Senior Consultant - Cybersecurity Job

ROLE PURPOSE
The aim is to state the overall significance of the job from the organization’s perspective.
is responsible for leading and executing a wide range of cybersecurity assurance functions, including application security assessments, penetration testing, red teaming, vulnerability analysis, and risk assessments. This role supports Elm’s compliance with cybersecurity standards, reinforces secure software development practices, and contributes to protecting Elm’s digital infrastructure from internal and external threats.

KEY ACCOUNTABILITIES & ACTIVITIES
This section describes the principal outputs required from the job.
Key Accountabilities    Key Activities
Cybersecurity Assurance Operations        •    Execute day-to-day CSA activities including risk assessments, control validation, and assurance planning across infrastructure, applications, and data layers.
Penetration Testing & Vulnerability Assessments        •    Conduct and lead application, network, and red-team penetration testing. Perform vulnerability scans and provide mitigation strategies.
Application & Configuration Review (AACR)        •    Carry out technical configuration reviews, assess system hardening baselines, and review access control compliance.
Security Standards & Controls    •    Enforce baseline security standards (MBSS), validate policy compliance, and recommend improvements.
Risk & Compliance Reporting        •    Prepare comprehensive technical reports on risks, defects, exceptions, and KRIs/KPIs to cybersecurity leadership and business units.
Collaboration & Awareness        •    Collaborate with internal teams and business units on remediation plans. Deliver awareness sessions and participate in capability-building initiatives.

 Penetration Testing & Vulnerability Assessment : 6+ years of experience
PT certifications such as Web application penetration tester, OSCP, OSEP, OSWE, CEH, OSED, OSCE3 or eJPT
 Red Hat Certified Professional