Security Consultant in Data Protection

**About us**:
Ivy Partners is a Swiss advisory company that contributes to the evolution of companies in their strategic, technological and organisational challenges.

Our mission is to provide our employees with a fulfilling and supportive career environment, where everyone is valued and empowered through training and opportunities for growth.

As an **Security Consultant in Data Protection** at Ivy Partners, you will be in charge of:

- Ensuring the consideration and implementation of information security requirements and data protection measures.
- Promoting ISDS (Information Security and Data Security) understanding and awareness within an ICT project.
- Identifying potential legal and regulatory requirements affecting information and ICT security.
- Identifying and periodically reassessing information risks based on threat and vulnerability assessments within the ICT project.
- Monitoring and supporting information security activities within the ICT project (e.g., development, procurement).
- Reviewing and measuring the effectiveness of information security measures.
- Checking compliance with security policies and requirements by the ICT project.
- Documenting test and measurement results.
- Advising those responsible for the implementation of security measures.
- Developing any necessary security measures that supplement basic protection security measures.
- Monitoring the implementation, compliance, and effectiveness of safety measures.
- Participating in specialist internal working groups.
- Assisting in the preparation of special security agreements with external service recipients/providers.
- Evaluating and reviewing the compatibility of projects (studies, projects, and maintenance) in relation to ICT security.
- Developing alternative solutions and disaster plans in accordance with business continuity management requirements in cooperation with those responsible within the office.
- Assisting in quantifying provable security efforts.
- Ensuring that processed reportable data collections are reported by the owner of the data collection.

**Profile**:

- **You are Hermes and/or Togaf certified.**:

- Fluent in English.
- Strong expertise in information security and data protection, with experience ensuring their implementation within ICT projects.
- Proven ability to identify and address potential legal and regulatory requirements affecting information and ICT security.
- Skilled in assessing information risks based on threat and vulnerability assessments, and reassessing these risks periodically.
- Proficient in monitoring and supporting information security activities, including development and procurement.
- Experienced in reviewing and measuring the effectiveness of information security measures, ensuring compliance with security policies and requirements.
- Effective in assigning responsibilities to service recipients and providers, advising on the implementation of security measures, and developing supplemental security measures.
- Adept at monitoring the implementation, compliance, and effectiveness of safety measures, and participating in specialist internal working groups.
- Skilled in preparing special security agreements with external service recipients/providers.

**Ivy, is also about**:
**Care |** We offer a supportive environment where everyone is valued and empowered with training and growth prospect.

**Trust |** Working with us is about establishing a partnership based on trust, professionalism, and transparency at all times.

**Innovation |** We empower effective digital transformation through a unique blend of innovative technology and creative thinking.

**Responsibility |** Community is at the heart of everything we do, and we take that responsibility seriously by working hard to create a positive impact.

**Joining Ivy** means being part of a challenging adventure at every turn