We are seeking an experienced Information Security Consultant with a distinguished background in cyber security, governance, and risk management. As an Information Security Consultant, you will play a pivotal role in helping our clients navigate the complex landscape of cyber threats and risks. Your responsibilities will include implementing robust security controls, ensuring compliance with industry standards and regulations, and assisting clients in enhancing their overall information security posture.

REQUIREMENTS:

• Bachelor’s degree in IT or a related field
• Certifications such as ISO 27001 Lead Implementor and ISO 9001 Internal Auditor are considered a plus
• Experience with GDPR and familiarity with security standards like ISO 2700x and the EU CRA, Cyber Resilience Act, NIST, CSA CCMFluent language skills in English and Finnish

• Develop and implement cyber security strategies and roadmaps tailored to our clients’ specific needs
• Be part of continuous development regarding ISMS and GRC contributing to Nixu way of working and offerings
• Contribute to achieving ISO 27001/27701 certification, differentiating our clients from their competitors
• Conduct thorough security and data privacy risk assessments
• Conduct Vendor risk assessments and audits
• Implement security controls and promote security awareness across diverse organizations.
• Create operational guidance for the compliant implementation of third-party services and evaluate associated risks