Cybersecurity Assurance Consultant

Job Description

The Senior Cybersecurity Assurance Consultant is responsible for leading, planning, and enhancing assurance services, ensuring effective delivery of cybersecurity, information security, and compliance assessment activities. The role translates strategic objectives into operational programs, manages assurance teams, and ensures continuous improvement of processes aligned with national and international standards. The position also plays a key role in stakeholder engagement, accreditation support (including NISCF), and coordination across departments to strengthen governance, risk, and compliance outcomes.
Key Responsibilities:
  • Planning,
    directing, monitoring, improvement and maintenance of assurance service.
  • Translate
    the strategic direction from the department head into actionable projects and
    programs.
  • Provide
    solutions for challenges encountered in the operation and promotion of
    assurance services.
  • Continuously
    assess and improve the efficiency and effectiveness of the Department
    operations.
  • Manage the
    teams with in the department and ensure effective Resource Management.
  • Coordinate
    with other departments on matters concerning the delivery of projects and
    operations.
  • Develop
    and plan department objectives and key results.
  • Follow-up
    with the top management on resources and requirements for the benefits of the
    department.
  • Review
    development of deliverables related to NISCF.
  • Manage the
    tasks and assignments among the NISCF team.
  • Assist in
    setting up efficient and effective operation of NISCF assurance services.
  • Interact
    with stakeholders, providing expert feedback on challenges and insights to the
    operation team.
  • Interact
    with other departments in NCSA.
  • Interact
    with external stakeholders for development and adoption of assurance services.
  • Manage,
    mentor and lead the NISCF resources and certification/accreditation
    specialists, providing operational guidance, professional development, and
    capability enhancement


Requirements

Education & Experience:

  • Master’s degree in IT, Cybersecurity, Risk Management, or related field, or minimum 18 years of relevant experience.
  • At least 5 years of experience in audit and assurance.
  • Minimum 4 years of assessment or auditing experience in a specialized field.
  • Proven hands-on experience in cybersecurity, information security, IT audit, and assurance.

Technical & Professional Skills:

  • Strong knowledge of risk management and compliance assessment.
  • Familiarity with international standards (ISO 27001, COBIT, NIA, Common Criteria, etc.).
  • Knowledge of accreditation and certification standards (ISO 17021, 17024, 17025, 17065, 27006).
  • Experience in governance, regulatory compliance, and management system development.
  • Project management and team leadership experience.
  • Professional certifications in auditing, compliance, or risk management (preferred).
  • Experience engaging with senior executives and decision-makers.

Behavioral Competencies:

  • Strong leadership, mentoring, and team management abilities.
  • Excellent communication skills (oral and written) in English.
  • Strong analytical, problem-solving, and critical thinking skills.
  • Ability to manage multiple priorities under pressure and meet deadlines.
  • Effective stakeholder management and conflict resolution skills.
Language: English (required)
Availability: As soon as possible
The contract duration is 12 months, with the possibility of extension based on departmental requirements.