of the role of information security/information risk management in the organization’s overall enterprise risk management strategy.
• Provide time based assurance, which proves to your executive audience that your program is operating effectively and has a positive ROI.
• Produce concrete metrics that matter, which helps justify budgets, streamline processes, and make more efficient use of available resources.
• Effectively manage security and risk management projects.
• Effective manage third-party risk.
• Certify to ISO 27001.
NOTE: We are also branching into Enterprise Risk Management Systems development and implementation, leveraging ISO 31000.
Orange Parachute is a management consulting firm that helps clients develop more efficient, effective, and usable information security programs, resulting in increased program visibility, informed choice decision making, speed to compliance, and certification to an international standard (ISO 27001).
We help you:
• Develop a more effective, efficient, and usable information security program.
• Increase your security program visibility to both your executive level as well as other business units.
• Make informed choice (risk-based) decisions so that budget dollars aren’t wasted on unnecessary tools or services.
• Meet compliance efficiently and effectively, regardless of the regulation (speed to compliance), within a cohesive structure or “framework”.
• Create a defensible, standards-based information security posture.
• Confirm to existing and potential clients that your organization is proactively managing its security responsibilities.
• Stand apart from your competition as it pertains to your security practices (market differentiation)
• Increase the understanding and acceptance of the role of information security/information risk management in the organization’s overall enterprise risk management strategy.
• Provide time based assurance, which proves to your executive audience that your program is operating effectively and has a positive ROI.
• Produce concrete metrics that matter, which helps justify budgets, streamline processes, and make more efficient use of available resources.
• Effectively manage security and risk management projects.
• Effective manage third-party risk.
• Certify to ISO 27001.
NOTE: We are also branching into Enterprise Risk Management Systems development and implementation, leveraging ISO 31000.
Job ID: 999602
Source
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
Posts
)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
No comments:
Post a Comment