Information Security Operations Consultant (#4982)

N-iX is a global software development service company that helps businesses across the globe create next-generation software products. Founded in 2002, we unite 2,400+ tech-savvy professionals across 40+ countries, working on impactful projects for industry leaders and Fortune 500 companies. Our expertise spans cloud, data, AI/ML, embedded software, IoT, and more, driving digital transformation across finance, manufacturing, telecom, healthcare, and other industries. Join N-iX and become part of a team where your ideas make a real impact.

We are looking for an IS Operations Consultant to support the setup and operational strengthening of a centralized Information Security Operations capability.
You will provide expert guidance and hands-on support across security operations domains, including SOC oversight, vulnerability management, penetration testing coordination, and security awareness activities.
The role focuses on operational execution, process optimization, vendor coordination, and audit readiness, working closely with the CISO, Infrastructure, Cloud, IT Operations, Workplace, and Application teams.
This is not a line management position and does not include direct team leadership or budget ownership.

Key Responsibilities:

1. Security Operations Support

• Support oversight of external MSSP delivering 24x7 monitoring and incident response.
• Contribute to incident response coordination and post-incident reviews.
• Assist in strengthening cyber resilience through process improvement and operational enhancements.
• Support vulnerability management processes (validation, prioritization, remediation follow-up).
• Coordinate penetration testing activities and tracking of remediation.
• Support the execution of security awareness campaigns and training monitoring.

2. Governance & Compliance Alignment

• Contribute to alignment with regulatory and audit frameworks (ISO 27001, NIST, DORA, NIS2).
• Support preparation of audit evidence and documentation.
• Assist in KPI reporting (vulnerabilities, risks, remediation status).
• Contribute to maintaining consolidated security risk tracking.

3. Stakeholder & Vendor Coordination

• Act as operational interface between central security function and local IT teams.
• Support vendor performance monitoring (MSSP, pentest providers, tooling vendors).
• Assist in SLA tracking and operational service reviews.
• Collaborate with Infrastructure and Cloud teams to ensure secure configurations and remediation follow-up.

Requirements:

• 5+ years of experience in Information Security operations (SOC, VM, IR, or similar).
• Strong hands-on knowledge of security technologies (SIEM, EDR/XDR, vulnerability scanners).
• Experience working in enterprise or multi-entity environments.
• Familiarity with cloud security concepts (AWS, Azure, IAM, logging, encryption).
• Working knowledge of regulatory frameworks such as ISO 27001, DORA, or NIS2.
• Experience supporting external security vendors (MSSP coordination is a plus).
• Strong communication skills and ability to work across distributed teams.
• Fluent in English and Spanish; German is a plus.
• Certifications (CISSP, CISM, or similar) are advantageous but not mandatory.