Senior Security Standards & Controls Consultant

• Pharma

• 100% remote

Summary

The role of the ESA Standards & Countermeasures Author involves the end-to-end creation of critical Security Standards (BSS) and associated Countermeasures (CM) aimed at enhancing governance and compliance within security framework.

Responsibilities:

• Author and produce 2-3 high-priority Security Standards aligned with ISO 27002:2022.

• Conduct a gap analysis comparing BSS requirements against the existing BSC™ catalogue.

• Draft missing Countermeasures in a format compatible with governance standards.

• Address additional Countermeasures stemming from previous work packages as capacity allows.

Must Haves:

• Proven experience in authoring formal security standards adopted into enterprise governance.

• Deep understanding of ISO 27002:2022 at the clause level.

• Experience drafting Countermeasures, including control statements and rationale.

• Expertise in conducting structured gap analyses of security standards.

• Knowledge of IT/OT security convergence and the associated control considerations.

• Broad knowledge across multiple security domains.

Nice to Have:

• Familiarity with BAFS and enterprise taxonomy compliance.

• Understanding of threat modeling methodologies.

• Experience in authoring reference architecture diagrams for security patterns.

• Knowledge of GRC tooling such as ServiceNow or RSA Archer.