Security Consultant - Truvantis

Member of the Truvantis consulting staff, providing security and compliance expertise to help our customers protect their data and environments.   Trusted advisor to customers to understand their environments and deliver quality, practical guidance on identifying and addressing potential risks.  Initial engagement will be a focused effort on ISO27001 for an established customer.

Key Responsibilities:

Interface with customers to assess, develop and improve their information security programs in cooperation with other Truvantis team members and through any of the following tasks:

  • Document policies, processes and controls.

  • Support audit preparation through review of requirements, evidence collection, and engagement with third-party auditors.

  • Provide recommendations and remediation plans

  • Lead conversations with customers to support their evaluation of risk and severity of issues

Required Skills & Qualifications

  • BS or MS degree in Computer Science, or a related field or equivalent experience

  • 5 or more years direct experience in information security, IT security or related field

  • Minimum of five (5) years of verifiable ISO27001 experience in the past seven (7) years

  • Experience writing policies and procedures in support of compliance frameworks

  • Excellent verbal and written communication skills

  • General knowledge of all security and ISO27001 domains

  • Critical skills and characteristics:  Self-starter; strong team collaboration; ability to maintain a trusted role and interface with customers; leadership; sense of accountability; Independent decision making ability and overall project coordination skills; relationship building; analytical problem solving and risk identification/mitigation

Desired Skills

  • Audit, compliance and validation experience

  • Experience leading internal/external audits or assessments

  • Experience with security frameworks or compliance standards, including PCI-DSS, HIPAA, CIS Controls, NIST, SOC2

  • CISA, CISM, PCI-QSA, CISSP, CIPP or other information security, audit or related certifications are highly desirable


To Apply please visit: