47 Security Consultant jobs in Pakistan

JOB DESCRIPTION:

The Cyber Security Consultant is responsible for safeguarding the organization's computer networks and systems. They will plan and execute security measures to protect sensitive data and ensure against cyber threats. They will advise on and support measures needed to ensure that social protection information systems comply with security standards.

Key Tasks:

• Develop and implement comprehensive cybersecurity policies and protocols.

• Conduct regular system audits to identify vulnerabilities.

• Respond to and recover from security breaches or incidents.

• Educate staff on information security through training and awareness programs.

• Stay up-to-date with the latest security systems, standards, authentication protocols, and products.

Qualifications:

1) Education/Training

• Master's degree in Cybersecurity or a related field (8 points)

• 1 professional certification in IT security (e.g., CISSP, CEH, CompTIA Security+, CISM) (2 points)

2) Language : English and Urdu at C1 level or above (based on CEFR levels)

3) General Professional Experience

• 7 years of full-time professional experience in IT or cybersecurity roles

• Demonstrated experience in network security, evidenced by at least 3 years of hands-on experience with firewalls, IDS/IPS, and VPNs

4) Specific Professional Experience

• 5 years of direct experience in IT security roles

• Proven experience in the following areas:

Penetration testing and vulnerability assessments

Security information and event management (SIEM)

Identity and access management

Cloud security

Incident response and forensics

Risk assessment and management

Compliance and auditing (e.g., ISO 27001, PCI DSS)

• 2 years Experience in implementing and managing 2 enterprise-level security solutions

• 2 years Experience with secure software development practices

International professional experience outside the country/region of assignment

• 2 years Experience working internationally

Professional experience in the country/region of assignment

• 3 years of professional experience in IT security within Pakistan

• Demonstrated knowledge of Pakistan's cybersecurity landscape, evidenced by involvement in 2 Pakistan-specific IT security projects or initiatives

4) Development cooperation experience

• 1 year of experience working with or for international development agencies, NGOs, or multilateral organizations on IT security projects

• Involvement in 1 donor-funded IT security or digital development project

Job Type: Full-time

Pay: Rs300, Rs350,000.00 per month

Work Location: In person

We are seeking a highly skilled and motivated Mid-Tier Cyber Security Consultant with 4–5 years of proven experience in Vulnerability Assessment and Penetration Testing (VAPT), client handling, and red teaming. The ideal candidate will be a self-motivated professional with strong technical expertise and exceptional soft skills, capable of delivering high-quality services in a fast-paced, client-focused environment. Preference will be given to candidates with relevant certifications and experience in a vendor-side company.

Key Responsibilities

• Vulnerability Assessment and Penetration Testing (VAPT):
  • Conduct comprehensive vulnerability assessments and penetration tests on web applications, networks, cloud environments, and mobile applications.
  • Identify, analyze, and prioritize security vulnerabilities using industry-standard tools and methodologies.
  • Develop detailed technical reports with findings, risk assessments, and remediation recommendations tailored to technical and non-technical stakeholders.
  • Stay updated on emerging threats, vulnerabilities, and attack vectors to enhance testing methodologies.

• Red Teaming:
  • Plan and execute advanced red team engagements, simulating real-world cyberattacks to test organizational defenses.
  • Perform reconnaissance, social engineering, privilege escalation, and lateral movement to identify weaknesses in security controls.
  • Collaborate with blue teams to validate detection and response capabilities, providing actionable insights to improve security posture.
  • Document red team activities, including attack scenarios, methodologies, and outcomes, in clear and concise reports.

• Client Handling:
  • Act as the primary point of contact for clients, building strong relationships and ensuring clear communication throughout the engagement lifecycle.
  • Conduct scoping meetings, gather requirements, and tailor security assessments to meet client-specific needs and objectives.
  • Present findings and recommendations to clients in a professional and approachable manner, addressing both technical and business audiences.
  • Manage client expectations, resolve concerns promptly, and ensure high levels of client satisfaction.

• Project Management and Delivery:
  • Manage multiple concurrent projects, ensuring timely delivery of high-quality results within scope and budget.
  • Develop project plans, timelines, and deliverables in collaboration with internal teams and clients.
  • Proactively identify risks and challenges in engagements and implement solutions to maintain project momentum.

