ITSM Consultant

Introduction:

The candidate is an experienced information security and IT systems professional with a strong background in risk management, compliance, and IT infrastructure administration. They have led efforts in transitioning and implementing ISO 27001:2022, performed comprehensive risk assessments, and developed strategies for mitigating risks in alignment with organizational goals. The candidate has expertise in conducting internal and external audits, ensuring adherence to information security regulations, and delivering security training programs to enhance awareness across organizations. They are skilled in defining IT administration policies, managing secure operating systems across various platforms (Windows, Mac, Linux), and administering tools like SIEM and EDR for security incident monitoring. With hands-on experience in system configuration, patch management, and SaaS solutions such as MS 365, the candidate has managed both hardware and software implementations, ensuring efficient operations and strong security postures. Additionally, they have been involved in maintaining compliance with data protection standards, including GDPR, and have consistently driven improvements in processes and documentation management. Their proficiency in cyber supply chain management and cybersecurity certifications further highlights their commitment to continuous learning and improvement in the cybersecurity field.

Responsibilities:

• Led the transition to ISO 27001:2022 and managed information security processes in alignment with company goals.
• Conducted risk assessments with high accuracy and mitigated risks in line with business practices.
• Supported and facilitated internal and external audits.
• Collaborated with cross-functional teams to integrate security concepts and support strategic business objectives.
• Designed and delivered information security training programs to improve organizational awareness and compliance.
• Managed and improved documentation processes and system configurations.
• Defined and set up IT administration and tooling strategies, including policies and guidelines.
• Ensured compliance with information security regulations and internal audits.
• Coordinated regular access recertification processes and managed IT controls for ISO 27001/2.
• Administered and maintained secure operating systems for Windows, Mac, and Linux across multiple locations.
• Conducted SIEM and EDR analysis to monitor and manage security incidents.
• Administered MDM systems and managed SaaS solutions like MS 365, GSuite, and Jira.
• Handled system configuration, hardening, and patch management for IT systems.
• Supported hardware and software implementation and upgrades.
• Managed reporting for KPIs, internal SLAs, and vendor SLAs.
• Configured and maintained Active Directory and peripheral systems.
• Managed SaaS solutions and provided IT support for system configurations and diagnostics.