Omega AS
Omega 365 Consulting is a leading supplier of highly skilled project personnel in the oil and gas, renewable energy, and infrastructure sectors. We offer a wide range of consultant assignments, featuring many of the most exciting projects in Norway and internationally.
Details Duration:
ASAP - 29.01.2027
Assignment Description As a Cybersecurity GRC Consultant, you will play a key role in ensuring that the client's cyber risks are understood, managed and communicated in a structured and transparent way. You will bridge strategy and execution, ensuring that requirements, risks and controls are actionable, proportionate and aligned with business priorities.
This role requires both analytical depth and strong stakeholder skills, as you will advise leaders, influence decision‑making, and help embed cybersecurity into everyday processes.
Key Responsibilities
Cybersecurity governance
Maintain, develop and mature the client cybersecurity governance framework, policies and standards
Ensure alignment with internal risk frameworks and enterprise governance models
Translate strategy and regulatory requirements into practical, implementable controls
Facilitate and perform cybersecurity risk assessments across IT, OT and digital initiatives
Support threat‑ and risk‑based decision making for projects, suppliers and operations
Track risk treatment plans, risk acceptance and management actions
Compliance and assurance internal
Support compliance with relevant laws, regulations and industry standards (e.g. NIS2, ISO/IEC 27001, IEC 62443)
Plan and execute internal cybersecurity assessments
Contribute to management reporting and leadership decision support
Advisory and collaboration
Act as a trusted cybersecurity advisor for projects, product teams and business units
Collaborate with IT, OT, architecture, procurement and vendor management
Contribute to secure‑by‑design and risk‑based ways of working
Awareness and capability building
Support development of cybersecurity guidance, training and awareness initiatives
Help build a strong risk culture where cybersecurity is understood in the business units
Qualifications
Relevant education within cybersecurity, IT, engineering or a related field
Practical experience with cybersecurity governance, risk management and compliance
Solid understanding of cybersecurity principles across IT and preferably OT environments
Experience working with standards such as ISO 27001, NIST, CIS or IEC 62443
Solid understanding of AI, automation and emerging technologies’ effect on cyber security risk, IT/OT operations, and on data‑driven technology used for decision support
Preferred
Experience from energy, oil & gas, industrial or other complex operational environments
Familiarity with regulatory requirements such as NIS2 or critical‑infrastructure legislation
Experience with third‑party risk management or supplier assurance
Certification(s) such as CISM, CISSP, CRISC, ISO 27001 LA/LI (nice to have, not required)
Structured, pragmatic and risk‑based in your approach
Comfortable working independently while collaborating across disciplines
Able to challenge constructively and influence without formal authority
Motivated by improving real‑world security—not just documentation
Benefits
Personalized, hands‑on support from our dedicated Omega 365 team members
Collaboration with one of Norway's most prestigious consultant firms
Guidance from experienced department managers, facilitating the development of your project expertise
Internal visa assistance and expert advice for EEA/expat consultants
Excellent opportunities to expand your professional network through project involvement and social gatherings
Exclusive benefits including access to holiday houses and cabins in picturesque locations such as Hovden, Hemsedal, Geilo, Hafjell, Oppdal, Voss, Vågsli, Sirdal, Gran Canaria and Thailand
Diverse offerings of events including concerts and exciting excursions, both in Norway and abroad. We unveil attractive new trips exclusively for our employees every year
#J-18808-Ljbffr
Details Duration:
ASAP - 29.01.2027
Assignment Description As a Cybersecurity GRC Consultant, you will play a key role in ensuring that the client's cyber risks are understood, managed and communicated in a structured and transparent way. You will bridge strategy and execution, ensuring that requirements, risks and controls are actionable, proportionate and aligned with business priorities.
This role requires both analytical depth and strong stakeholder skills, as you will advise leaders, influence decision‑making, and help embed cybersecurity into everyday processes.
Key Responsibilities
Cybersecurity governance
Maintain, develop and mature the client cybersecurity governance framework, policies and standards
Ensure alignment with internal risk frameworks and enterprise governance models
Translate strategy and regulatory requirements into practical, implementable controls
Facilitate and perform cybersecurity risk assessments across IT, OT and digital initiatives
Support threat‑ and risk‑based decision making for projects, suppliers and operations
Track risk treatment plans, risk acceptance and management actions
Compliance and assurance internal
Support compliance with relevant laws, regulations and industry standards (e.g. NIS2, ISO/IEC 27001, IEC 62443)
Plan and execute internal cybersecurity assessments
Contribute to management reporting and leadership decision support
Advisory and collaboration
Act as a trusted cybersecurity advisor for projects, product teams and business units
Collaborate with IT, OT, architecture, procurement and vendor management
Contribute to secure‑by‑design and risk‑based ways of working
Awareness and capability building
Support development of cybersecurity guidance, training and awareness initiatives
Help build a strong risk culture where cybersecurity is understood in the business units
Qualifications
Relevant education within cybersecurity, IT, engineering or a related field
Practical experience with cybersecurity governance, risk management and compliance
Solid understanding of cybersecurity principles across IT and preferably OT environments
Experience working with standards such as ISO 27001, NIST, CIS or IEC 62443
Solid understanding of AI, automation and emerging technologies’ effect on cyber security risk, IT/OT operations, and on data‑driven technology used for decision support
Preferred
Experience from energy, oil & gas, industrial or other complex operational environments
Familiarity with regulatory requirements such as NIS2 or critical‑infrastructure legislation
Experience with third‑party risk management or supplier assurance
Certification(s) such as CISM, CISSP, CRISC, ISO 27001 LA/LI (nice to have, not required)
Structured, pragmatic and risk‑based in your approach
Comfortable working independently while collaborating across disciplines
Able to challenge constructively and influence without formal authority
Motivated by improving real‑world security—not just documentation
Benefits
Personalized, hands‑on support from our dedicated Omega 365 team members
Collaboration with one of Norway's most prestigious consultant firms
Guidance from experienced department managers, facilitating the development of your project expertise
Internal visa assistance and expert advice for EEA/expat consultants
Excellent opportunities to expand your professional network through project involvement and social gatherings
Exclusive benefits including access to holiday houses and cabins in picturesque locations such as Hovden, Hemsedal, Geilo, Hafjell, Oppdal, Voss, Vågsli, Sirdal, Gran Canaria and Thailand
Diverse offerings of events including concerts and exciting excursions, both in Norway and abroad. We unveil attractive new trips exclusively for our employees every year
#J-18808-Ljbffr