Assist organizations in understanding the overall Cybersecurity posture and compliance levels against various standards. ISO27001 is just one of the standards, other similar standards are NIST CSF, NIST 800 53, NIST Privacy framework, country regulations on Cybersecurity etc. In this profile the most common aspect is to conduct an assessment based on a checklist from one of the standards or to help an organization implement ISO27001 from scratch and help them in certification or to conduct risk assessments, draft policies, coordination in closure of assessment findings, assist in access control etc.
The profession requires good drafting skills, writing skills and communication skills. Knowledge of technology is an advantage but if one does not have already whatever is required can be developed over a period of time. Good due diligence skills, quality of documentation, client interviewing / discussion skills are an advantage. Knowledge of ISO27001, NIST CSF standards is required and can be acquired quickly.
What technical skills are required
Good drafting skills, written english, communication skills, eye for detail, good interviewing / discussion skills.
Minimal level of technical knowledge of computers / networking is an advantage but can also be done without.
Knowledge of ISO27001, NIST CSF standards is required.
Education background - BTech / BSc / BCA / any other degree with computer subject or knowledge