Required Qualifications

• Experience:
  • 4–5 years of hands-on experience in cyber security, with a focus on VAPT and red teaming.
  • Proven track record in a vendor-side company, delivering security services to diverse clients across industries.
  • Demonstrated experience in managing end-to-end VAPT engagements, including scoping, execution, and reporting.
  • Hands-on experience in red team operations, including adversarial simulation and advanced attack techniques.
• Certifications (Preferred):
  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • GIAC Penetration Tester (GPEN)
  • Certified Red Team Professional (CRTP)
  • Other relevant certifications (e.g., CompTIA PenTest+, CISSP, or equivalent)
• Soft Skills:
  • Excellent communication and presentation skills, with the ability to explain complex technical concepts to non-technical stakeholders.
  • Strong interpersonal skills, with a client-centric approach to build trust and long-term relationships.
  • Self-motivated and proactive, with a strong sense of ownership and accountability for deliverables.
  • Ability to work independently and collaboratively in a team-oriented environment.
• Preferred Qualifications
  • Experience working in a vendor-side cyber security firm, delivering services to clients in sectors such as finance, healthcare, or technology.
  • Familiarity with compliance frameworks such as ISO 27001, GDPR, or NIST.
  • Ability to mentor junior team members and contribute to knowledge-sharing initiatives.

Job Title: Consultant – IT Security & Risk Management
Location: Saddar, Karachi (Onsite)
Contract Type: 2–3 months (Part-time / Contract considered)
About The Role
Our client is seeking an experienced consultant in IT Security and Risk Management for a short-term onsite engagement. The role is suited to professionals who can quickly support security governance, controls, and risk-monitoring initiatives.

Key Responsibilities

• Support Security & Technology Risk Management and governance activities
• Perform IT & Security Risk and Control Self-Assessments (RCSA)
• Conduct controls testing and maintain the IT & Security Controls Library
• Lead controls compliance assessments and help address internal/external risk incidents
• Define and monitor Key Risk Indicators (KRIs) and related reporting
• Create dashboards, monitoring, and analytics for senior stakeholders
• Support system integration with relevant data sources

Requirements

• Proven experience in IT security, risk management, and security governance
• Hands-on experience with RCSA, controls testing, and KRI frameworks
• Strong analytical, reporting, and stakeholder-management skills
• Comfortable working onsite in Karachi for the contract duration
• Available for a 2–3 month engagement (part-time or contract candidates welcome)

We are seeking applications for the position of Assistant Manager/Officer - Operational Risk. Interested candidates meeting the following criteria are encouraged to apply online.

• Qualification: Minimum Graduation Degree. Preferably Masters from HEC recognized universities / institutions.
• Experience: Minimum 2 years of relevant experience.
• Job Location: Head Office, Islamabad.

Responsibilities:

• To assist Head of Risk in development of operational risk policies and standards for risk management.
• To implement a strategic plan to prevent, eliminate & mitigate operational risk in Systems, Processes and People.
• Assist in identifying & evaluating risk across the operational activities and provide support to mitigate. Maintaining a log of identified risk, including their likelihood and impact.
• Conducting department wise Operations Risk Assessment vis-s-vis Internal Controls & Procedures on monthly basis and identify any discrepancy for info of Management.
• Periodically reviewing risk management policies in place and testing of key controls to ensure the process effectiveness.
• Prepare and update Risk Control Self-Assessment (RCSA) based on the process on yearly basis as required.
• Keep abreast of latest operational risk management techniques in industry as best practices.
• Coordinate with senior management in performing operational risk reviews through various in house meetings.
• Maintaining comprehensive records of risk management activities, decisions, and outcomes.
• Investigate root causes of operational risks and provide support to mitigate risk through quarterly GAP analysis.
• Hold operational risk committee meetings and prepare notes on monthly basis.
• To maintain the database related to Operational Loss Data.
• Supervise and manage safe (holding gold based collaterals) keys operations and ensuring adherence to business policies.
• Supervise and manage the selection of panel Gold Smith.
• Any other task assigned by Management.

Please apply online latest by May 23, 2025

Job title: Risk Management Expert

• Location: Hyderabad

Opella is the self-care challenger with the purest and third-largest portfolio in the Over-The-Counter (OTC) & Vitamins, Minerals & Supplements (VMS) market globally.

Our mission: to bring health in people's hands by making self-care as simple as it should be for over half a billion consumers worldwide.

At the core of this mission is our 100+ loved brands, our 11,000-strong global team, our 13 best-in-class manufacturing sites and four specialized science and innovation development centers.

Headquartered in France, Opella is the proud maker of many of the world's most loved brands, including Allegra, Buscopan, Doliprane, Dulcolax, Enterogermina, Essentiale and Mucosolvan.

B Corp certified in multiple markets, we are active players in the journey towards healthier people and planet.

Find out more about our mission to bring health in your hands at

About the job:

The RME is responsible for developing global risk management strategies to optimize benefit-risk profile, for submission dossiers or marketed products with emerging safety risk(s), in coordination with relevant functions, developing corresponding RMP document.

