Information Security Consultant

Job Title : Information Security ConsultantRole PurposeProvide expert advisory services to strengthen the enterprises information security posture. Assess risks, recommend solutions, and ensure alignment of security initiatives with business objectives, regulatory requirements, and industry best practices.Key ResponsibilitiesConduct enterprise-wide risk assessments, security reviews, and gap analysesDevelop, review, and recommend security policies, standards, and proceduresAlign security strategies and initiatives with business goals and regulatory requirementsProvide guidance on the design and implementation of security controls and architectureSupport regulatory compliance efforts and audit readiness activitiesCollaborate with IT, risk, and business stakeholders to embed security best practices across projectsDeliver clear reports, presentations, and recommendations to senior management and stakeholdersRequired Experience & Skills7+ years of experience in information security, risk management, or security consultingStrong knowledge of security frameworks, standards, and regulatory requirements (ISO 27001, NIST, CIS, GDPR, etc.)Proven experience performing risk assessments, vulnerability assessments, and security advisory workExcellent stakeholder management, communication, and presentation skillsAbility to translate complex security concepts into actionable business recommendationNice to HaveExperience in cloud security architecture and advisory (AWS, Azure, GCP)Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/AuditorFamiliarity with emerging security technologies and threat intelligenceHands-on experience with security architecture design and secure software development practicesPrior experience in financial services, critical infrastructure, or highly regulated environmentsOriginally posted on Himalayas