Ongoing cyber security consultancy for a software business
- or -
Post a project like this$$$
- Posted:
- Proposals: 12
- Remote
- #2028821
- Expired
IT Consultant / Director - Windows / Azure"The Cloud" / Active Directory / Support / Office 365 / Virtualisation / Networks / Security / Servers / SQL /
Hull
Cyber Assurance: Governance, Risk and Compliance Specialist; CISSP, CRISC, ISO 27001 Lead Auditor
City of London
Information Security Consultant | Risk Advisor | PCI DSS | GDPR | ISO 27001|NIST|Data Privacy
Islamabad
13341031788621137239953537222447621773717136944720666592283031228264520880952251456
Description
Experience Level: Expert
Estimated project duration: Ongoing
We are a small Software as a Service vendor based in London looking for a cyber security specialist to provide ongoing consultancy.
Although we are a small business (8 people across two offices in London and Belfast), our customers are primarily large corporate organisations (Disney, Panasonic, SAP et al) . They have increasingly strict requirements of SaaS providers in relation to data security. As we have no internal IT / security resource we are finding it difficult to meet these requirements.
The requirements are in the following form:
1. Requests for information from customers' IT/procurement departments.
These are often questionnaires about our security setup or they are schedules that they wish to add to the contract.
We need someone to take ownership of these requests and respond appropriately. They will likely need to liaise with the customers' IT/procurement representatives along with our sales team and legal counsel where necessary.
2. Consulting on, and implementation of, systems, policies and processes.
The questionnaires and schedules mentioned above often refer to certain policies/processes (e.g. Data Breach Policy, Disaster Recovery etc), certifications (ISO 27001 etc) or they specify requirements such as annual PEN testing.
We need someone to advise us what we do and do not need (on the basis of business value i.e. is this a reasonable request or should we push back?), and then to implement these things (write the policy, arrange the PEN tests etc) or arrange resource where more appropriate.
I think the ideal scenario would be an experienced IT/cybersecurity professional from a corporate background and therefore understand the requirements of those kinds of organisations. You would need to get to know our business well and then be able to represent us as a perm staff member.
Although we are a small business (8 people across two offices in London and Belfast), our customers are primarily large corporate organisations (Disney, Panasonic, SAP et al) . They have increasingly strict requirements of SaaS providers in relation to data security. As we have no internal IT / security resource we are finding it difficult to meet these requirements.
The requirements are in the following form:
1. Requests for information from customers' IT/procurement departments.
These are often questionnaires about our security setup or they are schedules that they wish to add to the contract.
We need someone to take ownership of these requests and respond appropriately. They will likely need to liaise with the customers' IT/procurement representatives along with our sales team and legal counsel where necessary.
2. Consulting on, and implementation of, systems, policies and processes.
The questionnaires and schedules mentioned above often refer to certain policies/processes (e.g. Data Breach Policy, Disaster Recovery etc), certifications (ISO 27001 etc) or they specify requirements such as annual PEN testing.
We need someone to advise us what we do and do not need (on the basis of business value i.e. is this a reasonable request or should we push back?), and then to implement these things (write the policy, arrange the PEN tests etc) or arrange resource where more appropriate.
I think the ideal scenario would be an experienced IT/cybersecurity professional from a corporate background and therefore understand the requirements of those kinds of organisations. You would need to get to know our business well and then be able to represent us as a perm staff member.
Elliot J.
100% (1)Projects Completed
2
Freelancers worked with
2
Projects awarded
14%
Last project
29 Jan 2018
United Kingdom
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.
We collect cookies to enable the proper functioning and security of our website, and to enhance your experience. By clicking on 'Accept All Cookies', you consent to the use of these cookies. You can change your 'Cookies Settings' at any time. For more information, please read ourCookie Policy
Cookie Settings
Accept All Cookies