The SRME collaborates with Global safety leads/ managers and other stakeholders for the strategic design and planning of the Risk Management activities.

Main responsibilities:

• Accountable for risk management strategy to safeguard product safety profile and patient safety including risk management of the product.
• Lead any RMP (Risk Management Plan) Project from A to Z (initial submission, update)
• Handlle any HA (Health Authority) request regarding RM (Risk Management) activities
• Leading Working groups on Risk minimization strategies
• Collaborate with Medical and regulatory for their input in RM activities
• Coordinates administrative tasks and RMP documents (i.e., setting up the bibliographic references, list of abbreviations, document formatting, integration of comments, etc.) until final publishing by Operations department
• Responsible for RMP Quality Control (QC)
• Supports in authoring of parts and/or modules and/or sections of RMP document, preparation of annexes, RMP transferring from any previous old format into current new format/template, combination of 2 separate RMPs into one single RMP document
• Responsible for drafting and management of the minutes for the RMP meetings (such as submission Task Force, Kick Off Meeting (KOM), RMP draft consolidation meeting, or GRM-SG (Global Risk Management Supervision Group) as needed) and related to all the documents listed.

About you:

Education:

Preferred health care discipline degree in modern science: Master's in pharmacy, Master of Health Science, Physician Assistant, BDS etc.

Experience:

• Minimum of 7 years of experience in pharmacovigilance or drug safety.
• Experience in consumer healthcare, pharmaceuticals, or related industries is preferred.
• Strong knowledge of global PV regulations and guidelines (e.g., FDA, EMA, ICH) and risk management process and related tools.
• Proven track record of mentoring a team of PV professionals.
• Excellent networking and collaboration skills to interact transversally with numerous functions involved in risk management-related activities.

Required Skills:

• Ability to communicate complex medical clinical and pharmacovigilance issues and analysis orally and in writing.
• Strong analytical and problem-solving skills.
• Ability to work collaboratively in a cross-functional team environment.

Why us?

At Opella, you will enjoy doing challenging, purposeful work, empowered to develop consumer brands with passion and creativity. This is your chance to grow new skills and be part of a bold, collaborative, and inclusive culture where people can thrive and be at their best every day.

We Are Challengers.

We are dedicated to making self-care as simple as it should be. That starts with our culture. We are challengers by nature, and this is how we do things:

All In Together: We keep each other honest and have each other's backs.

Courageous: We break boundaries and take thoughtful risks with creativity.

Outcome-Obsessed: We are personally accountable, driving sustainable impact and results with integrity.

Radically Simple: We strive to make things simple for us and simple for consumers, as it should be.

Join us on our mission. Health. In your hands.

Two Separate roles

SAP Agriculture Commodity Management and SAP Commodity Risk management skill set.

SAP Global trade management and SAP treasury and risk management skillset.

Roles require around 5 to years of experience

Position: Risk Management Officer (Pre-Disbursement)

Experience: 1–2 Years

Location: (Onsite - Islamabad F11 Markaz)

Job Overview:

We're looking for a detail-oriented Risk Management Officer to conduct pre-disbursement assessments, verify client details, and ensure compliance with internal and NBFC standards. This role is crucial in preventing fraud, identifying potential risks, and maintaining a secure lending process.

Key Responsibilities:

• Conduct telephonic verification calls with clients before loan disbursement.
• Validate client, guarantor, and business details using approved tools.
• Assess repayment capacity and flag potential risks or discrepancies.
• Ensure compliance with SECP/NBFC policies and company credit standards.
• Collaborate with branch and compliance teams for clarifications.
• Maintain accurate records and submit regular risk assessment reports.

Skills & Competencies:

• 1–2 years of experience in risk assessment, credit verification, or NBFC operations.
• Strong analytical and decision-making skills.
• Excellent communication and client handling abilities.
• Attention to detail with sound knowledge of MS Office & risk tools.
• Integrity, professionalism, and a teamwork mindset.

What We Offer:

• Performance-based incentives & annual increments
• Provident Fund & professional growth opportunities
• Supportive and inclusive work environment

Job Type: Full-time

Pay: Rs40, Rs50,000.00 per month

Ability to commute/relocate:

• Islamabad: Reliably commute or planning to relocate before starting work (Preferred)

Application Question(s):

• What are your salary expectations?
• What is your notice period?

Education:

• Bachelor's (Required)

Experience:

• Risk Management: 2 years (Required)

Language:

• English (Preferred)

Location:

• Islamabad (Preferred)

Work Location: In person