ISO27001/IT Risk/GRC | cyberxchange

ISO27001 / IT Risk / GRC

Why should you apply

ISO27001 / IT Risk / GRC profile is how traditionally everyone started in the Cybersecurity domain. Many Cyber security leaders today come significantly from this profile as it helps in developing an overall understanding of Cybersecurity and helps in governing the same. If you like auditing , conducting risk assessments, drafting policies, procedures, helping implement ISO27001 etc. then this profile is for you. As you grow Cybersecurity strategy also forms a part of this profile. You need not be very technical to develop this profile. A very minimal & reasonable understanding of computers, networking is sufficient to develop this expertise for a fresher level job. Cyber Security has a mention in the National agenda of all countries and India. It is not just a commercial profession but governments also require assistance in protecting the Cyber borders of countries. Starting salaries ISO27001/IT Risk/GRC professionals could range from Rs 3 lakhs to Rs 20 lakhs.

What is ISO27001/IT risk/GRC profile

Assist organizations in understanding the overall Cybersecurity posture and compliance levels against various standards. ISO27001 is just one of the standards, other similar standards are NIST CSF, NIST 800 53, NIST Privacy framework, country regulations on Cybersecurity etc. In this profile most common aspect is to conduct an assessment based on a checklist from one of the standards or to help an organization implement ISO27001 from scratch and help them in certification or to conduct risk assessments, draft policies, coordination in closure of assessment findings, assist in access control etc.

Further Details

The profession requires good drafting skills, writing skills and communication skills. Knowledge of technology is an advantage but if one does not have already whatever is required can be developed over a period of time. Good due diligence skills, quality of documentation, client interviewing / discussion skills are an advantage. Knowledge of ISO27001, NIST CSF standards is required and can be acquired quickly.

What technical skills are required

Good drafting skills, written english, communication skills, eye for detail, good interviewing / discussion skills.

Minimal level of technical knowledge of computers / networking is an advantage but can also be done without.

Knowledge of ISO27001, NIST CSF standards is required.

Education background - BTech / BSc / BCA / any other degree with computer subject or knowledge

Enrol here

CyberXchange

"An ecosystem for Cyber & Data Protection"

© Copyright 2021 Cyberxchange

All material provided subject to copyright permission.