GRC CONSULTANT

About Atos Group

Atos Group is a global leader in digital transformation with c. 67,000 employees and annual revenue of c. €10 billion, operating in 61 countries under two brands — Atos for services and Eviden for products. European number one in cybersecurity, cloud and high performance computing, Atos Group is committed to a secure and decarbonized future and provides tailored AI-powered, end-to-end solutions for all industries. Atos Group is the brand under which Atos SE (Societas Europaea) operates. Atos SE is listed on Euronext Paris.

The purpose of Atos Group is to help design the future of the information space. Its expertise and services support the development of knowledge, education and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the Group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.

GRC Consultant

Information Security Risk Management with experience in implementing and maintaining Risk Management frameworks (ISO 31000 & ISO 27001, PCI DSSv4.0)

• Should have executed and managed consulting and audit assignments for clients in the areas such as internal audit, operational risk management and compliance management.
• Should be adept at conducting gap analysis, risk assessments to identify vulnerabilities.
• Have worked with organizations to develop Business Continuity Plans and Disaster Recovery related processes. 
• Should be able to understand and explain technical vulnerabilities
• Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure coding practices and product security
• Should have Knowledge on information security incident management. 

Specific Duties and Responsibilities Include:

• Proactively protect the organizations information by ensuring appropriate information security controls are in existence and enforced
• Conduct audits to verify the compliance to organizations security standards
• Assist in Business Continuity Planning and Implementation.
• Metrics collection & reporting
• Provide Advisory support for Implementation of PCI DSS.
• Perform PCI DSS QSA and QA audits and write Reports. 

Must Have Skills

• Excellent communication and presentation skills.
• Able to effectively interact with various functions.
• Good to have Skills / Certification Minimum: ISO27001:2013 Lead Auditor course, PCI DSS Implementor and PCI DSS Auditor
• Good to have: CISSP, CISA, CISM, ISO22301QualificationBE/ BTech, MCA, MBA with specialization in Information Security.