Information Security Consultant

About invenioLSIThe largest independent global SAP solutions provider serving the public sector as well as offering specialist skills in media and entertainment. We bring deep expertise combined with advanced technologies to enable organizations to modernize so they can run at the speed of today’s business. We know how to navigate the extraordinary complexities of international businesses and public sector organizations, working with stakeholders to drive change and create agile organizations of tomorrow using the technologies of today. Learn more at www.invenioLSI.com.  Role – Information Security ConsultantHiring Location: India (Delhi/Hyderabad/Mumbai/Noida/Pune)SummaryWe are seeking a highly skilled Information Security Consultant to support our customer projects, ensure secure coding practices, and contribute to responding to Requests for Proposals (RFPs). The ideal candidate will assess, design, implement, and manage security measures to protect our customers' data and IT infrastructure while also assisting in the preparation of security-related RFP responses. This role requires strong analytical, problem-solving, and communication skills to provide expert guidance on security strategies, compliance, and technical solutions. Additionally, the consultant will be responsible for ensuring that the coding done by our consultants follows secure coding best practices and will conduct necessary security training sessions. Responsibilities   

• Conduct security risk assessments, vulnerability analyses, and penetration testing for customer projects. 
  
• Develop and implement security policies, procedures, and guidelines based on industry standards (ISO 27001, NIST, CIS, etc.). 
  
• Assist customers in compliance with regulatory requirements (GDPR, HIPAA, PCI-DSS, SOC 2, etc.). 
  
• Design and implement security architectures, including identity & access management (IAM), network security, and endpoint protection for client environments. 
  
• Evaluate and recommend security tools, technologies, and best practices tailored to customer needs. 
  
• Respond to security incidents, conduct forensic investigations, and implement corrective actions for clients. 
  
• Conduct security awareness training for employees and stakeholders. 
  
• Collaborate with IT, legal, and business teams to integrate security into business processes. 
  
• Stay updated on the latest cybersecurity trends, threats, and technologies. 
  
• Support the pre-sales process by assisting in the preparation of security-related responses for RFPs, RFIs, and proposals. 
  
• Provide expert guidance on security solutions, risk mitigation strategies, and compliance requirements in RFP responses. 
  
• Work closely with sales and business development teams to align security solutions with customer requirements. 
  
• Ensure that the coding done by our consultants follows secure coding best practices, including adherence to OWASP guidelines and other security frameworks. 
  
• Conduct security code reviews and provide recommendations for remediation of vulnerabilities. 
  
• Organize and conduct secure coding training sessions for internal consultants to enhance awareness and compliance with secure development practices. 
  

Skills and Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (Master’s preferred). 
  
• At least 10 years of experience in information security management roles. 
  
• Relevant certifications preferred (CISSP, CISM, CEH, OSCP, ISO 27001 Lead Auditor, CSSLP, etc.) 
  
• Proficiency in security testing methodologies, vulnerability scanning, and penetration testing. 
  
• Strong analytical, problem-solving, and communication skills. 
  
• Ability to manage multiple projects and work independently or within a team. 
  
• Experience in writing and responding to RFPs, RFIs, and security-related proposals. 
  
• Experience in secure software development practices, code security reviews, and training developers on secure coding principles. 
  

Business Skills             

• Strategic thinking and problem-solving abilities.
  
• Ability to handle high-pressure situations, such as breaches or incidents.
  
• Excellent interpersonal and organizational skills.
  
• Promote a culture of security awareness across the organization.
  
• Provide training and development opportunities for team members.

invenioLSI is an Equal Opportunity Employer that does not discriminate based on actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, disability, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances. invenioLSI’s management team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities, access to facilities and programs and general treatment during employment.